From: Lars Hecking (lhecking at domain nmrc.ucc.ie)
Date: Tue 12 Oct 1999 - 14:43:55 IST
Kenn Humborg writes:
> I've thought about this for a while and no simple solution
> popped up...
> I'd like to run _every_ message that goes through sendmail
> on a particular machine to be virus scanned. Network Associates
> have a Linux version of their scanner that will do the anti-virus
> part, but there are two remaining steps:
> 1. A script to break apart a message's body and attachments
> and scan each part.
> 2. Sendmail rules/patches to send each message off for scanning.
> I'm sure some Perl hacker here can do number 1 in their sleep.
> But what's the best way to do number 2? Does 8.9.x have
> provisions for running arbitrary programs over messages?
> Could I direct all incoming messages to a custom mailer that would
> do the scan and submit the message back to sendmail (perhaps
> using a different .cf file) and send it on it's merry way. I'm afraid that
> this might lose envelope information.
> Has anyone here done anything like this?
Mind you, it has some serious drawbacks, but I'm using it here with
postfix, and it has already paid off (loads of WM97/xxx stuff caught).
I'm using Sophos' virus scanner which has been recommended to me by
other amavis users. Before that, I used McAfee's scanner, but it did
not seem to catch everything (the Solaris version anyway).
This archive was generated by hypermail 2.1.6 : Thu 06 Feb 2003 - 13:04:43 GMT