diff --git a/rspamd/README.md b/rspamd/README.md
index adcfd443..344738f7 100644
--- a/rspamd/README.md
+++ b/rspamd/README.md
@@ -35,10 +35,10 @@ Well-known ports
 - `RSPAMD_bypass_score` If undefined (default) bypass rules are applied as
   an accept prefilter. Set to a negative number to turn the rules to ham
   score and run antivirus checks (e.g. `RSPAMD_bypass_score=-5.000`)
-- `RSPAMD_clamavscansize` sets the maximum size (default 20 MB) for
+- `RSPAMD_clamavscansize` sets the maximum size (default 2 MB) for
   email attachments scanned by ClamAV in Rspamd.
   Attachments larger than this value are skipped to optimize performance.
-  
+
 ## Volumes
 
 - `/etc/rspamd/override.d` Rspamd custom configuration
diff --git a/rspamd/usr/local/templates/antivirus.conf.j2 b/rspamd/usr/local/templates/antivirus.conf.j2
index dd315fd1..cfce182f 100644
--- a/rspamd/usr/local/templates/antivirus.conf.j2
+++ b/rspamd/usr/local/templates/antivirus.conf.j2
@@ -8,7 +8,7 @@ clamav {
 
     action = "reject";
     # If `max_size` is set, messages > n bytes in size are not scanned
-    max_size = {= env.clamavscansize | default(20000000) =};
+    max_size = {= env.clamavscansize | default(2000000) =};
 
     scan_mime_parts = false;