[SOLVED] Difference between a spam virus and a real virus

F

facyber

New Member
Sep 9, 2020
23
5
3
Hi everyone,

Is there possibility to make filter rules based on Sanesecurity output for example? Basically we would like to separate the spam viruses which are in some cases just regular spams, and those that are actually virus, that could be detected by Sanesecurity.

Something similar to the this link, only this is for MailScanner implementation.

Cheers!
 
Currently the virus-scanning is pretty much hardcoded in pmg-smtp-filter.
The one thing which gets treated as 'Spam' and not as 'Virus' is matches on 'Heuristics' (this is also used to catch password-protected ZIP files (since they get tagged as Heuristic by ClamAV)

you could consider implementing the checking against sanssecurity with a custom check script:
https://pmg.proxmox.com/pmg-docs/pmg-admin-guide.html#pmgconfig_custom_check

I hope this helps!
 
  • Like
Reactions: facyber
HI Stoiko,

Thanks for the reply. It seems this could be indeed what we need, but we will test it of course.

Cheers!
 
You must log in or register to reply here.

About

The Proxmox community has been around for many years and offers help and support for Proxmox VE, Proxmox Backup Server, and Proxmox Mail Gateway.
We think our community is one of the best thanks to people like you!

Quick Navigation

Home Get Subscription Wiki Downloads Proxmox Customer Portal About

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get yours easily in our online shop.

Buy now!
Community platform by XenForo® © 2010-2024 XenForo Ltd.
Top Bottom