Differences between version 2 and previous revision of ClamAvPopVscan.
Other diffs: Previous Major Revision, Previous Author, or view the Annotated Edit History
| Newer page: | version 2 | Last edited on Friday, November 14, 2003 7:21:15 pm | by CraigBox | Revert |
| Older page: | version 1 | Last edited on Friday, November 14, 2003 3:39:12 am | by JurajBednar | Revert |
@@ -1,16 +1,15 @@
-Pop3Vscan is a transparent pop3
proxy, which can be used to scan all pop3 communication going through the router. You can for example use it to protect a small network by scanning all outgoing pop3 connections. Use with pop3vscan is quite easy.
+Pop3Vscan is a transparent [POP3]
proxy, which can be used to scan all pop3 communication going through the router. You can for example use it to protect a small network by scanning all outgoing pop3 connections. Use with pop3vscan is quite easy.
I used Debian to do it, so I just installed pop3vscan from testing (apt-get -t testing install pop3vscan). You can try to fetch pop3vscan from your distribution or compile according to howto.
The important part of configuration is this:
-virusregexp = .*: (.*) FOUND %%%
-scanner = /usr/bin/clamscan --disable-summary -i %%%
-scannertype = basic
+
virusregexp = .*: (.*) FOUND
+ scanner = /usr/bin/clamscan --disable-summary -i
+ scannertype = basic
-Don't forget to add iptables rule, which will direct all pop3 traffic to pop3vscan first:
+Don't forget to add iptables(8)
rule, which will direct all pop3 traffic to pop3vscan first:
-/sbin/iptables -t nat -A PREROUTING -i eth1 -p tcp --dport 110 -j REDIRECT --to-port 8110
+
/sbin/iptables -t nat -A PREROUTING -i eth1 -p tcp --dport 110 -j REDIRECT --to-port 8110
-Change eth1 to your local network's interface name (all request coming from this network interface will be directed
-
+Change eth1 to your local network's interface name (all request coming from this network interface will be directed to pop3vscan).
