On 2011-06-29 13:04, polloxx wrote:
> On Wed, Jun 29, 2011 at 11:45 AM, Henrik K <h...@hege.li> wrote:
>> On Wed, Jun 29, 2011 at 12:27:46PM +0300, Mihamina Rakotomandimby wrote:
>>>> On Wed, 29 Jun 2011 11:24:24 +0200
>>>> polloxx <poll...@gmail.com> wrote:
>>>
>>>> Are there other user with the same problem? Any solution?
>>>
>>> I have the same problem.
>>> I manage a mail server used by a vendor of DHL.
>>>
>>> Pretty annoying as far as all emails from DHL are sensible and
>>> important for the suers :-)
>>>
>>> Unfortunately, I have found no solution... yet.
>>
>> So your users receive lot of legimate exes?
>>
>
> It was a zip file.
If you don't want to allow executables and archived executables to be sent via
e-mail
then add these signatures to your dbdir:
$ cat >policy.ndb <<EOF
Policy.NoExecutables:1:*:4d5a{60-300}50450000
EOF
$ cat >policy.cdb <<EOF
Policy.Container.NoExecutables:*:*:.+[.]([Ee][Xx][Ee]|[dD][lL][lL]|[Bb][Aa][Tt]|[Cc][Oo][Mm]|[Ll][Nn][Kk]|[Cc][Mm][Dd]|[Jj][Ss]|[Vv][Bb][Ss]):*:*:*:*:*:*
EOF
Best regards,
--Edwin
_______________________________________________
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.clamav.net/support/ml
