Hi, try this in the malware deny stanza: condition = ${if <{$message_size}{xxxK}{true}{false}}
where xxx is the upper size limit. HTH, Shane Jeff Lasman wrote: > Please forgive me if this can be easily found; I actually googled about > fifteen different pages before realizing I couldn't find what I needed > to know <frown>. > > I'm using the following ACL (note it will most likely wrap) to check > with ClamAV. > > What change do I have to make so it'll only check (for example, files > under 1MB? > > Thanks. > > <snip> > # ACL that is used after the DATA command > check_message: > # accept without checking if in skip_av_domains > accept condition =${if and {{def:acl_m0}{def:acl_m0}} {true}{false}} > > deny message = This message contains malformed MIME ($demime_reason) > demime = * > condition = ${if >{$demime_errorlevel}{2}{1}{0}} > > deny message = This message contains a virus or other harmful content > ($malware_name) > demime = * > malware = * > > deny message = This message contains an attachment of a type which we > do not accept (.$found_extension) > demime = bat:com:pif:prf:scr:vbs > > warn message = X-Antivirus-Scanner: Seems clean. You should still use > an Antivirus Scanner > accept > </snip> > > Jeff -- ## List details at http://lists.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://wiki.exim.org/