Manualshelf

Installation manual

ManualsBrandsESET ManualsComputer equipmentMAIL SECURITY 4
31323334353637383940
34
ESET Mail Security
A.2.2. Bi-directional e-mail messages scanning
The goal of this installation is to scan all mails in Sendmail with esets_sm lter. In the [sm]
section of ESETS conguration le set these parameters:
agent_enabled = yes
sm_sock_path=”/var/run/esets_sm.sock”
and restart ESETS daemon. Then add to le sendmail.mc (or `hostname`.mc on FreeBSD)
before all MAILER denitions this line:
INPUT_MAIL_FILTER(`esets_sm’,
`S=local:/var/run/esets_sm.sock,F=T,T=S:2m;R:2m;E:5m’)dnl
With these settings, Sendmail will communicate with esets_sm via unix socket /var/run/
esets_sm.sock. Flag F=T will resultinatemporary fail connection,if the lter isunavailable.
Timeouts S:2m denes 2 minutes timeout for sending information from MTA to lter, R:2m
denes 2 minutes timeout for reading reply from the lter and E:5m means overall 5 minutes
timeout between sending end-of-message to lter and waiting for the nal acknowledgment.
Note that in case the timeouts for the esets_sm lter are set too small, Sendmail can
temporarily defer the message to the queue and attempt to pass it through later. This may lead
to continuous deferral of the same messages. In order to avoid the problem, the timeouts have
to be set properly. One can also experiment with the Sendmails confMAX_MESSAGE_SIZE’
parameter, which is the maximum accepted message size in bytes. Taking into account this value
and the maximum time for processing of this amount of data by MTA (this can be measured), one
can evaluate the appropriate timeouts for esets_sm lter.
In the last, recreate sendmail.cf and restart Sendmail.
A.3. Setting ESETS for MTA Qmail
A.3.1. Inbound e-mail messages scanning
The goal of this installation is to insert esets_mda before Qmail’s local delivery agent. Let’s
assume, Qmail is installed in the /var/qmail directory. In the [mda] section of ESETS conguration
le set this parameter:
mda_path = ”/var/qmail/bin/qmail-esets_mda”
and restart ESETS daemon.Createthele/var/qmail/bin/qmail-esets_mdawiththiscontent
and run chmod a+x on it:
#!/bin/sh
execqmail-local--”$USER””$HOME””$LOCAL””””$EXT”\
”$HOST””$SENDER””$1”
which will make esets_mda call Qmail’s local delivery agent. Now create the le /var/qmail/
bin/qmail-start.esets with this content and also run chmod a+x on it:
#!/bin/sh
A=”$1”; shift