Re: Simple way to scann all incoming and outgoing e-mails for viruses
john doe wrote:
> Debians,
>
> My MUA is connecting to mail.com for imap and smtp.
> I have a Debian gateway server that I would like to use to scann e-mails
> sent and reseaved.
>
> Is there a way to scann incoming and outcoming e-mails on those ports
> for viruses?
>
> What I'm trying to avoid is to change the connection settings in my MUAs.
>
> I'm not sure how realistic this is so I might refine my question based
> on the provided answers.
Intercepting IMAP and SMTP transparently is plausible, but if
you're using SSL/TLS encryption - and you probably are - not easy.
Mail can be scanned:
- by an MTA when it arrives via SMTP
- by an MTA calling a plug-in after the mail has arrived
- by an MTA calling a plug-in while delivering to a mailbox
- by an independent agent looking at a mailbox
- by an MUA after it picks up mail
What are your actual restrictions? Tell us more about your
situation.
For instance, if one of your MUAs is a phone running an email
client pointed at mail.com, you will need to convince it to
accept your own SSL certificate authority -- and even then, this
will only work when your gateway is routing network traffic for
the device.
On the other hand, running a mail server that grabs your mail
from mail.com (with your username and password) and then makes
it available to you via IMAP and SMTP is relatively easy, but
does require changing your MUA connections from mail.com to your
mail server.
-dsr-
Reply to: