Nick Giordano wrote:
> We have seen a few errors ("corrupt or unknown MacAfee scanner error
> or memory/resource/perms problem") that are generated by this
> routine. It looks to me like if MacAfee fails because of a
> vulnerability or resource exhaustion this check fails open and allows
> the message to pass. Is this the case and is it the desired behavior?
>
What makes you say it fails open? I see &error_condition being called
for that error msg, and that causes a temp fail - i.e. it doesn't
deliver the message, instead causing a SMTP temp fail to retry later.
--
Cheers
Jason Haar
Information Security Manager, Trimble Navigation Ltd.
Phone: +64 3 9635 377 Fax: +64 3 9635 417
PGP Fingerprint: 7A2E 0407 C9A6 CAF6 2B9F 8422 C063 5EBB FE1D 66D1
-------------------------------------------------------
This SF.net email is sponsored by: Splunk Inc. Do you grep through log files
for problems? Stop! Download the new AJAX search engine that makes
searching your log files as easy as surfing the web. DOWNLOAD SPLUNK!
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=103432&bid=230486&dat=121642
_______________________________________________
Qmail-scanner-general mailing list
Qmail-scanner-general@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/qmail-scanner-general
