On Tue, Aug 26, 2003 at 10:56PM +0200, Godfrey Hamshire wrote:
>I am battling to get exiscan and uvscan to work together under the new ACL
>method
>I tried this and other combinations
>
>av_scanner = cmdline:\
> /usr/local/bin/uvscan -all -rec -archive %s:\
> Found'(.+)'
Looks like you're missing a field. I use:
av_scanner = cmdline:\
/usr/local/bin/uvscan --noboot --mime --unzip -r %s:\
Found:\
Found.\s*(.+)
The first "Found" is the trigger regular expression. If found, then
the second "Found" determines what gets put in the $malware_name
variable.
>In the ACL section
>
>deny message = This message contains malware ($malware_name)
> malware = *
> demime = *
Looks good.
-Jason
--
Jason White (jdwhite@???)
http://www.jdwhite.org/~jdwhite
Jabber:jdwhite@??? IRC:irc.netbsd.org/{jdwhite,jdw}
AIM:jdwhite90125 Yahoo:jdwhite89 ICQ:9295078 MSN:jdwhite89@???
GPG KeyID: 0x74CF850D/1F57 465A 1357 BA39 2BEF 5629 6E1C 2B20 74CF 850D