|
|
|
AntiVirus E-mail Filtering |
 |
|
|
|
AntiVirus E-mail Filtering |
|
ClamAV
Anti Virus scanning of e-mail passing through the mail server is in place. This is intended as an additional layer of defense against malware (i.e. worms and viruses) rather than a replacement for desktop Anti Virus protection. So it is still important that you keep your AntiVirus software up-to-date. The software used is "ClamAV" from www.clamav.net. If you examine the message headers of a e-mail message you will see a line similar to:
X-Virus-Scanned: ClamAV version 'clamd / ClamAV version 0.99', clamav-milter version '0.99p'
Mail that is detected as having malware will be rejected by the mail server, and will not be delivered to you. Instead you will get a message from the mail server similar to the example below. No additional bounce message to the "From:" address are generated because the "From:" address is likely to be a spoofed e-mail address rather than the actual sender. The mail server attempting to send or forward the malware to the Durkee Consulting mail server, will generate a delivery failure notice to the sender if it's appropriate. Of course any e-mail sent out via the mail server will also be rejected if malware is detected.
Keep in mind the filtering only affects e-mail that's delivered to your e-mail address at your domain name hosted by Durkee Consulting. If you receive some or all of your e-mail directly to another e-mail address, then of course that e-mail is not included.
Sample notice of e-mail blocked for malware:
Date: Sat, 21 Feb 2004 15:17:30 -0500 (EST)
From: MAILER-DAEMON@net.rd1.net
To: postmaster@net.rd1.net
Cc: <you@your_domain.org>
Subject: Virus interceptedA message sent from <joesmoe@example.com> to <you@your_domain.org>
contained a virus and has not been delivered.
stream: Worm/Klez.H FOUNDImportant: Malware often spoofs the e-mail From address, so it very likely that joesmoe@example.com did not actually send this e-mail. One possibility is that it may have been someone infected that had both you and joe in their address book.
Please contact us if you have any questions, or if you need help with any Internet related services or computer security issues.
|
 |
Durkee Consulting, Inc.
|