Emails from some of our customers are very occasionally being quarantined on the grounds that they contain a "virus", according to the daily spam report. As these emails are genuine, I'd like to release them if possible, but I'd like to know what precautions to take before doing so.
The quarantine manager is pretty useless at giving me the information I need: there's nothing in the list of quarantined messages that shows what virus has been detected in email, and if I preview an email, I just see "Infected" in the email headers.
As we don't receive many infected emails, I can normally work out the virus name from the daily executive report: it's always been something like "Email.Phishing.RB-1552" - or something that contains "Phishing" in its description - but here's where I run into problems.
How do I find further information about "Email.Phishing.RB-1552" - in particular, its method of infection, and how its effects can be mitigated? Is there a list of virus definitions that I can consult somewhere? I can't find anything on the Astaro site.
Also, is this truly a virus (ie contains code that can harm a computer) or just a (suspected) phishing email (ie contains a link to a dodgy web site)?
And on a philosophical note, if it contains no malevolent code, why is it being classed as a virus, and not as spam?
Ifor Davies
This thread was automatically locked due to age.