We*re using following acl's:
acl_check_content:
deny message = This message contains a MIME error ($demime_reason)
demime = *
condition = ${if >{$demime_errorlevel}{2}{1}{0}}
# Reject virus infested messages.
deny message = This message contains malware ($malware_name)
malware = *
warn message = X-Spam-Score: $spam_score ($spam_bar)
spam = nobody:true
warn message = X-Spam-Report: $spam_report
spam = nobody:true
warn message = X-New-Subject: *SPAM* $h_Subject
spam = nobody
accept
... it works...
But I have to resolve following problem:
We are using sophie as scan software. sophie has (still(?)) problems with
some attachments, for example: splitted multivolume archives, encrypted
files, unsupported file types.
If sophie is down, the module returns a temporary error.
For all these cases we want accept the received email and send it
(+warning header) to the given recipient(s).
Only infected emails we want reject.
But: What can I do this with our 4.20 version ???
May I have to write a condition to check the $malware_name content ???
At the older 4.1.. version I had changed 2 source files of the
exiscan-part....to get the success: temporary errors -> warning
only infected emails -> rejecting
???
Mit freundlichen Gruessen
M.Lottmann
Otto - von - Guericke Universitaet __ __ ____ _____ _ __
Magdeburg / / / / / __ \__ / / | / /
------------------------------------ / / / / / /_/ / / / ______ / |/ /
Margrit Lottmann / /_/ / / _, _/ / /_______// /| /
Universitaetsrechenzentrum \____/ /_/ |_| /____/ /_/ |_/
Netze & Kommunikation
