On 8/20/12 6:41 AM, G.W. Haywood wrote:
The vast majority of those will be detected via
third-party databases, in particular at the moment INetMsg.SpamDomain
is running at about 50% and Sansecurity about 20% of detections.
Unless something has changed again that I missed, the INetMsg signature
>>It isn't clear to me whether you are accepting or rejecting unwanted
>>mail. My advice is to reject all unwanted mail. If you accept it,
>>the scrotes will just send more of the stuff.
My current configuration has me accepting anything that might be spam,
although, frankly, I can't remember t
On Aug 20, 2012, at 11:06 AM, Joel Esler wrote:
> Begin forwarded message:
>
Sorry about that all! Email auto-correct!
___
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.clamav.net/support/ml
Begin forwarded message:
> From: "Patrick Holahan"
> Subject: [Clamav-mirrors] mirror.ac.za details update.
> Date: August 20, 2012 10:52:03 AM EDT
> To:
> X-Mimeole: Produced By Microsoft Exchange V6.5
> Mime-Version: 1.0
> User-Agent: Microsoft-Entourage/12.33.0.120411
>
> Dear clamav mirro
Hi there,
On Mon, 20 Aug 2012, Mark A. Olbert wrote:
... now there's a lot more stuff to review before reporting. ...
Your statistics seem a bit grim to me. It certainly sounds like a lot
of work which might not be necessary. On a typical business day we
see something between five and ten t
On Aug 20, 2012, at 6:46 AM, Henri Salo wrote:
> Is there a way to configure ClamAV to scan also files with starting
> GIF87a/GIF89a? We get attacks like this daily.
I assume you mean detecting PHP files with that at the beginning?
--
Joel Esler
Senior Research Engineer, VRT
OpenSource Commu
> -Original Message-
> From: clamav-users-boun...@lists.clamav.net [mailto:clamav-users-
> boun...@lists.clamav.net] On Behalf Of Henri Salo
> Subject: [clamav-users] Problems detecting PHP bots
>
> Hello,
>
> Is there a way to configure ClamAV to scan also files with starting
> GIF87a/GI
On Aug 20, 2012, at 7:46 AM, "Birgelen, Jeroen van"
wrote:
> LS,
>
> I would kindly like to request some information on whether ClamAV is
> detecting the Dorifel Trojan/virus which is currently spreading (at least in
> The Netherlands), since two weeks or so.
>
> At the moment, according to
LS,
I would kindly like to request some information on whether ClamAV is detecting
the Dorifel Trojan/virus which is currently spreading (at least in The
Netherlands), since two weeks or so.
At the moment, according to an overview on the website of virustotal.com, most
major anti-virus tools c
Hello,
Is there a way to configure ClamAV to scan also files with starting
GIF87a/GIF89a? We get attacks like this daily.
fgeek@example:~/samples-2012-05-09$ clamdscan x.php*
/home/fgeek/samples-2012-05-09/x.php: OK
/home/fgeek/samples-2012-05-09/x.php.2: PHP.Bot FOUND
--- SCAN SUMMARY
10 matches
Mail list logo
