[EMAIL PROTECTED] <> wrote: > Adam Goryachev wrote: >> [EMAIL PROTECTED] <> wrote: >>> (Doug: as far as the "-m" option WRT ClamAV goes - let me have a look at >>> that - it's a separate, specific issue) >> I would suggest against adding the -m flag (at least it shouldn't be >> added by default). All the clamav docs I have read strongly advise >> against using the mime decoding built into clamav due to potential >> memory leaks and bugs. In fact, there was some sort of bug/hole found in >> that code just last week (or maybe the week before)... > Thanks for pointing that out. > I'm honestly not knowledgable enough wrt clamav development > to argue the > point but just to followup on this, can you point to a ref of such > bug/hole? If you're speaking of the problem with mbox code crashing on > some MIME type/subtypes from around November 2003: > http://www.mail-archive.com/clamav-devel%40lists.sourceforge.net/msg0045 5.html > http://www.mail-archive.com/clamav-devel%40lists.sourceforge.net/msg0045 7.html > > Perhaps those crashes are indeed reason enough to steer clear of using > -m, but those specific issues have been addressed in newer releases. The > only recent issue with mbox code that I'm aware of is a problem > compiling with cywin.
http://www.clamav.net/faq.html#pagestart Point 4: A rogue mail locks up clamd when scanned and stops it from responding. What can I do? Disable the ScanMail directive in clamav.conf. Our internal mail scanner is still in high development. You'd better rely upon the mime handling function of an external program (like qmail-scanner, exiscan, etc.) "high development" doesn't sound like the sort of thing you want to use on a production mail server. Unless of course, that has changed, in which case the FAQ should be updated. Also, I have no specific knowledge about clamav, except for what I have read about it and the source code sections I looked at. BTW, I still haven't had any feedback from anyone regarding the clamav patches for qmail-scanner I sent to the list, but it has been working fine here on our production mail server. Regards, Adam -- Adam Goryachev Website Managers Ph: +61 2 9345 4395 [EMAIL PROTECTED] Fax: +61 2 9345 4396 www.websitemanagers.com.au ------------------------------------------------------- SF.Net is sponsored by: Speed Start Your Linux Apps Now. Build and deploy apps & Web services for Linux with a free DVD software kit from IBM. Click Now! http://ads.osdn.com/?ad_id=1356&alloc_id=3438&op=click _______________________________________________ Qmail-scanner-general mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/qmail-scanner-general
