Chapter 7. Tips and tricks
This chapter is devoted to describe tips and tricks cocnerned with configuration of NOD32LMS.
This means it describes configuration of NOD32LMS in circumstances when for instance MTA
is configured to use other software with similar functionality or with functionality that could
normally lead to misconfiguration of NOD32LMS.
7.1. Dropping messages marked by NOD32 as deleted in
MTA Postfix
In an Internet has recently appeared nonnegligible increase of the number of the e-mail messages
containing worms. In most cases the infected attachment of such messages cannot be cleaned
but rather deleted and whole messages even does not contain any reasonable information. In
such a cases it has sense to discard (or treat in special way) this kind of messages. Mechanism
described in this section can be used to suppress messages marked by NOD32LMS as deleted
in MTA Postfix.
First of all one has to add the following entry
write_to_header = 1
into section [smtp] of the main NOD32LMS configuration file (/etc/nod32/nod32.cfg). This
setting will result in a modification of each non-clean e-mail message by means the string ’X-
NOD32Result: status’ is inserted into header of the message. Word ’status’ of the string is re-
placed by actual status of the scanning process.
In order to discard all messages that has been marked as ’deleted’ one has to add following line
header_checks = regexp:/etc/postfix/header_checks
into the main Postfix configuration file (/etc/postfix/main.cf). At the same time one has to cre-
ate file ’/etc/postfix/header_checks’ with the following content.
/^X-NOD32Result: deleted/ DISCARD
To accomplish the whole procedure, one has to restart MTA Postfix, daemon nod32d and dae-
mon nod32smtp.
Note that in older Postfix versions DISCARD functionality may not work. In this case
warning message ’Postfix does not know the command DISCARD’ will appeare in the
’/var/log/maillog’ file. This can be only solved by update of the Postfix package.
41
To Next Page
Loading...
Need help?
General
