David F. Skoll wrote
> In my experience, ClamAV has become completely useless as a practical
> way to stop viruses. The viruses encrypt and mutate themselves much
> too quickly for ClamAV to keep up. I believe many commercial virus
> scanners are in the same boat. So we just block executables, w
Kamaldeep Singh wrote
> We are using SpamAssassin of version 3.3.1 running on Perl version 5.10.1.
>
> I just want to know, Is it possible to block the "exe" file with
> attached zip/tar file.
If you are using ClamAV you can add-on Third-Party Sanesecurity databas
>Here's a collection from our support folks:
> http://home.bway.net/spork/phish/
Hi,
I've added a few sigs to junk.ndb and phish.ndb which might help a little,
if you are using ClamAV and Third-Party signatures.
Cheers,
Steve
Sanesecurity.co.uk
--
View this message in context:
http://old.na
>I'm definitely looking for other technologies to accurately filter
>outgoing spam. It's clearly a whole different problem than incomming spam.
Clamsmtp with the Sanesecurity+Third-Party signatures, would be one option
and I know a couple
of universities that have used this and
> http://pastebin.com/m2fcbe7b5
Thanks for the sample.. I added detection for the email and exe file
yesterday.
Cheers,
Steve
Sanesecurity
www.sanesecurity.com
--
View this message in context:
http://www.nabble.com/interesting-flash-attack-in-spam-tp22576834p22595958.html
Sent from
over to sanesecurity.co.uk and sign up
to the list...
Cheers and thanks for all the positive comments,
Steve
Sanesecurity
--
View this message in context:
http://www.nabble.com/Temporary-%27Replacements%27-for-SaneSecurity-tp21444618p21459579.html
Sent from the SpamAssassin - Users mailing list archive at Nabble.com.
htm
I've been blocking these for a quite a few days now:
(Email.Malware.Sanesecurity.08072227 [added 22nd July 2008])
Cheers,
Steve
Sanesecurity
--
View this message in context:
http://www.nabble.com/UPS---FedEx-spam-with-virus-attached-tp19078794p19086442.html
Sent from the SpamAssassin -