[clamav-users] false positive on MBL_82485625.UNOFFICIAL for Google Drive links sent as attachments
Robert Kudyba
rkudyba at fordham.edu
Wed Mar 24 14:15:55 UTC 2021
Using clamav-milter 0.103.1 with sendmail on Fedora 33, we had several
emails quarantined with the MBL_82485625.UNOFFICIAL. All they contained was
a link forwarded as an attachment of a Google Drive folder. I reported this
to the false positive at SaneSecurity address. I also added the signature
to a file called /var/lib/clamav/sigwhitelist.ign2
Is there a way to verify that the signature itself was fixed?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.clamav.net/pipermail/clamav-users/attachments/20210324/f40ff3e6/attachment.htm>
More information about the clamav-users
mailing list