[Avcheck] Virus warning message
Michael Tokarev
mjt@tls.msk.ru
Tue, 14 Aug 2001 15:57:35 +0400
Nacho Ruiz wrote:
>
> Hi All,
> when i send a mail with a virus attached to test avcheck, I see this msg in
> maillog:
>
> Aug 14 11:37:51 hermetik postfix/pipe[14832]: 5978E22F84:
> to=<nax@www.catradio.com>, relay=avcheck, delay=0, status=bounced (service
> unavailable. Command output: Message didn't pass the virus check: Infected
> by a virus )
>
> how can the virus prog say what type of virus is instead of say a generic
> "infected by a virus" msg?
"Infected by a virus" means that antivirus daemon tells nothing about what
kind of a virus it detected -- i.e. when antivirus returned
"infected"
code but not a detailed message. I never seen that before, but included
such variant "just in case". Well, I want to see it! ;)
Can you send me your infected message and some more details about your
config (OS, av(p)check version, and especially antivirus software/version)?
please, include *complete* infected message that you tried to send, with
headers et al, in *encrypted* .zip archive (make an archive with a password),
and send password in the same mail message to me. Or, place this somewhere
in ftp/www area and send me an url.
And please, try to send eicar.msg file to your mail system and see what
message it will generate.
Regards,
Michael.