To start off with, we are running the following: Whitebox Linux 3.0ES Latest Open Protect (Great product!) ClamAV up to date
That being said, I'm having a problem where legitimate attachments are being refused because of their name. Here's what the log showed: Apr 12 15:34:22 pop MailScanner[1235]: New Batch: Scanning 1 messages, 114267 bytes Apr 12 15:34:23 pop MailScanner[1235]: MCP Checks: Starting Apr 12 15:34:24 pop MailScanner[1235]: Spam Checks: Starting Apr 12 15:34:32 pop MailScanner[1235]: Virus and Content Scanning: Starting Apr 12 15:34:34 pop MailScanner[1235]: Filename Checks: Found possible filename hiding (_test.LTR.pdf) Apr 12 15:34:34 pop MailScanner[1235]: Filename Checks: Found possible filename hiding (test1-AB.AGR.doc) Apr 12 15:34:35 pop MailScanner[1235]: Filename Checks: Found possible filename hiding (test2.AGR.doc) Apr 12 15:34:35 pop MailScanner[1235]: Other Checks: Found 3 problems Apr 12 15:34:35 pop MailScanner[1235]: Cleaned: Delivered 1 cleaned messages As you can see above, it's the "NAME" of the file that's the problem, not the actual file. The above files are perfectly fine and virus free. However, the server is refusing to deliver. I even added .doc and .pdf to the filename.rules.conf file and white-listed the sender... still, the files come through as attached warnings text files only. HELP!!!! Thanks. Scott
