Bottom line: The virus scanning should be done by your MTA. If you muck around in user mailboxes, deleting messages willy nilly without letting Cyrus know, you *will* corrupt users' mailstores, unless you tediously plan to run reconstruct on a mailbox everytime a virus is found. Unless your name is Rube Goldberg, this seems like a bad idea to me.
If you must alter messages after they've been delivered, run Courier or some other MH-based mailserver. Cyrus isn't for you. It's really that simple. <commentary> IMHO, all *YOU* can be expected to be responsible for as a socially responsible sys admin is the mail sent through your mailserver. If virus scanning is done on all outbound/inbound SMTP connections, then you can rest well knowing you're doing your part. If some clueless user uploads a virus as an IMAP piece of mail and they don't run anti-viral software, well it'll only happen to them once if they're smart ;-) </commentary> The benefits of scanning inbound & outbound SMTP traffic only becomes apparent if you really think about it. -- Brian
