Update clamd.conf · 260421448d - Gogs

Update clamd.conf

AlertOLE2Macros, default should be set to NO

With this option enabled OLE2 files containing VBA macros, which were NOT detected by signatures will be marked as "Heuristics.OLE2.ContainsMacros".

This causes most microsoft office document files which contains macros to be blocked. Majority of corporate documents mailed contain macros. When the option is set to NO, emails are still checked for known malicious macros.

Due to any message failing clamav being set to a 2000 score, this causes all legitimate emails with harmless macros to be blocked.

The default for debian/ubuntu is to set this to NO
cPanel, iredmail, etc all have this option set to NO

eXtremeSHOK 6 years ago

parent

54dfb5c450

commit

260421448d

1 changed files with 1 additions and 1 deletions

Split View Show Diff Stats

						
							+ 1
							
							- 1
						
data/conf/clamav/clamd.conf
							 
								View File
							
				@@ -26,7 +26,7 @@ DetectPUA yes
			
				 #IncludePUA RAT
			
				 HeuristicAlerts yes
			
				 ScanOLE2 yes
			
				-AlertOLE2Macros yes
			
				+AlertOLE2Macros no
			
				 ScanPDF yes
			
				 ScanSWF yes
			
				 ScanXMLDOCS yes