Arturo Limon wrote: > > Hello, > > I am trying to a assemble an "e-mail open source solution" for a > customer. This is going to be a "test installation" to see the > feasability of such solution in a mid-large corporation (about 800 > users). For the moment, the considered solution is Linux + qmail > (FreeBSD also considered).
great! make sure the "mid-large corporation" tells at least 5 other "mid-large corporations" about this when it's working! > One of the key points is the antivirus (to detect virus aimed at > MS-Windows environments). > > >From the qmail-scanner web page I can not fully understand if it can or > cannot work without the use of a commercial scanner. I mean: > > - Point 1 of "Features" says: "Uses any commercial Unix command-line > virus scanner." > - Point 3 of "Features" says: "Has its own internal scanner that can be > used to pick up viruses for which commercial scanner updates are not yet > available " > > So, the use or a comercial Unix virus scanner is an option, and > qmail-scanner can detect virus without it, or not ? > Point 3 first- Q-S uses "perlscan". Perlscan is not an AV product per se. With perlscan, you can configure basic policies like: - deny any email with .exe attachments - deny files named foo.txt.scr of size=12345 bytes (useful for mitigating virus infection for which there's no sig yet) - deny Subject: I love you (see above) - etc...see comments in the code Point 1- If you want legit AV scanning, yes you need to integrate a legit AV scanner into your Q-S system. Yes there are many commercial ($) AV product from which you can choose. AFAIK...there is -one- open source solution for Q-S: clamscan - http://clamav.elektrapro.com/ (to set the record straight, I have no affiliation with clamscan) Clamscan is free, but an early stage project with infrequent virus sig updates and a less-than-complete sig base (e.g. it missed an old Navidad virus on me the other day). So...if you need real AV protection for real business users, IMO, -at this point in time- you're better off paying for a commercial package. Which one you choose is a matter of preference and price. One of the daemonized packages (vs. cmd line) would be best I would think for your case. The choices for Q-S are listed in the configure file or on the Q-S site. Hope that helps. PS - if clamscan is used, make sure you look thru the archives of this list concerning the qmail/daemontools 'softlimit'. Bottom line: -at this point in time- clamscan needs a boatload of memory... e.g. softlimit ~12000000-15000000 ------------------------------------------------------- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf _______________________________________________ Qmail-scanner-general mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/qmail-scanner-general
