Remember clamAV provides NO protection as the real time agent in suse does not allow clam AV to offer any real-time protection. It only offers a clamscan 9 take the day off after you initiate it) and some integration of scanning of emails in some email clients - Kmail I think from memory is the only one. See my other Post on this issue RE: ClamAV open suse 10.2 and possible SLES and previous versions of open suse or you can test your installation very easily using http://www.eicar.org/anti_virus_test_file.htm https://bugzilla.novell.com/show_bug.cgi?id=270581 So if the quest is can you pass on antivirus with knowing over or intra net - YES and nothing will stop you until a MS Windows real time agent finds it. There is a bug open as above, however in 2 occasions the bug guys have contradicted them selves and then resolved the bug as wontfix when his last reply is invalid. I have closed the bug as any further discussion on this issue is neither logical or constructive I have have more than my daily dose of suse.de today. Scott - Good morning - all James Watkins wrote:
On Thursday 24 May 2007 19:40, Martin Mielke wrote:
Hi all again!
nowadays I need to deploy an antivirus solution of some sort... Better if it's an open source one instead of paying for it :-)
Well, my idea is to have a client-server deployment, so you know how it
goes: the server takes care of the updates, among other things, and distributes them to the clients which will be in-sync with it. As you can imagine, I'd like a setup like that to save some bandwidth usage as it's "useless" to have n-clients downloading the same antivirus signatures...
I have thought of ClamAV as an initial approach to solve this. Maybe you
have a better suggestion, please let me know.
So, if I go finally for ClamAV I'd like to know what the best configuration
method would be to achieve such a client-server scenario.
Now, as for the antispam solution... I have DSPAM in mind... anyone here has
experienced integrating it with Postfix + Cyrus IMAP + MySQL ?
...or should I go for the "traditional" SpamAssassin? (nothing against it!
just asking...)
TIA and best regards, Martin
I can't comment on AV but for our company spam filter I use ASSP:
It's an SMTP proxy so you can use it with whatever mail server you like (we have Exchange 5.5 I'm sorry to say). Setting up is non-trivial - but then again it's not brain surgery either - but once it's all set up you rarely need to touch it. It seems quite accurate too (one false positive in about 8 months). Plus you get a great snake:
http://assp.sourceforge.net/snake.html
Cheers,
James.