Hello again, On Thu, 27 Jul 2017, Beeblebrox wrote:
... I need the gateway setup to be fire-up & forget.
That's a tall order. Given that requirement you don't need to add any more complexity than you already have, and to make scanning by ClamAV worth doing in the first place I think you'd need some complexity just for example to be able to use third-party databases. ClamAV has had a somewhat chequered history, and it's still at 0.99.something. If you spend some quality time in the archives you'll probably see the sorts of things that can happen. In my view what you're asking for is not feasible, but it's just my view.
... visitors would be unknown users.
Are these visitors bringing devices (laptops, tablets etc.) with them? The second some visitor connects a WannaCryMk2 infected laptop to your LAN it's all over; your gateway can't do a thing about it.
... I was looking at whether Perdition or Nginx might offer a solution.
I have no experience of Nginx. I've used Perdition for more than a decade; for system integration, migration, IMAP before SMTP, and the things that Perdition is for. The scanning has always been directly via MTA milters. Perdition has always been utterly reliable. Off the top of my head I'm not sure I'd know how to set it up to run the mail by clamd. If clamd finds something (it does happen), what's the plan? The message is *already* in the user's mail box, and I'd say it should *not* be there in your scenario, because the user can pick up the bad mail simply by connecting other than through your gateway. For maximum forgettability and better user protection I'd be thinking along the lines of getting the remote server to do the scanning. -- 73, Ged. _______________________________________________ clamav-users mailing list clamav-users@lists.clamav.net http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/contact.html#ml
