Esets AV nor recognized by MailScanner
Scott B. Anderson
sbanderson at impromed.com
Thu Apr 17 18:55:28 IST 2008
> -----Original Message-----
> From: mailscanner-bounces at lists.mailscanner.info [mailto:mailscanner-
> bounces at lists.mailscanner.info] On Behalf Of Alex Broens
> Sent: Thursday, April 17, 2008 11:08 AM
> To: MailScanner discussion
> Subject: Re: Esets AV nor recognized by MailScanner
> On 4/17/2008 1:41 PM, --[ UxBoD ]-- wrote:
> >> Using latest MS release and Esets AV (ex Nod32) on a test box.
> >> "Virus Scanners = auto" doesn't recognize
> >> "# esets from www.eset.com"
> >> Setting "Virus Scanners = esets" doesn't work either
> >> Can anyone reproduce?
> >> Thanks
> >> Alex
> > Alex, is virus.scanners.conf correct for its path ?
> Hi [ UxBoD ]
> After MS recognizes Eset, it doesn't catch an Eicar.zip, which
> clamavmodule does.
> In "esets_wrapper" you've chosen to use esets_scan which doesn't speak
> to the daemon but has to load the signatures every time its called and
> is extremely slow.
> Seems we're still missing something. What OS did you use to test the
> wrapper & co?
> MailScanner mailing list
> mailscanner at lists.mailscanner.info
> Before posting, read http://wiki.mailscanner.info/posting
> Support MailScanner development - buy the book off the website!
This could probably be a new thread, but I had to manually change virus.scanners.conf also, so I was wondering if that possibly could be causing my issue using ESET.
After updating my virus.scanners.conf to point to /opt/eset/esets/sbin, MailScanner 4.68.8 appears to lint fine and finds the EICAR virus, but then this happens on a lot of mails:
Apr 17 12:03:22 ns1 MailScanner: object="email message", name="./m3HH31Pw024758.header", virus="", action="", info="error - unknown compression method ", lines=0
Linux ns1.impromed.com 2.6.17-1.2174_FC5smp #1 SMP Tue Aug 8 16:00:39 EDT 2006 i686 i686 i386 GNU/Linux
This is Fedora release 8 (Werewolf)
This is Perl version 5.008008 (5.8.8)
This is MailScanner version 4.68.8
Module versions are:
Optional module versions are:
I'm converting all HTML mail to text and running Clam, McAfee and ESET when this happens. If I remove ESET, MailScaner processes email normally. Not sure what I did wrong, or if ESET file security for linux rpm-based distributions is at fault.
More information about the MailScanner