Re: [Exim] Re: exiscan and aveserver (kaspersky 5)

Top Page
Delete this message
Reply to this message
Author: Christoph Moench-Tegeder
Date:  
To: Giolla Decair
CC: Tom Kistner, exim-users
Subject: Re: [Exim] Re: exiscan and aveserver (kaspersky 5)
## Giolla Decair (giolla@???):

> Though you can spcify a wild card, I currently use a little shell
> script as follows:
> #!/bin/sh
> KAV=/usr/local/share/kav/bin/aveclient
> SOCKET=/var/run/aveserver
> $KAV -p $SOCKET -s $1/* | grep 'INFECTED ' | sed 's/D /D: /;s/^L//'
> which is fine for a low volume site like mine, I then specify:
> av_scanner = cmdline:/usr/local/share/kav/bin/kavexim.sh %s: INFECTED:
> ::(.+)$


Avoiding wildcards, you could use /opt/AVP/bin/wrapper as follows:

: #!/bin/ksh
: exec /opt/AVP/bin/aveclient -p /opt/AVP/aveserver -s "$1"/$(basename "$1").eml

with this line in exim's configure:
: av_scanner = cmdline:/opt/AVP/bin/wrapper %s:INFECTED:LINFECTED (.+)

Using Version 5.0.4.0/RELEASE build #3, we encountered no problems
so far.

Regards,
Christoph

--
Spare Space