Manualshelf

User Guide

ManualsBrandsKaspersky Lab ManualsOtherKASPERSKY ANTI-VIRUS-SMTP-GATEWAY 5.5 FOR LINUX & UNIX
41424344454647484950
Using the application 43
NotifySender=disinfected, infected, suspicious,
protected, error
4.2.4.4. Additional filtering of objects by name
and type
Email messages frequently contain objects where virus infection is highly
probable (e.g., executable files). To avoid infection, we recommend that you
configure the application to filter email by name and/or attachment types and
save such objects in a separate directory.
There are also objects, which cannot be infected with viruses (e.g., plain text
files). To reduce the load on the server during anti-virus scanning of email
messages we recommend that you specify the types and/or the names of such
attachments in advance so that the application does not scan them.
Filtering of objects is performed using name masks (IncludeByName,
ExcludeByName parameters) and MIME types (IncludeByMime,
ExcludeByMime parameters) in the [smtp.policy] or
[smtp.group:group_name] sections of the application configuration file.
Task
:
Scan all group email messages for viruses.
Filter email with .exe attachments and block the delivery of email
messages, containing such files. Block the delivery of messages
containing suspicious, damaged or password-protected objects as well as
objects, which the application failed to disinfect.
Notify senders, recipients, and administrators about messages with .exe
attachments, cured, deleted, and suspicious objects and objects, which
the application failed to scan because of an error.
Solution: to perform the above task, do the following:
Specify the following parameter values in the [smtpgw.policy] section
of the configuration file:
[smtpgw.policy]
IncludeByName=*.exe
ActionDisinfected=cure
ActionInfected=pass
ActionSuspicious=pass
ActionProtected=pass
ActionError=pass