![[F]](/Images/i-alt-n/site.gif){kind=small}
Alt-N Discussion Groups 
MDaemon Discussion Groups MDaemon Support Archive
Please add more info to X-MDAV-Infected header
Chris Clark
Newbie
Posts: 4
Newbie
Posts: 4
Chris Clark - 11:07am, Jul 19 2019
Hi,
Merging ClamAV and Cyren seems to be a sensible move but I've lost the ability to use the Content Filter to distinguish between the various things that ClamAV can detect, especially as I use 3rd party signatures.
Here's an example:
The email contains:-
X-MDAV-Infected: pd1530027480.att
X-MDBadQueue-Reason: WARNING! infected with virus (pd31876688.txt)
While the clamd.log contains,-
C:/MDaemon/CFilter/TEMP/965010511/pd1530027480.att: Heuristics.OLE2.ContainsMacros(65a892876fa1a66bb6232eebeaaf92ba:379904) FOUND
pd31876688.txt doesn't give me any information. In 15.8.3 an infected email contained a header like this:-
X-CAV-VirusName: Sanesecurity.Jurlbl.71541b.UNOFFICIAL
It would be nice if a future version of MDaemon could include a header with the signature that ClamAV had detected,
Chris
|
| ||||||||||||||||||||||||||||||
|
