scripts: improve CLAMAV_MESSAGE_SIZE_LIMIT usage (#3332)

* add sanity check for Clam size & adjusted MaxScanSize The second part is of special importance! See <https://askubuntu.com/a/1448525>, which explains that the maximum scan size is important as well. We previously just set the maximum file size, which actually is pretty insecure as we silently not scan mile bigger than `MaxScanSize`. This is corrected now. * add SlamAV size configuration to Rspamd
2025-08-03 09:34:33 +02:00 · 2023-05-12 16:04:41 +02:00 · 2023-05-12 16:04:41 +02:00 · 78b7f0cbea
commit 78b7f0cbea
parent 3340b80972
5 changed files with 33 additions and 2 deletions
--- a/target/rspamd/local.d/antivirus.conf
+++ b/target/rspamd/local.d/antivirus.conf
@ -10,4 +10,5 @@ ClamAV {
    scan_mime_parts = false;
    symbol = "CLAM_VIRUS";
    log_clean = true;
+    max_size = 25000000;
 }