Re: Virus Scanning, SMTP
From: Olivier (olivierwarez_at_netscape.net)
Date: 07/30/04
- Next message: DaveAI: "An Interview with Gary McGraw, Co-author of Exploiting Software: How to Break Code"
- Previous message: Colin McKinnon: "Re: Virus Scanning, SMTP"
- In reply to: Michael: "Virus Scanning, SMTP"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 30 Jul 2004 20:44:03 +0200
Michael wrote:
> Is there a de facto standard for email virus scanning with Linux? It
> doesn't matter if it's a free solution or not (free is better of course!),
> but I was wondering what other system administrators actually use out there
> for filtering viruses from their corporate email.
>
>
> Michael
>
I am a qmail fan.
At first I use rbls to block all known-exploited(able) ipaddress
Then thanks to qmail-qfilter I block all executable attachement.
I also block a *lot* of spam from antivirus vendors claiming "your
computer sent a virus" etc ( actually these emails are nastier than virii )
Then I use clamav ( I run clamd under supervise and wrote a small script
to run clamdscan under qmail-qfilter )
At last I run spamc ( from spamassassin ) from qmail-qfilter
Note than thanks to the qmail-qfilter mechanism there is _ no bounce
email _ generated by my server. Only a 553 or 554 smtp response sent to
the spammer / virus robot..
Be very careful to not setup a solution which will spam the internet
with non-sense email ( "the email you sent to xxxx contained the Netsky
virus.. " )!!
- Next message: DaveAI: "An Interview with Gary McGraw, Co-author of Exploiting Software: How to Break Code"
- Previous message: Colin McKinnon: "Re: Virus Scanning, SMTP"
- In reply to: Michael: "Virus Scanning, SMTP"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
