Re: [Clamav-users] What is infected attachment (Email.Phishing.RB-827)?

Is there a database of URLs which ClamAV refers to for determining Phishing? Barracuda has our corporate URL greynium.com in their database (we are trying to reach their support to understand why it has been included). I am trying to check which databases have our URLs which could be causing the problem.

On 7/4/07, Török Edvin <edwintorok@gmail.com> wrote:
>
> On 7/4/07, BG Mahesh <bgmahesh@gmail.com> wrote:
> > I heard there is a flag --no-phishing-scan-urls and if I switch this off
> it
> > will be fine.
> > Is that the cause of my problem? If so, how do I specify in the conf
> file
> > not to scan urls for phishing.
>
> that option is for Phishing.Email.*, or Phishing.Heuristics.Email.*.
> Email.Phishing.RB-* are signatures in the .ndb, but they can be turned
> off via another option.
> I would recommend you wait for an answer on the FP you submitted
> before turning it off though.
>
> --Edwin
> _______________________________________________
> Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
> http://lurker.clamav.net/list/clamav-users.html
>

-- 
--
B.G. Mahesh
_______________________________________________
Help us build a comprehensive ClamAV guide: visit 
http://wiki.clamav.nethttp://lurker.clamav.net/list/clamav-users.html