Sophos does not Block Malware Detection Mail will be sent
Posted: 07 Aug 2019 15:09
Hi Guys
i got the following issue. Sophos is installed on my EFA. Sophos will detect the Malware and a E-Mail will be sent:
From my Mailscanner.conf
i have allready tried the following steps with no success:
http://lists.mailscanner.info/pipermail ... 01114.html
What makes me a bit confused is the Text "Access to the infected file was not allowed" in the Mail. Are there any Permission issues?
the Process savd is running as root
does anyone of you guys has a solution for me?
i got the following issue. Sophos is installed on my EFA. Sophos will detect the Malware and a E-Mail will be sent:
Code: Select all
Subject: [SAV-LINUX] Threat 'Troj/RtfExp-EP' detected on efa.domain.local
A threat classified as 'Troj/RtfExp-EP' was detected in the file '/var/spool/MailScanner/incoming/SpamAssassin-Temp/.spamassassin14362Leu17Ktmp' when attempting to open it at Wed Aug 7 14:57:15 2019 CEST +0300 (2019-08-07 14:57:15 UTC). Access to the infected file was not allowed.
Code: Select all
Quarantine Infections = yes
Virus Scanners = sophos clamd
http://lists.mailscanner.info/pipermail ... 01114.html
What makes me a bit confused is the Text "Access to the infected file was not allowed" in the Mail. Are there any Permission issues?
the Process savd is running as root
Code: Select all
root 1706 0.0 0.0 592512 6228 ? Sl Jul22 0:52 savd etc/savd.cfg
does anyone of you guys has a solution for me?