I'm running v1.16. It would be nice to be able to have perlscanner logic be able to match an attachment size of zero. As it now sits, zero is used to indicate no-size specified. If we used a negative number to specify ignore size, then zero could be matched, which could be helpful in some situations.
I'm finding inbound messages being generated with the virus payload broken, in effect, the exploit was partial. So my usual uvscan detection via the attachment (say) fails, yet I'd like to detect this specific condition.
In the case I'm thinking of now, we get zero length exe files as payload (the bogus microsoft patchyourselfup exploit). I'd like to match for zero length exe files and "silent"ly drop them. Other non virus exe files deserve a policy statement to the sender, in our case.
Perhaps there are other ways of doing this. I'm interested in ideas.
Thanks
John
------------------------------------------------------- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf _______________________________________________ Qmail-scanner-general mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/qmail-scanner-general
