Subscribe to Our Youtube Channel
Related Manuals for ESET MAIL SECURITY - ANNEXE 209
Summary of Contents for ESET MAIL SECURITY - ANNEXE 209
- Page 1 ESET Mail Security Installation Manual and User Guide...
-
Page 2: Table Of Contents
6.4. Anti-Spam Control ..................26 6.5. Samples Submission System ..............27 ESET Mail Security 6.6. Web Interface....................27 Copyright © 2009 ESET, spol. s r.o. 6.7. Remote Administration................28 ESET Mail Security was developed by 7. ESET Mail Security update ..............29 ESET, spol. s r.o. For more information 7.1. -
Page 3: Introduction
Chapter 1: Introduction... - Page 4 Dear user, you have acquired ESET Mail Security - the premier security system running under the Linux/BSD/Solaris OS. As you will soon find out, ESET‘s state-of-the-art scanning engine has unsurpassed scanning speed and detection rates combined with a very small footprint that makes it the ideal choice for any Linux/BSD/Solaris OS server.
-
Page 5: Terminology And Abbreviations
Chapter 2: Terminology and abbreviations... - Page 6 ESETS ESET Security is a standard acronym for all security products developed by ESET, spol. s r.o. for Linux, BSD and Solaris operating systems. It is also the name (or its part) of the software package containing the products.
- Page 7 Solaris: /opt/esets/sbin ESETS object files directory The directory where the relevant ESET Mail Security object files and libraries are stored. The abbreviation @LIBDIR@ will be used for future references to this directory. The @LIBDIR@ value for the following Operating Systems is listed below:...
-
Page 9: Installation
Chapter 3: Installation... - Page 10 This data is necessary for both identifying you as our customer and allowing you to download updates for ESET Mail Security. The username/password data is also required for downloading the initial installation package from our web site. ESET Mail Security is distributed as a binary file: esets.i386.ext.bin...
-
Page 11: Architecture Overview
Chapter 4: Architecture Overview... - Page 12 The structure of ESET Mail Security is shown in Figure 4-1. The system is comprised of the following parts: CORE The Core of ESET Mail Security is the ESETS daemon (esets_daemon). The daemon uses ESETS API library libesets.so and ESETS loading modules em00X_xx.dat to provide base system tasks such as scanning, maintenance of the agent daemon processes, maintenance of the samples submission system, logging, notification, etc.
- Page 13 @ETCDIR@/esets.cfg This is the most important configuration file, as it controls all major aspects of the product‘s functionality. The esets.cfg file is made up of several sections, each of which contains various parameters. The file contains one global and several „agent“ sections, with all section names enclosed in square brackets.
-
Page 15: Integration With Email Messaging System
Chapter 5: Integration with Email Messaging System... - Page 16 This chapter describes the integration of ESET Mail Security with a variety of known email messaging systems. It is extremely important to understand the basic principles of an email messaging system (see figure 5-1) and how ESET Mail Security integrates with it.
-
Page 17: Bi-Directional Email Messages Scanning In Mta
The bi-directional content filter method is MTA dependent. ESET Mail Security comes with five content filters that are built for the most common MTA programs, such as MTA Sendmail, Postfix, Exim, QMail and ZMailer. -
Page 18: Scanning Of Outbound Email Messages
MUA. All emails requested by POP3/IMAP clients are intercepted by the esets_pop3 (resp. esets_ imap) agent module and scanned by the ESETS daemon for infiltrations. ESET Mail Security supports most common MUA programs, such as MS Outlook, Evolution, Mozilla Thunderbird and others. -
Page 19: Alternative Methods Of Content Filtering
5.5. Alternative methods of content filtering 5.5.1. Scanning email messages in CommuniGate Pro using esets_cgp CommuniGate Pro is the powerful and reliable Unified Communications server and esets_ cgp is used for content filtering (anti-virus and anti-spam filtering). Esets_cgp only allows scanning of incoming email messages. Esets_cgp does not allow modification of scanned email messages and denies ESETS access to clean or delete infected email attachments. -
Page 20: Scanning Email Messages Using Amavis
AMaViS (A Mail Virus Scanner) is a tool that interfaces your MTA with several antivirus scanners. It supports various MTAs and comes in three branches: amavis, amavisd and amavisd-new. AMaViS cooperates with ESET Mail Security by using esets_cli. Before explaining the AMaViS configurations, the impact of the ESET Mail Security functionality method is described. - Page 21 5.5.2.1. amavis configuration Configuration of amavis is performed during the amavis installation. After unpacking the source amavis-0.x.y.tgz, create the file amavis/av/esets_cli with these contents: # ESET Software ESETS Command Line Interface if ($esets_cli) { do_log(2,”Using $esets_cli”); chop($output = `$esets_cli --subdir $TEMPDIR/parts`);...
- Page 22 Next, configure the product with the newly installed amavisd- new. To do this, delete the clause for ‘ESET Software ESETS’ and then replace the clause for ‘ESET Software ESETS - Client/Server Version’ in the file ‘amavisd.conf’ with the following one: ### http://www.eset.com/...
-
Page 23: Important Eset Mail Security Mechanisms
Chapter 6: Important ESET Mail Security mechanisms... -
Page 24: Handle Object Policy
NOTE: Some modules have been written to integrate ESETS into an environment which does not allow scanned objects to be modified. Thus the modification of scanned objects is disabled in such modules and the value of the configuration option av_ clean_mode is ignored. For detailed information on this topic refer to the relevant modules‘ man pages. ESET Mail Security... -
Page 25: User Specific Configuration
All file system objects accessed by other users will be scanned for infiltrations, except for the user rcptuser@rcptdomain.com, whose access will be rejected (blocked). chapter 6 Important ESET Mail Security mechanisms... -
Page 26: Blacklist And Whitelist
To eliminate spam, ESET Mail Security uses the anti-spam control mechanism. This mechanism is enabled using the ‘action_as’ parameter (for a full description of the parameter refer to the esets.cfg (5) man page). -
Page 27: Samples Submission System
All virus samples collected by the sample submission system will be processed by the ESET virus laboratory and if necessary, added to the ESET virus signature database. -
Page 28: Remote Administration
6.7 Remote Administration ESETS supports ESET Remote Administration for file security management in large computer networks. For more information, please read the ESET Remote Administrator Manual. This manual is located on our web site, here: http://download.eset.com/manuals/ESET_ERA_User_Guide_EN.pdf The ESETS Remote Administration Client is part of the main ESETS daemon. For basic set up, specify the address of your ERA Server using the ‘racl_server_addr‘... -
Page 29: Eset Mail Security Update
Chapter 7: ESET Mail Security update... -
Page 30: Esets Update Utility
The update process consists of two stages: First, the precompiled update modules are downloaded from the ESET server. If the option ‘av_mirror_enabled‘ is set to ´yes´ in the [global] section of the ESETS configuration file, copies (or mirror) of these update modules are created in... -
Page 31: Esets Mirror Http Daemon
7.3. ESETS mirror http daemon ESETS mirror http daemon is installed automatically with ESET Mail Security. The http mirror daemon starts if the option ‚av_mirror_httpd_enabled‘ in the [global] section of the ESETS configuration file is set to ‚yes‘ and the Mirror is enabled. -
Page 33: Let Us Know
Chapter 8: Let us know... - Page 34 Dear user, we hope this Guide has provided you with a thorough understanding of the requirements for ESET Mail Security installation, configuration and maintenance. However, our goal is to continually improve the quality and effectiveness of our documentation. If you feel that any sections in this Guide are unclear or incomplete, please let us know by contacting Customer Care: http://www.eset.com/support...
-
Page 35: Esets Setup And Configuration
Appendix A. ESETS setup and configuration... -
Page 36: Setting Esets For Mta Postfix
Postfix: content_filter = smtp:[127.0.0.1]:2526 NOTE: If the ‘content_filter’ parameter already has a value, do not follow these instructions. Instead, you must insert esets_smtp (or other ESETS mail scanning module) before or after your current ‘content_filter’ . ESET Mail Security... -
Page 37: Setting Esets For Mta Sendmail
Lastly, set Postfix to accept mail on port 2525 and continue processing it. To do this, add the following entry to the Postfix master.cf file: localhost:2525 inet n - n - - smtpd -o content_filter= -o myhostname=esets.yourdomain.com -o local_recipient_maps= -o relay_recipient_maps= receive_override_options=no_unknown_recipient_checks,no_header_body_checks -o smtpd_helo_restrictions= -o smtpd_client_restrictions=... -
Page 38: Setting Esets For Mta Qmail
#!/bin/sh exec qmail-local -- ”$USER” ”$HOME” ”$LOCAL” ”” ”$EXT” \ ”$HOST” ”$SENDER” ”$1” This will cause esets_mda to call Qmail’s local delivery agent. Next, create the file /var/qmail/ bin/qmail-start.esets with the following content and also run chmod a+x on it: ESET Mail Security... -
Page 39: Setting Esets For Mta Exim Version 3
#!/bin/sh A=”$1”; shift exec qmail-start.orig ”|@BINDIR@/esets_mda ‘$A’”’ \ -- --sender=”$SENDER” --recipient=”$RECIPIENT”’ “$@” This will start Qmail using esets_mda for local deliveries. However, the original delivery specification is passed to qmail-local through esets_mda. Note that in this configuration esets_ mda will use Qmail’s recognized exit codes (see the qmail-command (8) man page). Lastly, replace qmail-start using commands: mv /var/qmail/bin/qmail-start /var/qmail/bin/qmail-start.orig ln -s qmail-start.esets /var/qmail/bin/qmail-start... -
Page 40: Setting Esets For Mta Exim Version 4
= pipe command = @BINDIR@/esets_mda -oi -oMr esets-scanned $local_part@$domain \ --sender=$sender_address --recipient=$local_part@$domain This will send all unscanned mails for local users to esets_mda; esets_mda will then send them back to Exim for further processing. To re-read the newly created configuration, restart Exim. ESET Mail Security... -
Page 41: Setting Esets For Mta Zmailer
A.5.2. Bi-directional email message scanning The goal of this installation is to create an Exim transport from esets_mda for all mail. Perform all steps from the previous section, but omit this line in esets_router: domains = +local_domains A.6. Setting ESETS for MTA ZMailer A.6.1. -
Page 42: Setting Esets For Scanning Of Pop3 Communication
-A INPUT -p tcp -i if0 --dport 110 -j REDIRECT 8110 If IP-filtering is being performed by the iptables administration tool, the rule would be: iptables -t nat -A PREROUTING -p tcp -i if0 \ --dport 110 -j REDIRECT --to-ports 8110 On FreeBSD, the rule is as follows: ESET Mail Security... -
Page 43: Setting Esets For Scanning Of Imap Communication
ipfw add fwd 192.168.1.10,8110 tcp from any to any 110 via if0 in On NetBSD and Solaris: echo ’rdr if0 0.0.0.0/0 port 110 -> 192.168.1.10 \ port 8110 tcp’ | ipnat -f - A.9. Setting ESETS for scanning of IMAP communication The IMAP communication scanning is performed using the esets_imap daemon. In the [imap] section of the ESETS configuration file, set these parameters: agent_enabled = yes listen_addr = ”192.168.1.10”... -
Page 45: Php License
Appendix B. PHP License... - Page 46 PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. ESET Mail Security...
Need help?
Do you have a question about the MAIL SECURITY - ANNEXE 209 and is the answer not in the manual?
Questions and answers