ok I can reproduce, this occurs when you use the smtp of the server and you send an email that needs to be scanned by clamav (gets an attachment), if the email cannot be scanned by clamav then the smtp rejects it, you gets the error and you cannot send the email
Should not be an option…
Or antivirus is enabled (and should check every message) or antivirus is disabled (so is Sysadmin concern manage risks and alternatives).
CLAMAV of course is not the best antivirus on the market but… it’s a start.
Yes I agree to not differentiate SMTP scan policies on authentication basis.
@xcod you could try @stephdl’s group_disabled workaround but I’d like to understand if this behavior originates from a performance issue. Maybe clamav takes too long to reload on your server and users hit the soft reject too frequently…
We could increase timeouts anyway. @stephdl do you think it’s possible?
To internal and to external
an error occurs in both cases.
Also, the same error occurs when sending
from external users (another domain) to my users(in my server).
For what I understand the timeout for task is only for the task_timeout of the worker-normal and we do not use it because we are on self-scan mode
with the worker-proxy the timeout is set to 120s, we could try something experimental on your server, and you could come back in few days to report please
add inside the clamav bracket in /etc/rspamd/local.d/antivirus.conf (it is a template)