[clamav-users] Whitelisting extensions for virus scan
Al Varnell
alvarnell at mac.com
Mon Oct 29 23:34:41 UTC 2018
I have been seeing malware a .doc "resumé" delivered by e-mail to the ClamXAV help desk several times a week recently.
-Al-
On Mon, Oct 29, 2018 at 10:08 AM, Jerry wrote:
> On Mon, 29 Oct 2018 12:33:19 -0400, Kris Deugau stated:
>
>> Tilman Schmidt wrote:
>>> Am 26.10.18 um 15:34 schrieb Johnny Time:
>>>> For exemple, we wanted to authorize only a white list which contains
>>>> *.doc,*.xls,*.pdf and ban the others extensions.
>>>
>>> Surely you meant to write "*.docx,*.xlsx,*.pdf"?
>>> *.doc and *.xls are the old, malware-prone MS-Office filetypes.
>>> You don't want to let those pass, at least not without rigorous
>>> examination.
>>
>> In my experience, the new ones aren't any better.
>
> We have a a steady flow of "*.doc", "*.docx" "*.xlsx" and *.pdf" files
> exchanged with other offices. I have not seen a virus in any of them since
> 2010. Seems like you might be doing business with the wrong type of people.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.clamav.net/pipermail/clamav-users/attachments/20181029/d48e20d7/attachment.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 3860 bytes
Desc: not available
URL: <https://lists.clamav.net/pipermail/clamav-users/attachments/20181029/d48e20d7/attachment.bin>
More information about the clamav-users
mailing list