[Mimedefang] Clamav/ExceededFileSize and Mimedefang

Christoph Martin martin at uni-mainz.de
Wed May 21 11:43:56 EDT 2008

Hi all,

Mimedefang should improve the handlich of clamav return messages.

Clamav has an option ArchiveBlockMax, which considers compressed files
or archives as virus if they exceed a certain message size. The default
for this option is at least for Debian true. So clamav signals such a
file eg. as "virus Zip.ExceededFileSize" and mimedefang rejects or drops
the file as virus. The clamav people argue that such a file "could" be a
mailbomb. Mimedefang should at least handle it differently than "normal"
viruses. These files are "normally" no viruses and should not be touched.

What do you think?


Christoph Martin, Leiter der EDV der Verwaltung, Uni-Mainz, Germany
 Internet-Mail:  Christoph.Martin at Verwaltung.Uni-Mainz.DE
  Telefon: +49-6131-3926337
      Fax: +49-6131-3922856

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 252 bytes
Desc: OpenPGP digital signature
URL: <https://lists.mimedefang.org/pipermail/mimedefang_lists.mimedefang.org/attachments/20080521/b6825bce/attachment-0003.sig>

More information about the MIMEDefang mailing list