Re: [Clamav-users] What triggers "Suspicious recipient address blocked"?
micah wrote: I'm getting a number of these in my logs now that clamav-milter is chewing away at incoming SMTP requests: Aug 28 03:59:40 mx2 postfix/smtpd[30473]: NOQUEUE: milter-reject: RCPT from cho0.0.0.0-36-3.fbx.proxad.net[0.0.0.0]: 554 5.7.1 Suspicious recipient address blocked; from=<[EMAIL PROTECTED]> proto=ESMTP helo= but I'm not seeing what the recipient actually is. Although you don't mention it, I take it you're getting this message in the syslog. The recipient is stored in ClamAV's log, see the LogFile directive in clamd.conf. Thanks for any information, Micah -Nigel ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://lurker.clamav.net/list/clamav-users.html
Re: [Clamav-users] As soon as Sourcefire starts charging for viru... STOP it already
Now that this dead horse has been beaten into pulp and is slowly seeping into the gravel, can we please, pretty please leave that fruitless discussion? Thank you very much for your understanding. -- Tilman Schmidt Abteilungsleiter Technik Tilman Schmidt [EMAIL PROTECTED] Phoenix Software GmbH Tel. +49 228 97199 0 Geschäftsführer: W. Grießl Fax +49 228 97199 99 Adolf-Hombitzer-Str. 12 www.phoenixsoftware.de 53227 Bonn, GermanyAmtsgericht Bonn HRB 2934 signature.asc Description: OpenPGP digital signature ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://lurker.clamav.net/list/clamav-users.html
[Clamav-users] Missing headers in quarantine files
Hello, still running on 0.90.2; could someone explain how to keep the original headers in the quarantine files? The --headers flag makes no difference and is for reports, not the quarantine format. As it is now, only the Received, From, To and Content-type is kept, the rest is discarded by clamav (clamav-milter I guess). Scanned and delivered messages have the original headers intact. Thanks in advance, //D ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://lurker.clamav.net/list/clamav-users.html
Re: [Clamav-users] As soon as Sourcefire starts charging for viru... STOP it already
Tilman Schmidt wrote: > Now that this dead horse has been beaten into pulp and is slowly seeping > into the gravel, can we please, pretty please leave that fruitless > discussion? > > Thank you very much for your understanding. Classic post, Herr Schmidt. Well done - you still have the fire. Succinct, understated, poignant. :) dp ___ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://lurker.clamav.net/list/clamav-users.html
