This one time, at band camp, Devin Carraway said: > Clamd provides a number of config knobs to specify maximum sizes and file > counts and so forth in archives. However, it regards archive > files/attachments that exceed those limits as infected, rather than passing on > them. I can appreciate wanting a conservative deny-all-pass-some behavior for > some uses, but this makes trouble for others, such as the use of clamdscan in > SMTP scanners which prefer to err towards false-negative when dealing with > large attachments. For that use case, it'd be nice to have a config option or > commandline switch or something to choose between the two.
Do you have ArchiveBlockMax enabled? The behavior you describe sounds like you do. -- ----------------------------------------------------------------- | ,''`. Stephen Gran | | : :' : [EMAIL PROTECTED] | | `. `' Debian user, admin, and developer | | `- http://www.debian.org | -----------------------------------------------------------------
pgppDEOY8bjXu.pgp
Description: PGP signature
