On 03/21/2011 02:43 PM, Steve Basford wrote: >> Hi there, >> >> I installed the package on Debian Squeeze. I created a file and put >> a test virus string in it to verify all was well, but clamscan did not >> pick it up. A clamscan reload was done. Any ideas? >> > Hi, > > Copy all this into a single file... that should work... > > http://pastebin.com/gu3enQ5j > > It's to do with email headers/formatting.... > > Cheers, > > Steve > Sanesecurity > > Hi Steve, Sadly no change. I think that I have to add something into Clamav tha I missed out. # clamscan scan.txt LibClamAV Warning: *********************************************************** LibClamAV Warning: *** This version of the ClamAV engine is outdated. *** LibClamAV Warning: *** DON'T PANIC! Read http://www.clamav.net/support/faq *** LibClamAV Warning: *********************************************************** LibClamAV Warning: *********************************************************** LibClamAV Warning: *** This version of the ClamAV engine is outdated. *** LibClamAV Warning: *** DON'T PANIC! Read http://www.clamav.net/support/faq *** LibClamAV Warning: *********************************************************** scan.txt: OK ----------- SCAN SUMMARY ----------- Known viruses: 1076404 Engine version: 0.96.5 Scanned directories: 0 Scanned files: 1 Infected files: 0 Data scanned: 0.00 MB Data read: 0.00 MB (ratio 0.00:1) Time: 3.716 sec (0 m 3 s) # cat scan.txt Return-Path: <test.test> MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_123" Subject: test This is a multi-part message in MIME format. <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> <HTML><HEAD> <META content=3D"text/html; charset=3Dwindows-1252" http-equiv=3DContent-Type> body_CHANGEg63uhj2ucyeccrux7d83a4qd5ua5vnlgwjp6b6fmpzpobzjabftehuhraxfbyCHANGEED </BODY></HTML>