----- Original Message ----- From: "Raquel Rice" <[EMAIL PROTECTED]>
> > [...] > > > I suspect other ports are in use too, but haven't noticed. The > > > next version will no doubt randomize the port. Dodgy emails > > > will simply say:"check this >URL<" at which point email content > > > scanners have next to nothing to go on. > > > > Some virus scanners now check http links, as well. Sometimes a > > switch needs to be set to enable this. For example, newer > > versions of ClamAV support the following switch: > > > > --mail-follow-urls Download and scan URLs > > Quoted from man clamd.conf > > MailFollowURLs > If an email contains URLs ClamAV can download and scan > them. WARNING: This > option may open your system to a DoS attack. > Never use it on loaded > servers. > Default: disabled Yep, each mail admin will need to assess their risk versus capacity thresholds. FWIW, I have been running with this switch enabled in my clamd.conf on both of my gateways for several weeks without issue. But again, you will need to determine your own needs and requirements. Bill
