McAfee Anit-Virus
Moderators: ScalixSupport, admin
-
Stephen
- Posts: 17
- Joined: Wed Feb 23, 2005 11:48 am
- Location: Dallas Texas
- Contact:
McAfee Anit-Virus
What version of McAfee is supported with Scalix 9.1 and 9.2.
-
ScalixSupport
- Scalix
- Posts: 5503
- Joined: Thu Mar 25, 2004 8:15 pm
-
Stephen
- Posts: 17
- Joined: Wed Feb 23, 2005 11:48 am
- Location: Dallas Texas
- Contact:
Scan results
Dave,
I have a production Scalix server that has been running ClamAV as the virus protection. The site had it set fup or evaluation for 2 months before going live. During that time it was not protected. So I ran ClamAV on the data store and it found 14 viruses, trojens, etc. I had ClamAV move the file to a tmp directory.
- Then ran uvscan on the bad files in the tmp dir using the switches in the omvscan.cfg file and it found 3 of 14 viruses. It saw a couple of others as corrupted zip files.
- A day later I ran ClamAV on the ~scalix/data directory and found 4 viruses, trojan, phishing, etc. Note that ClamAV was running at the service router and the users have Trend on the Desktop. I also sent a known virus through the system and it was detected and cleaned.
- then I immediately ran McAfee uvscan on the ~scalix/data directory and found 15 more.
Two things stand our to me. Some of the viruses get through. And I'd like to run both McAffeeand ClamAV if possible.
Do you know if it is possible to run both ClamAV and McAfee together on the SR?
And what are the long term affect of running a cron to check the data staore? I suspect l omscan will be fine, but would like a second opion.
Cheers,
Stephen
I have a production Scalix server that has been running ClamAV as the virus protection. The site had it set fup or evaluation for 2 months before going live. During that time it was not protected. So I ran ClamAV on the data store and it found 14 viruses, trojens, etc. I had ClamAV move the file to a tmp directory.
- Then ran uvscan on the bad files in the tmp dir using the switches in the omvscan.cfg file and it found 3 of 14 viruses. It saw a couple of others as corrupted zip files.
- A day later I ran ClamAV on the ~scalix/data directory and found 4 viruses, trojan, phishing, etc. Note that ClamAV was running at the service router and the users have Trend on the Desktop. I also sent a known virus through the system and it was detected and cleaned.
- then I immediately ran McAfee uvscan on the ~scalix/data directory and found 15 more.
Two things stand our to me. Some of the viruses get through. And I'd like to run both McAffeeand ClamAV if possible.
Do you know if it is possible to run both ClamAV and McAfee together on the SR?
And what are the long term affect of running a cron to check the data staore? I suspect l omscan will be fine, but would like a second opion.
Cheers,
Stephen
Stephen Eaton, EMCom
stephen@getemcom.com
www.getemcom.com
Certified Scalix Professional
Certified Scalix Instructor
stephen@getemcom.com
www.getemcom.com
Certified Scalix Professional
Certified Scalix Instructor
-
ScalixSupport
- Scalix
- Posts: 5503
- Joined: Thu Mar 25, 2004 8:15 pm
To have more than one virus scanner running would require changes to the omvscan.map file and/or the omvscan.cfg file.
With regards to scanning the message store, this is not advisable because Scalix does not store messages as 1 per file (or attachment) this may give you false positives.
Cheers
Dave
With regards to scanning the message store, this is not advisable because Scalix does not store messages as 1 per file (or attachment) this may give you false positives.
Cheers
Dave
-
Stephen
- Posts: 17
- Joined: Wed Feb 23, 2005 11:48 am
- Location: Dallas Texas
- Contact:
dual scan configuration
In the omvscan.cfg file is it possible to specify both engines? Something like,
ANTI_VIRUS_ENGINE="ClamAV, McAfee Virus Scam"
Or is a rewrite of the omvscan.map necessary?
Cheers,
Stephen
ANTI_VIRUS_ENGINE="ClamAV, McAfee Virus Scam"
Or is a rewrite of the omvscan.map necessary?
Cheers,
Stephen
Stephen Eaton, EMCom
stephen@getemcom.com
www.getemcom.com
Certified Scalix Professional
Certified Scalix Instructor
stephen@getemcom.com
www.getemcom.com
Certified Scalix Professional
Certified Scalix Instructor
-
ScalixSupport
- Scalix
- Posts: 5503
- Joined: Thu Mar 25, 2004 8:15 pm
Who is online
Users browsing this forum: No registered users and 11 guests