replacing sanitizer w/ amavisd-new

To: debian-isp@lists.debian.org
Cc: April Carvalho <acarvalh@brave.cs.uml.edu>
Subject: replacing sanitizer w/ amavisd-new
From: Dan MacNeil <omacneil@brave.cs.uml.edu>
Date: Sat, 10 Jan 2004 15:12:54 -0500 (EST)
Message-id: <[🔎] Pine.LNX.4.44.0401101459390.6074-100000@brave.cs.uml.edu>

Right now we use sanitizer (stable package) to call a virus scanner and to
strip script,img, style, etc tags

We're thinking of switching to amavisd-new (unstable) and clamav (testing)
because while sanitizer strips out the virus, it still passes the junk
message through. We'd like to be able to drop virus infected messages to
the floor. Another (very minor) consideration is that sanitizer is not a
daemon and pays a speed penalty every time it is launched.

The problem I see looking at the docs is that amavisd-new doesn't strip
out potentially evil html.

The direction, we're drifting is to run sanitizer after amavisd-new. (I
think postfix can run filters in sequence)

Reply to:

Follow-Ups:
- Re: replacing sanitizer w/ amavisd-new
  - From: Michael Loftis <mloftis@modwest.com>

Prev by Date: Re: Postfix-mysql-procmail
Next by Date: Re: Squirrelmail session premature expiration?
Previous by thread: Re: Postfix-mysql-procmail
Next by thread: Re: replacing sanitizer w/ amavisd-new
Index(es):
- Date
- Thread