James Kosin wrote: > Maybe, put a warning in the email message clarifying that the file could > not be checked by clamav instead of flagging as an 'Oversized.Zip' > virus. This may be more useful for the receiver and sender to know than > to actually cause an annoying DoS prevention.
Hey James, Thanks for the feedback. Yeh, that the idea behind Oversized and friends. But that, of course, requires the clamav output to be postprocessed. So to tune my question (sorry if i wasn't clear in the first place)... Is anybody doing that in real life? That is, do you want us to keep such a "feature"? Thanks, -aCaB _______________________________________________ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://lurker.clamav.net/list/clamav-users.html
