Atomicorp

Got the same problem/question. Got a Centos 7 / PLESK 12.5 server with ModSecurity and the add-on license for "Atomic Professional ModSecurity". Still a lot of WordPress sites have been hacked, related to "https://blog.sucuri.net/2017/02/content-injection-vulnerability-wordpress-rest-...

I simly deleted the unwanted databases in /var/clamav and commented out the following part in /etc/cron.daily/freshclam: # Current 3rd party channel updater #if [ -x /usr/bin/clamav_updater.sh ]; then # /usr/bin/clamav_updater.sh >/dev/null 2>&1 #fi Now things run smoothly and SA rules does the ...

What are the settings needed to /etc/qmail-scanner.ini to delete a virusmail detected by clamAV?

Hello. I have not done any additional config to ClamAV so it should be the default settings. But what happends to an email that get a match for something in the ClamAV databases. It 's beeing moved into the quarantine and then...? Does it reply something to the sender or does it forward someting to ...

Nah, if I would like to SPAM my customers I would simply kill our Gamera boxes =) But from time to time we get big SPAM outbreak hitting our customers domains and therefor also the Gamera boxes. The logs keep saying virus_found_in_message and the preprocessed qmail queue is building up really fast. ...

Hello. About the ClamAV database files in /var/clamav in Gamera, wich one of these is the pure virus database and how can I configure ClamAV to just update that datasebase? Now if I remove files/dbs in there it gets back over night when the update is run. I simply do only want ClamAV to check for vi...

Hello. I have been having a huge load issue on two Gamera-boxes lately and began to dig around. What I found was that bayes_seen had a size of 665MB. Is that anyhow normal? I backuped up the bayes dir and resat the bays to ZERO. The load was heavely reduced at once and we still get a SPAM-detection ...

Actually I did have pyzor installed and SA configured to use it. Also confirmed in the maillog that PYZOR_CHECK is is the SA result for detected SPAM. I just didn´t really knewthat Pyzor did what it does... So, next step... Can I do a check with pyzor/razor and have SPAM deleted if it get a high pyz...

Hmm, I´ll need to check on that. Belive I just ran the "yum install project" gamera way back in time and can´t remember is pyzor where included from start... Where do the "pyzor checksum database" come from, how are the checksums collected and can it be updated some easy way equa...

Happy holidays everyone. We are running two Gamera boxes and the clean out SPAM perfecty great, but lately they are beeing slower and slower (simply more mail to handle)... The SA content checks are extremel CPU intensive and when we get a large outbreak hitting us the mail queue grows very fast sin...

Thanks. I'll look into that next week. What about viruses? Does clamd just clean out the infected file and sends the email itself onto spamd or to the email server, or does it delete the whole mail if an virus is found? Just to know how I should calculate the stats found in maillog and know how many...

I just killed an older CentOS4 box with Gamera and installed CentOS5 as a virtual machine on a VMWARE ESXi Server and see that there are some new types of entrys in the maillog, like virus_found_in_sent_message that I havn't seen in the old version. I put togheter a little PHP script that scans trou...

I'll simply let Gamera keep bouncing for now then Besides, a PHP cron that collects info from PSA servers wouldn't be so hard so it might be a future project for us.

Thanks.

I know that this question has been asked a few times but the general answer has been to set the doublebounce and that SPAM should be deleted at a score of X. I use both of them but would really like to simply not send any bounce at all. It might be trouble for the ones misspelling email adresses etc...

I will simply go ahead and install 64-bit. Sounds like the best solution without any real disadvantages (I rather see advantages...)

Thanks for the fast replies Scott and Breun!