On Wed, 21 Jan 2009, McDonald, Dan wrote:
; Looks like there are a couple new categories of signatures.
; In /etc/amavisd/amavisd.conf I rewrote @virus_name_to_spam_score_maps
; to read:
; (new_RE( [
qr'^(Email|HTML|Sanesecurity)\.(Phishing|Spear|(Spam|Scam)[a-z0-9]?)\.'i =>
4.1 ],
; [ qr'^Sanesecurity\.Malware\.' => undef ],
; [ qr'^Sanesecurity\.(Test|Rogue)' => undef ],
; [ qr'^Sanesecurity\.
; (Hdr|Img|ImgO|Junk|Doc|Lott|Fake|SpamImg
; Job|Stk|Loan|Porn|Bou|Dipl|Cred)\.'x => 6.1 ],
; [ qr'^(MSRBL-Images/)' => 2.1 ],
; [ qr'^(MSRBL-SPAM\.)' => 5.1 ],
; ));
I'm doing something similar in terms of deciding how to handle each
category. Does anyone have any information on what the various categories
represent, and whether the list of categories is fairly static?
Would it be possible to announce new categories to the list as they are
created so I can keep my mappings up to date?
I had a look through the archive but couldn't see the information there.
