On Saturday 31 October 2009, Adam Katz wrote: >Yet Another Ninja wrote: >> On 10/31/2009 2:33 PM, Gene Heskett wrote: >>> This looks like what I had in mind. But since I don't have that part >>> checked out yet, would it then delete the mail because clamdscan had >>> an error? I'll enable the second after the first is working. :) >> >> my recipe was stolen from this >> >> see >> http://wiki.clamav.net/bin/view/Main/ClamAndProcmail > >I like this one better ... it shows the scan results. >http://wiki.apache.org/spamassassin/FilteringViruses > >(Odd that the SA wiki's version is more complete than Clam's...) > >There's also an SA plugin that can call ClamAV, see >http://wiki.apache.org/spamassassin/ClamAVPlugin > >However, I highly recommend something that interacts at SMTP-time so >that a 500-series reject notice can be issued, letting the sender know >that the message wasn't delivered due to its virus/malware content (I >also feel this way about spam filtering).
Is this possible by the users of fetchmail or mpop? I wasn't aware that a pop client has the rights to issue a 500 reject to a pop3 server.. In addition to trying to get clamav running from a procmail recipe, I am looking into replacing fetchmail with mpop. >Also note (and this is a current predicament on my own deployment) that >clamdscan (as well as clamav-milter, which is what I use) is incapable >of breaking some attachments out of emails; an EICAR test attached with >Thunderbird still gets delivered in all three of the above >implementations on my system. > -- Cheers, Gene "There are four boxes to be used in defense of liberty: soap, ballot, jury, and ammo. Please use in that order." -Ed Howdershelt (Author) The NRA is offering FREE Associate memberships to anyone who wants them. <https://www.nrahq.org/nrabonus/accept-membership.asp> What I tell you three times is true. -- Lewis Carroll