|Main Archive Page > Month Archives > clamav-users archives|
Tx for the reply but in my case it is not that easy.
I am using courier-mta and courier-pythonfilter to connect the mta and
This filter is using libclamav directly
and in clamd.conf I have :
but still have virus alert in the maillog
Dennis Peterson wrote:
> FM wrote:
>> I have lots of false positive with clamav phishing detection.
>> What is the correct way to remove these rules using sigtool?
> From a recent post:
> > You can disable the heuristics-based phish checks without
> > disabling the signature-based checks. Both the official
> > clamav and SaneSecurity sigs will still work, but the false
> > positive prone heuristics will be disabled.
> > With clamscan, use the --no-phishing-scan-urls option.
> > For clamd/clamdscan set in your clamd.conf:
> > DetectPhishing yes
> > PhishingScanURLs no
> > and restart clamd.
> Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net