Re: [exim] Logging who is receiving what viruses with Sophie…

Pàgina inicial
Aquest missatge és part del següent fil:
Ml'arbre de fils complet ordenat per data
MSam Michaels en <-
M 
Delete this message
Reply to this message
Autor: Andrew Nelson
Data:  
A: samthecomputerman
CC: exim-users
Assumpte: Re: [exim] Logging who is receiving what viruses with Sophie ACL ?
Thanks a million Sam - it was just the ordering issue that
was confusing me really. It's all working well now. Very
helpful repsponse.

Andrew.

>From: Sam Michaels <samthecomputerman@???>
>Reply-To: Sam Michaels <samthecomputerman@???>
>To: Andrew Nelson <andrew__nelson@???>
>CC: exim-users@???
>Subject: Re: [exim] Logging who is receiving what viruses with Sophie ACL ?
>Date: Tue, 7 Jun 2005 23:43:19 -0400
>
>On 6/7/05, Andrew Nelson <andrew__nelson@???> wrote:
> > I'm trying to get a simple log of which email addresses are receiving
>what
> > viruses.. I have exim, with sophie (sophos) installed with this ACL:
>
>Using your ACL but switching the order yields:
>
>deny
>     message = This message contains a virus ($malware_name)
>     log_message = VIRUS_FOUND: $recipients, $senders, $malware_name
>     malware = *

>
>2005-06-07 23:26:35 H=crc2.excedent.us (mail01.excedent.us)
>[206.158.107.157] Warning: remote host presented unverifiable
>HELO/EHLO greeting.
>2005-06-07 23:27:35 1DfrE7-00081Y-MA Subject: Virus Scanner Test #11
>2005-06-07 23:27:36 1DfrE7-00081Y-MA failed to expand ACL message
>"VIRUS_FOUND: $recipients, $senders, $malware_name": unknown variable
>name "senders"
>2005-06-07 23:27:36 1DfrE7-00081Y-MA H=crc2.excedent.us
>(mail01.excedent.us) [206.158.107.157] F=<tester@???>
>rejected after DATA: This message contains a virus (unknown)
>
>Changing to...
>
>deny
>     message = This message contains a virus ($malware_name)
>     log_message = VIRUS_FOUND: $recipients, $sender_address, $malware_name
>     malware = *

>
>2005-06-07 23:35:44 H=crc2.excedent.us (mail01.excedent.us)
>[206.158.107.157] Warning: remote host presented unverifiable
>HELO/EHLO greeting.
>2005-06-07 23:36:44 1DfrMy-00082q-AJ Subject: Virus Scanner Test #11
>2005-06-07 23:36:45 1DfrMy-00082q-AJ H=crc2.excedent.us
>(mail01.excedent.us) [206.158.107.157] F=<tester@???>
>rejected after DATA: VIRUS_FOUND: my@???,
>tester@???, unknown
>
>Why don't you just put $recipients and $sender_address in the
>'message' modifier and avoid the whole log_message thing anyway? Kind
>of redundant, isn't it?
>
>Sam




Aquest missatge es va enviar a les següents llistes de correu:
Exim-users
Informació sobre la llista de correu | Missatges propers		<-Re: [exim] upgrade to 4.50 problems[exim] LDAP and LDAPS problems->
Tahini and Hummus and Cumin Development Archives administrat per cumin AdminsLurker (versió 2.3)