ESET MAIL SECURITY LINUX Installation Manual
Hide thumbs
Also See for MAIL SECURITY LINUX:
- Installation manual (42 pages) ,
- Installation manual (46 pages) ,
- Installation manual (30 pages)
Related Manuals for ESET MAIL SECURITY LINUX
Summary of Contents for ESET MAIL SECURITY LINUX
- Page 1 ESET Mail Security Installation Manual and User Guide...
-
Page 2: Table Of Contents
8. Let us know ..................29 A. ESETS setup and configuration............31 ESET Mail Security A.1. Setting ESETS for MTA Postfix..............32 Copyright © 2008 ESET, spol. s r.o. A.1.1. Inbound email messages scanning............32 A.1.2. Bi-directional email messages scanning..........32 ESET Mail Security was developed by A.2. -
Page 3: Introduction
Chapter 1: Introduction... - Page 4 Dear user, you have acquired ESET Mail Security - the premier security system running under the Linux/BSD/Solaris OS. As you will soon find, the state-of-the-art ESET scanning engine has unsurpassed scanning speed and detection rates, combined with a very small footprint that makes it the ideal choice for any Linux/BSD/Solaris OS server.
-
Page 5: Terminology And Abbreviations
Chapter 2: Terminology and abbreviations... - Page 6 ESETS ESET Security is the standard acronym for all security products developed by ESET, spol. s r.o. for Linux, BSD and Solaris operating systems. It is also the name (or its part) of the software package containing the products.
- Page 7 ESETS binary files directory The directory where the relevant ESET File Security binary files are stored. The abbreviation @ BINDIR@ will be used for future references to this directory. The @BINDIR@ value for the following Operating Systems is listed below:...
-
Page 9: Installation
Chapter 3: Installation... - Page 10 This data is required in order to identify you as our customer, to download updates for ESET Mail Security, and for downloading the installation package from our web site. ESET Mail Security is distributed as a binary file: esets.i386.ext.bin...
-
Page 11: Architecture Overview
Chapter 4: Architecture Overview... - Page 12 The structure of ESET Mail Security is shown in Figure 4-1. The system is comprised of the following parts: CORE The core of ESET Mail Security is the ESETS daemon (esets_daemon). The daemon uses ESETS API library libesets.so and ESETS loading modules em00X_xx.dat to provide base system tasks such as scanning, maintenance of the agent daemon processes, maintenance of the samples submission system, logging, notification, etc. Please refer to the esets_daemon (8) man...
- Page 13 @ETCDIR@/esets.cfg This is the most important configuration file, as it controls all major aspects of the product‘s functionality. The esets.cfg file is made up of several sections, each section containing various parameters. The file contains one global and several “agent“ sections, with all section names enclosed in square brackets.
-
Page 15: Integration With Email Messaging System
Chapter 5: Integration with Email Messaging System... - Page 16 This chapter describes the integration of ESET Mail Security with a variety of known email messaging systems. It is extremely important to understand the basic principles of an email messaging system (see figure 5-1) and how ESET Mail Security integrates with it.
-
Page 17: Bi-Directional Email Messages Scanning In Mta
The bi-directional content filter method is MTA dependent. ESET Mail Security comes with four content filters that are built for the most common MTA programs, such as MTA Sendmail, Postfix, Exim, QMail and ZMailer. -
Page 18: Scanning Of Outbound Email Messages
ZMailer. ESETS supports any MDA. In particular, the following MDAs were tested: procmail, maildrop, deliver and local.mail. Check that your MTA is properly configured using the original MDA and that the MTA is running. Then configure ESET Mail Security for inbound email message scanning by running the following script: /usr/sbin/esets_setup Select MDA and inbound install options. -
Page 19: Alternative Methods Of Content Filtering
AMaViS (A Mail Virus Scanner) is a tool that interfaces your MTA with several antivirus scanners. It supports various MTAs and comes in three branches: amavis, amavisd and amavisd-new. AMaViS cooperates with ESET Mail Security by using esets_cli. Before explaining the AMaViS configurations, the impact of the ESET Mail Security functionality method is described. - Page 20 Next, configure the product with the newly installed amavisd- new. To do this, delete the clause for ‘ESET Software ESETS’ and then replace the clause for ‘ESET Software ESETS - Client/Server Version’ in the file ‘amavisd.conf’ with the following one: ### http://www.eset.com/...
-
Page 21: Important Eset Mail Security Mechanisms
Chapter 6: Important ESET Mail Security mechanisms... -
Page 22: Handle Object Policy
NOTE: Some modules have been written to integrate ESETS into an environment which does not allow scanned objects to be modified. Thus the modification of scanned objects is disabled in such modules and the value of the configuration option av_ clean_mode is ignored. For detailed information on this topic refer to the relevant modules‘ man pages. ESET Mail Security... -
Page 23: User Specific Configuration
All file system objects accessed by other users will be scanned for infiltrations, except for the user rcptuser@rcptdomain.com, whose access will be rejected (blocked). chapter 6 Important ESET Mail Security mechanisms... -
Page 24: Blacklist And Whitelist
The anti-spam system filters all spam email messages, i.e., email messages that recipients do not want, from the data flow of the email messaging delivery process. To eliminate spam, ESET Mail Security uses the anti-spam control mechanism. This mechanism is enabled using the ‘as_enabled’ parameter (for a full description of the parameter refer to the esets.cfg (5) man page). -
Page 25: Samples Submission System
All virus samples collected by the sample submission system will be processed by the ESET virus laboratory and if necessary, added to the ESET virus signature database. -
Page 26: Remote Administration
6.7. Remote Administration ESETS supports ESET Remote Administration for file security management in large computer networks. For more information, please see the ESET Remote Administrator Manual. This manual is located on our web site, here: http://download.eset.com/manuals/ESET_ERA_User_Guide_EN.pdf The ESETS Remote Administration Client is part of the main ESETS daemon. For basic set up, specify the address of your ERA Server using the ‘racl_server_addr‘ parameter in the [global]... -
Page 27: Updating Eset Mail Security
Chapter 7: Updating ESET Mail Security... -
Page 28: Esets Update Utility
In the line above, ‘http-serv-base-path‘ is a base HTTP server directory path–this is the first place the update utility will search for update modules. The second stage of the update process is the compilation of modules loadable by the ESET Mail Security scanner from the local mirror. Typically, the following ESETS loading modules are created: loader module (em000.dat), scanner module (em001.dat), virus signature database... -
Page 29: Let Us Know
Chapter 8: Let us know... -
Page 30: Eset Mail Security
Dear user, we hope this Guide has provided you with a thorough understanding of the requirements for ESET Mail Security installation, configuration and maintenance. However, our goal is to continually improve the quality and effectiveness of our documentation. If you feel that any sections in this Guide are unclear or incomplete, please let us know by contacting Customer Care: http://www.eset.com/support... -
Page 31: Esets Setup And Configuration
Appendix A. ESETS setup and configuration... -
Page 32: Setting Esets For Mta Postfix
Postfix: content_filter = smtp:[127.0.0.1]:2526 NOTE: If the ‘content_filter’ parameter already has a value, do not follow these instructions. Instead, you must insert esets_smtp (or other ESETS mail scanning module) before or after your current ‘content_filter’ . ESET Mail Security... -
Page 33: Setting Esets For Mta Sendmail
Lastly, set Postfix to accept mail on port 2525 and continue processing it. To do this, add the following entry to the Postfix master.cf file: localhost:2525 inet n - n - - smtpd -o content_filter= -o myhostname=esets.yourdomain.com -o local_recipient_maps= -o relay_recipient_maps= receive_override_options=no_unknown_recipient_checks,no_header_body_checks -o smtpd_helo_restrictions= -o smtpd_client_restrictions=... -
Page 34: Bi-Directional Email Messages Scanning
#!/bin/sh exec qmail-local -- ”$USER” ”$HOME” ”$LOCAL” ”” ”$EXT” \ ”$HOST” ”$SENDER” ”$1” This will cause esets_mda to call Qmail’s local delivery agent. Next, create the file /var/qmail/ bin/qmail-start.esets with the following content and also run chmod a+x on it: ESET Mail Security... -
Page 35: Bi-Directional Email Messages Scanning
#!/bin/sh A=”$1”; shift exec qmail-start.orig ”|@BINDIR@/esets_mda ‘$A’”’ \ -- --sender=”$SENDER” --recipient=”$RECIPIENT”’ “$@” This will start Qmail using esets_mda for local deliveries. However, the original delivery specification is passed to qmail-local through esets_mda. Note that in this configuration esets_ mda will use Qmail’s recognized exit codes (see the qmail-command (8) man page). Lastly, replace qmail-start using commands: mv /var/qmail/bin/qmail-start /var/qmail/bin/qmail-start.orig ln -s qmail-start.esets /var/qmail/bin/qmail-start... -
Page 36: Bi-Directional Email Messages Scanning
= pipe command = @BINDIR@/esets_mda -oi -oMr esets-scanned $local_part@$domain \ --sender=$sender_address --recipient=$local_part@$domain This will send all unscanned mails for local users to esets_mda; esets_mda will then send them back to Exim for further processing. To re-read the newly created configuration, restart Exim. ESET Mail Security... -
Page 37: Reserves The Right To Change Any A.5.2. Bi-Directional Email Messages Scanning
A.5.2. Bi-directional email message scanning The goal of this installation is to create an Exim transport from esets_mda for all mail. Perform all steps from the previous section, but omit this line in esets_router: domains = +local_domains A.6. Setting ESETS for MTA ZMailer A.6.1. Inbound email message scanning The goal of this installation is to use esets_mda as ZMailer‘s local delivery agent. However, you must have a real MDA installed, such as procmail. -
Page 38: Setting Esets For Scanning Of Pop3 Communication
-A INPUT -p tcp -i if0 --dport 110 -j REDIRECT 8110 If IP-filtering is being performed by the iptables administration tool, the rule would be: iptables -t nat -A PREROUTING -p tcp -i if0 \ --dport 110 -j REDIRECT --to-ports 8110 On FreeBSD, the rule is as follows: ESET Mail Security... -
Page 39: Setting Esets For Scanning Of Imap Communication
ipfw add fwd 192.168.1.10,8110 tcp from any to any 110 via if0 in On NetBSD and Solaris: echo ’rdr if0 0.0.0.0/0 port 110 -> 192.168.1.10 \ port 8110 tcp’ | ipnat -f - A.9. Setting ESETS for scanning of IMAP communication The IMAP communication scanning is performed using the esets_imap daemon. In the [imap] section of the ESETS configuration file, set these parameters: agent_enabled = yes listen_addr = ”192.168.1.10”... -
Page 41: Php License
Appendix B. PHP License... - Page 42 PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. ESET Mail Security...
Need help?
Do you have a question about the MAIL SECURITY LINUX and is the answer not in the manual?
Questions and answers