On 12/18/14 6:29 AM, polloxx wrote:
Since more and more malware is not attached to a mail but only an url to
it, detecting it is challenge. Is there any good url scanner avalable for
Clamav?
Thx,
P.
The Sendmail/Postfix milter J-Chkmail (and front end for ClamAV) can use DNS or
regular expressi
Sanesecurity's distibution of multiple sourced data (sansesecurity, CRDF,
winnow and others) have url detections in them but you really need to add SURBL
and Spamhaus' DBL in content filtering as well.
On Dec 18, 2014, at 11:50 AM, Arnaud Jacques / SecuriteInfo.com
wrote:
> Le jeudi 18 décemb
Le jeudi 18 décembre 2014, 15:29:13 polloxx a écrit :
> Since more and more malware is not attached to a mail but only an url to
> it, detecting it is challenge. Is there any good url scanner avalable for
> Clamav?
https://www.malwarepatrol.net
Their signatures for Clamav are based on URLs. May b
On 18. dec. 2014 15.30.08 polloxx wrote:
Since more and more malware is not attached to a mail but only an url to
it, detecting it is challenge. Is there any good url scanner avalable for
Clamav?
Squidclamav via icap in squid, then safebrowsing comes more to mind
_
You need to look into a content filter that can use spamhaus.ro and/or
surbl.org DNS based RBLs.
On Dec 18, 2014, at 9:40 AM, Steve Basford
wrote:
>
> On Thu, December 18, 2014 2:29 pm, polloxx wrote:
>> Since more and more malware is not attached to a mail but only an url to
>> it, detecting
On Thu, December 18, 2014 2:29 pm, polloxx wrote:
> Since more and more malware is not attached to a mail but only an url to
> it, detecting it is challenge. Is there any good url scanner avalable for
> Clamav?
Millions of years ago...there used to be a clamd.conf MailFollowURLs Yes
option, whic
Since more and more malware is not attached to a mail but only an url to
it, detecting it is challenge. Is there any good url scanner avalable for
Clamav?
Thx,
P.
___
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq
htt
