[clamav-users] Structured.CreditCardNumber bounce
Rob McKennon
rmckennon at monetra.com
Fri Apr 1 15:16:02 UTC 2016
On 04/01/2016 11:01 AM, Vladislav Kurz wrote:
> On Friday 01 of April 2016 Rob McKennon <rmckennon at monetra.com> wrote:
>
>> Hello,
>>
>> One of the reasons we use clamav is to not accept emails with credit
>> card numbers. And it works great to bounce the message back to the
>> sender. However, according to PCI, sending the original message back
>> with the same credit card numbers they sent us, is just as bad as them
>> sending it to us in the first place.
>>
>> Is there a way to tell clamav to send the bounce message with the
>> "INFECTED: Heuristics.Structured.CreditCardNumber" data, but NOT include
>> the original email?
> Hi,
>
> this is not setting of clamav itself. It should be configurable in SMTP server
> or its antivirus interface like Amavis. Clamav just decides if the file is
> infected or not. It is the SMTP server that decides what is sent back.
>
Ah, ok.
Thank you for pointing me in the right direction!
Rob
More information about the clamav-users
mailing list