Closed andre8244 closed 3 years ago
in 7.9.2009/nethesis-testing
:
Test case
config setprop yomi Debug enabled && signal-event nethserver-yomi-update
.p7s
filegrep "skipped PEC signature" /var/log/maillog
YOMI_SKIPPED
symbol with a proper description, e.g. YOMI_SKIPPED(0.00)[smime.p7s contains PEC signature]
in 7.9.2009/nethesis-testing
:
Verified.
When a p7s
attachment is sent, the Yomi plugin will skip it:
Sep 9 12:30:59 server rspamd[29431]: <34ffc6>; lua; yomi.lua:83: yomi: skipped PEC signature smime.p7s
PEC attachments containing signature are sometimes mistakenly recognized as malware.
Proposed solution
Do not send PEC signatures to Yomi sandbox.
openssl
command can be used to properly detect if an attachment is a PEC signature