On Mon, 8 Oct 2007, Joao S Veiga wrote:
> To me, is more logical/easier/less annoying to explode the mboxes ONLY if
> something is found in them instead of exploding all the mboxes to scan them
> (in
> 99.842% of the cases, they will be clean anyway).
If you use the SaneSecurity signatures, it is
On Mon, 2007-10-08 at 16:25 -0300, Joao S Veiga wrote:
> > Of course. However, I got the impression that neither of the recent
> > reporters does this additional step. Also, this gets even more annoying
> > (and maybe impossible) when dealing with PST files (which one of the OPs
> > does).
>
> Hi
> > Unless you separate the mbox file(s) into maildir files and then you get
exactly what
> > you expect. It is, however, an annoying additional step one must take to
> > ensure
> > systems are as secure as possible.
>
> Of course. However, I got the impression that neither of the recent
> repo
On Mon, 2007-10-08 at 09:15 -0700, Dennis Peterson wrote:
> Karsten Bräckelmann wrote:
> >>> Another downside of this approach, together with ClamAV treating mbox
> >>> format files as text/plain is, that only the first hit will be reported.
> >> That was made to improve performance, the Changelog
Karsten Bräckelmann wrote:
> On Wed, 2007-10-03 at 18:31 -0500, René Berber wrote:
>> Karsten Bräckelmann wrote:
>
>>> Another downside of this approach, together with ClamAV treating mbox
>>> format files as text/plain is, that only the first hit will be reported.
>> That was made to improve perf
On Wed, 2007-10-03 at 18:31 -0500, René Berber wrote:
> Karsten Bräckelmann wrote:
> > Another downside of this approach, together with ClamAV treating mbox
> > format files as text/plain is, that only the first hit will be reported.
>
> That was made to improve performance, the Changelog say so.
On Wed, Oct 03, 2007 at 08:46:36PM -0700, Dennis Peterson wrote:
> Any chance to set policy that requires the pattern writers anchor the
> patterns so
> they stay inside a message? I don't if the code can compile something like
> this, but
> it prevents (on first blush) spanning messages:
>
>
Tomasz Kojm wrote:
> On Thu, 04 Oct 2007 00:47:02 +0200
> Karsten Bräckelmann <[EMAIL PROTECTED]> wrote:
>
>> On Wed, 2007-10-03 at 10:45 -0700, Dennis Peterson wrote:
>>> Karsten Bräckelmann wrote:
>> Developers, read on. :)
>>
Somewhat simplified, the signature reads "Subject with the strin
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Karsten Bräckelmann wrote:
[snip]
> Another downside of this approach, together with ClamAV treating mbox
> format files as text/plain is, that only the first hit will be reported.
[snip]
That was made to improve performance, the Changelog say so.
On Thu, 04 Oct 2007 00:47:02 +0200
Karsten Bräckelmann <[EMAIL PROTECTED]> wrote:
> On Wed, 2007-10-03 at 10:45 -0700, Dennis Peterson wrote:
> > Karsten Bräckelmann wrote:
>
> Developers, read on. :)
>
> > > Somewhat simplified, the signature reads "Subject with the string game"
> > > and "an I
Karsten Bräckelmann wrote:
> On Wed, 2007-10-03 at 10:45 -0700, Dennis Peterson wrote:
>> Karsten Bräckelmann wrote:
>
> Developers, read on. :)
>
>>> Somewhat simplified, the signature reads "Subject with the string game"
>>> and "an IP style http link".
>>>
>>> Scanning maildirs as well as scan
On Wed, 2007-10-03 at 10:45 -0700, Dennis Peterson wrote:
> Karsten Bräckelmann wrote:
Developers, read on. :)
> > Somewhat simplified, the signature reads "Subject with the string game"
> > and "an IP style http link".
> >
> > Scanning maildirs as well as scanning individual messages before
> >
12 matches
Mail list logo
