Topic: Virus & file blocking HOWTO using smtpfromt-qmail sme 6.

[raem]

Dear All
Please see the new HOWTO at

http://mirror.contribs.org/smeserver/contribs/rmitchell/smeserver/howto/Virus%20and%20file%20blocking%20HOWTO%20using%20smtpfront-qmail%20for%20sme%20server.htm

It is only for sme 6.0 & 6.0.1
It enables executable content blocking of email attachments which effectively blocks 95% or better of all current viruses & is configurable for new types of content "ie viruses" as they become known. You can also block specific attachment types ie multimedia files etc.
All these messages are rejected by the server so your virus scanner will have very little to do.

Be warned though, this contrib will block ALL incoming and outgoing smtp messages with exe files so you will have to zip those types of files instead.

My server has gone from hundreds of virus detections per week to one in the last three weeks !
Say goodbye to viruses with this one !

Many thanks to Gordon & friends.
Regards
Ray

[raem]

Here is an answer to a query from a user.

> I've gone through your How-To and installed your software no problems.
> I was just wondering how I update my virus definitions, or is there no need
> to do so?

No not really.
The default patterns don't relate to specific viruses as such, but they do cover the executable content patterns that all known Windows viruses have in them.
Later when a "new" variant is released (that is not covered by the existing patterns database) it would be appropriate to add a new pattern.

Determining and adding this pattern is covered in the HOWTO.

It is still wise to have an active virus scanner installed that is updated hourly to catch any "new" viruses.
If you see your virus scanner detecting viruses then you know something is slipping past the executable content blocking. You could then look at adding a pattern to cover the particular virus.

Regs
Ray