90"
> I also changed the $scandir to include $wmaildir/tmp that's were the
other
> process are scanning.
>
> -Original Message-
> From: John Narron [mailto:[EMAIL PROTECTED]
> Sent: Wednesday, March 03, 2004 2:35 PM
> To: Jason Staudenmayer; [EMAIL PROTECTED]
>
ot;
(660) 886 4045 | - Queensryche
- Original Message -
From: "Jason Staudenmayer" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Wednesday, March 03, 2004 1:51 PM
Subject: RE: [Qmail-scanner-general]Bagle-h and password protected ZIP files
> Ok reappl
quot;
(660) 886 4045 | - Queensryche
- Original Message -
From: "Jason Staudenmayer" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Wednesday, March 03, 2004 11:46 AM
Subject: RE: [Qmail-scanner-general]Bagle-h and password protected ZIP files
Looks like the sc
uot;
(660) 886 4045 | - Queensryche
- Original Message -
From: "Jason Staudenmayer" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Wednesday, March 03, 2004 1:06 PM
Subject: RE: [Qmail-scanner-general]Bagle-h and password protected ZIP files
> Still no luck
> Global
> Any clues?
>
> -Original Message-
> From: John Narron [mailto:[EMAIL PROTECTED]
> Sent: Tuesday, March 02, 2004 1:35 PM
> To: [EMAIL PROTECTED]
> Subject: Re: [Qmail-scanner-general]Bagle-h and password protected ZIP
files
>
>
> I've been blocking Bagle-H
; The only changes are adding the "sophie_log_virus..." line and changing
> "retval = -1;" to "retval = 1;"
> ---
> Ed
>
> > -Original Message-
> > From: [EMAIL PROTECTED]
> > [mailto:[EMAIL PROTECTED] On
> > Behalf
t;
---
Ed
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On
> Behalf Of Jason Haar
> Sent: Tuesday, March 02, 2004 3:53 PM
> To: [EMAIL PROTECTED]
> Subject: Re: [Qmail-scanner-general]Bagle-h and password
> protected ZIP files
>
>
&g
At 10:18 PM 3/2/2004, Trey Nolen wrote:
> Thanks for posting your quarantine-attachments.txt entries. I had a few
of
> those, but the list sure helped. Also, add:
> Information.zip0 Bagle-H/I
Thanks. The list I got came from Sophos at:
http://www.sophos.com/virusinfo/analyses/w32ba
At 03:52 PM 3/2/2004, Jason Haar wrote:
On Wed, 2004-03-03 at 07:17, CertaintyTech-Ed wrote:
> Anyone else seeing the Bagle-H virus getting thru? I am using Q-S and
> sophie and it is not stopping them. Sophie sees that the ZIP file is
> password encrypted so can't check it for viruses and Q-S go
> Thanks for posting your quarantine-attachments.txt entries. I had a few
of
> those, but the list sure helped. Also, add:
> Information.zip0 Bagle-H/I
Thanks. The list I got came from Sophos at:
http://www.sophos.com/virusinfo/analyses/w32baglei.html
and http://www.sophos.com/vir
Hi,
Thanks for posting your quarantine-attachments.txt entries. I had a few of
those, but the list sure helped. Also, add:
Information.zip0 Bagle-H/I
...just got it that one.
File sizes I've seen are:
MoreInfo.pif 12288 bytes
TextFile.zip 12416 bytes
Attach.zip 12420 bytes
Readm
On Wed, 03 Mar 2004 13:41:49 +1300 Jason Haar <[EMAIL PROTECTED]> wrote:
> I notice that the guys developing clamAV (at least the "dev" version)
> have written a parser to catch this virus. It looks at the text
> attachment first and figures out the password/etc. If you are running
> Q-S with "--r
On Wed, 2004-03-03 at 12:35, Trey Nolen wrote:
> It was getting through on us, and I added some stuff to the
> quarantine-attachements.txt file for qmail-scanner.Here is what I added:
I notice that the guys developing clamAV (at least the "dev" version)
have written a parser to catch this viru
It was getting through on us, and I added some stuff to the
quarantine-attachements.txt file for qmail-scanner.Here is what I added:
AttachedFile.zip0 Bagle-H/I
Attach.zip 0 Bagle-H/I
TextDocument.zip0 Bagle-H/I
Readme.zip 0 Bag
On Wed, 2004-03-03 at 07:17, CertaintyTech-Ed wrote:
> Anyone else seeing the Bagle-H virus getting thru? I am using Q-S and
> sophie and it is not stopping them. Sophie sees that the ZIP file is
> password encrypted so can't check it for viruses and Q-S goes ahead and
> passes it thru. Does any
e line
http://www.cdsinet.net | In the face of injury?"
(660) 886 4045 | - Queensryche
- Original Message -
From: "CertaintyTech-Ed" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Tuesday, March 02, 2004 12:17 PM
Subject: [Qmail-scanner-general]Bagle-h and passw
Anyone else seeing the Bagle-H virus getting thru? I am using Q-S and
sophie and it is not stopping them. Sophie sees that the ZIP file is
password encrypted so can't check it for viruses and Q-S goes ahead and
passes it thru. Does anyone know of any way to catch this one? For now
I am blocking
17 matches
Mail list logo
