Skip site navigation (1)Skip section navigation (2) 
Date:      Sat, 17 Apr 2004 19:29:56 +0100
From:      Matthew Seaman <m.seaman@infracaninophile.co.uk>
To:        Chuck Swiger <cswiger@mac.com>
Cc:        questions@freebsd.org
Subject:   Re: Milter Logging
Message-ID:  <20040417182956.GB90463@happy-idiot-talk.infracaninophile.co.uk>
In-Reply-To: <408170DB.3070201@mac.com>
References:  <20040416215610.Y1689@wonkity.com> <408170DB.3070201@mac.com>
next in thread | previous in thread | raw e-mail | index | archive | help 

--QTprm0S8XgL7H0Dt
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Sat, Apr 17, 2004 at 02:00:59PM -0400, Chuck Swiger wrote:
> Warren Block wrote:
> >What do people do for milter logging?  A MAILER-DAEMON message for every
> >virus caught by clamav-milter is a little annoying (both to the intended
> >recipient and to postmaster), but I'm hesitant to just discard them.

clamav-milter logs what it does to syslog very effectively.  The
warning messages to postmaster aren't really necessary but for a low
traffic site, they do give you some vicarious pleasure for a while.
=20
> Well, the standards (RFC-822/2822) are clear, but with the dawn of viruse=
s=20
> that forge sender addresses, creating bounces for viruses doesn't really =
do=20
> anybody much good, either.
>=20
> Refusing to accept viral mail is the best option if you can; failing that=
,=20
> I discard such messages.  Frankly, I gave up bouncing viral mail after I=
=20
> got tired of answering complaints when someone got a bounce from a=20
> forgery...

Yes -- rejecting the messages at the SMTP DATA stage is the way to go.
Not that the virus mailers take the slightest bit of notice: half the
time they've dropped the connection by the time the AV filter has done
its thing.  It's much more effective against spam e-mailers.

	Cheers,

	Matthew

--=20
Dr Matthew J Seaman MA, D.Phil.                       26 The Paddocks
                                                      Savill Way
PGP: http://www.infracaninophile.co.uk/pgpkey         Marlow
Tel: +44 1628 476614                                  Bucks., SL7 1TH UK

--QTprm0S8XgL7H0Dt
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (FreeBSD)

iD8DBQFAgXekdtESqEQa7a0RAofSAJ9nNOH3q78F97Xoe53iTwXxzcg62wCcCLME
fyOP1OC7HQ6V6oGthVcJcik=
=0NR3
-----END PGP SIGNATURE-----

--QTprm0S8XgL7H0Dt--

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040417182956.GB90463>