I have been getting these messages in my logs when a message is detected as a virus:
Mar 8 08:44:56 mypc clamav-milter[6112]: Message o27LiRP8029635 from <UNKNOWN> to <UNKNOWN> with subject 'Important notice: Google' message-id 'UNKNOWN' date 'UNKNOWN' infected by Sanesecurity.Junk.22168.UNOFFICIAL
Is it possible to get some more information appearing than <UNKNOWN> as the sender and recipient?
Here is my config # cat /etc/clamav/clamav-milter.conf #Automatically Generated by clamav-milter postinst #To reconfigure clamav-milter run #dpkg-reconfigure clamav-milter #Please read /usr/share/doc/clamav-base/README.Debian.gz for details MilterSocket /var/run/clamav/clamav-milter.ctl FixStaleSocket true User clamav AllowSupplementaryGroups yes ReadTimeout 120 Foreground false PidFile /var/run/clamav/clamav-milter.pid ClamdSocket unix:/var/run/clamav/clamd.ctl OnClean Accept OnInfected Quarantine OnFail Defer AddHeader Replace LogSyslog true LogFacility LOG_LOCAL6 LogVerbose true LogInfected Full MaxFileSize 25M LocalNet localhost TemporaryDirectory /tmp LogFile /var/log/clamav/clamav-milter.log LogTime true LogFileUnlock false LogFileMaxSize 0M I use clamav-milter 0.95.3 with debian 5.0.4. _______________________________________________ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
