Philip Parsons | 12 Feb 01:42 2016

Has anyone else seen clamscan takeup 99% cpu

I have update mailscanner to the latest and clamav .99 and now when there is 30 messages clamscan take all the cpu ? any idea’s

 

 

Thank you.
Philip Parsons

 


--

-- 
MailScanner mailing list
mailscanner <at> lists.mailscanner.info
http://lists.mailscanner.info/listinfo/mailscanner

Pieter Goris | 11 Feb 17:28 2016
Picon

drobox

Hi,

 

Why is www.dropbox.com in phishing.bad.sites.conf? I tried to add it to phishing.safe.sites.conf to override this listing but the safe sites don't supersede the bad sites.

 

Regards,

Pieter Goris


--
This message has been scanned for viruses and dangerous content by
Cisa Antispam Service, and is believed to be clean.

--

-- 
MailScanner mailing list
mailscanner <at> lists.mailscanner.info
http://lists.mailscanner.info/listinfo/mailscanner

Jerry Benton | 11 Feb 14:29 2016
Gravatar

Testing Server Status

Server was down. (Thanks, Rackspace.) Testing functionality. 

-
Jerry Benton
www.mailborder.com

--

-- 
MailScanner mailing list
mailscanner <at> lists.mailscanner.info
http://lists.mailscanner.info/listinfo/mailscanner

John Price | 11 Feb 05:31 2016
Picon

Disable scanning outgoing mailing list mail

I've installed MailScanner on a Ubuntu machine with postfix. Seems to
be working well, except all outgoing email is scanned.

I run a mailing list (mailman) with some lists having thousands of
subscribers, and I don't want to scan all those outgoing emails.  How
should I disable scanning those?

Thanks,
John

-- 
All my life I said I wanted to be someone...I can see now
that I should have been more specific.

Have a great day and don't forget to laugh!

http://www.gcfl.net (The Good, Clean Funnies List): Good,
clean daily funnies you can safely tell your Mom!

--

-- 
MailScanner mailing list
mailscanner <at> lists.mailscanner.info
http://lists.mailscanner.info/listinfo/mailscanner

Moris Kod | 8 Feb 01:17 2016
Picon

Virus Parser

Where would one tweak the virus scanner parser for f-prot?   I'm trying to get MailScanner to strip macros off of word
and excel documents.  


--

-- 
MailScanner mailing list
mailscanner <at> lists.mailscanner.info
http://lists.mailscanner.info/listinfo/mailscanner

Jerry Benton | 6 Feb 10:57 2016
Gravatar

Trimming the fat from MailScanner

Here I sit creating the RPM build and I am thinking that there are some items that just are not needed anymore.
For example, we don’t update_virus_scanners nor do we need update_spamassassin. I don’t know of any
virus scanner package that does not have its own update platform. The same is true Spamassassin.
sa-compile will automatically do what is needed as long as you have re2c installed and the Rule2XSBody
module installed and loaded.

So in addition to standardizing the directory structure across all platforms, I am also removing these
scripts. They are far beyond their expiration date. 

I am also removing processing_messages_alert from being in any cron by default. 

-
Jerry Benton
www.mailborder.com

--

-- 
MailScanner mailing list
mailscanner <at> lists.mailscanner.info
http://lists.mailscanner.info/listinfo/mailscanner

Pieter Goris | 5 Feb 14:41 2016
Picon

Blocking custom file extension is not working

So I managed to block the .()bat with this rule:

deny   \.[(][)][a-zA-Z0-9][a-zA-Z0-9][a-zA-Z0-9]   Possible malicious file   Files hiding behind () are often malicious

 

Now the question is why dll are blocked but not the ones sent by the test system?

 

Regards,

Pieter Goris


--
This message has been scanned for viruses and dangerous content by
Cisa Antispam Service, and is believed to be clean.

--

-- 
MailScanner mailing list
mailscanner <at> lists.mailscanner.info
http://lists.mailscanner.info/listinfo/mailscanner

Jerry Benton | 4 Feb 17:51 2016
Gravatar

Bug

MailScanner has had a bug for the longest time. I am currently working on packaging for the new version, so if
someone could investigate this I would appreciate it. 

In scan.message.rules you have three options: yes,no,virus

Yes and No work correctly. However, Virus does not. The intent for that setting is to only scan for viruses.
However, MailScanner seems to perform all of the normal checks as if the setting were Yes.

Can someone take a look and do some testing please? 

-
Jerry Benton
www.mailborder.com

--

-- 
MailScanner mailing list
mailscanner <at> lists.mailscanner.info
http://lists.mailscanner.info/listinfo/mailscanner

Pieter Goris | 4 Feb 15:02 2016
Picon

Blocking custom file extension is not working

Denis,

 

I’m trying to block .()bat files.

 

Regards,

Pieter Goris


--
This message has been scanned for viruses and dangerous content by
Cisa Antispam Service, and is believed to be clean.

--

-- 
MailScanner mailing list
mailscanner <at> lists.mailscanner.info
http://lists.mailscanner.info/listinfo/mailscanner

Pieter Goris | 4 Feb 10:02 2016
Picon

Blocking custom file extension is not working

Hi,

 

So I want to block .dll and .()bat but mailscanner is not doing it.

I added this to the filename.rules at the bottom:
deny \.dll$ dll-files are not allowed         dll-files are not allowed
deny \.()bat$ Possible malicious batch file script               Batch files are often malicious

 

Regards,

Pieter Goris


--
This message has been scanned for viruses and dangerous content by
Cisa Antispam Service, and is believed to be clean.

--

-- 
MailScanner mailing list
mailscanner <at> lists.mailscanner.info
http://lists.mailscanner.info/listinfo/mailscanner

Jerry Benton | 1 Feb 03:29 2016
Gravatar

Permissions

If someone could help me figure this out please … 

Ok, the MailScanner package works fine, but it bitches when running “MailScanner —lint”

Sometimes it works, and sometimes it doesn’t. Specifically, the error below. Note that everything is
installed correctly and the files exist with the right permissions. This is with a Postfix install. I have
not seen the error on a sendmail install.

You want to use SpamAssassin but have not installed it. at
/usr/share/MailScanner/perl/MailScanner/SA.pm line 177.
I will run without SpamAssassin for now, you will not detect much spam until you install SpamAssassin. at
/usr/share/MailScanner/perl/MailScanner/SA.pm line 178.
WARNING: You are trying to use the Processing Attempts Database but your DBI and/or DBD::SQLite Perl
modules are not properly installed! at /usr/sbin/MailScanner line 1753.
ERROR: Could not connect to SQLite database /var/spool/MailScanner/incoming/Processing.db, either I
cannot write to that location or your SQLite installation is screwed. at /usr/sbin/MailScanner line 1764.

https://s3.amazonaws.com/msv4/deb/MailScanner-4.86.1-3.deb.tar.gz

-
Jerry Benton
www.mailborder.com

--

-- 
MailScanner mailing list
mailscanner <at> lists.mailscanner.info
http://lists.mailscanner.info/listinfo/mailscanner


Gmane