This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Antivirus Scanner

Hy there,

i just send an email to the internet with the 'EICAR test file' as zipped attachment.

My ASL sent me an information message, that this mail was infected by a virus and is not delivered to the recipient:

##############################
Attention: sender@domain.de.

A Virus was found in an Email message you sent.
This Email scanner intercepted it and stopped the entire message
reaching it's destination.

The Virus was reported to be:

EICAR-Test-File

Please update your virus scanner or contact your I.T support
personnel as soon as possible as you have a virus on your system.

Your message was sent with the following envelope:

MAIL FROM: sender@domain.de
RCPT TO:   recipient@domain.de

... and with the following headers:

From:    sender@domain.de
To:      recipient@domain.de
Subject: Test file
Message-ID:
Date:    Wed, 2 May 2001 13:49:34 +0200

The original message is kept in:

  virus_scan_:/var/spool/qmailscan/quarantine

where the Anti-Virus System Administrator can further diagnose it.
##############################

This is very good, so i know when there is something going on.

On the bottom of the information mail the results of the AVP protocol are shown.
(amounts of signs like
Loading kernel.avc 1
/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/-\|/ Loading kernel.avc 97
-\|/ Loading kernel.avc 98
, what's that)

Question:
When i checked the recipient, he was also told, that someone tried to send him an infected mail.
The recipient also revieves ALL information given to the originator/administrator.

1.) I think there is no interest for the recipient (and maybe for the ASL Admin) that this information is given to him (where the mail is stored on ASL, Scan results of AVP).
That could be very confusing for him.
Couldn't that information be truncated ?
2.) Wouldn't it be interesting for the ASL Admin to have the choice wether the recipient will be informed at all or not in case of a virus infected mail (which will not reach him, so he is not in danger).
I think some companys don't want to let the others know something about their virus problems   [;)]  ?
   No, WE DON'T have virus problems, which we want to hide ...

Go on with your great work !!

Best regards, KArsten

This thread was automatically locked due to age.

0 tom_01 over 23 years ago

hi karsten,

(alles klar in Rastatt ? [;)]

we will have switchable sender and receiver notifications in further versions of ASL (already been planned). What we will have first is a management interface for virus infested mails.

/tom

[ 02 May 2001: Message edited by: Markus Hennig ]
Cancel
Vote Up 0 Vote Down

Cancel
0 KKnecht over 23 years ago in reply to tom_01

great, i will wait for it !!

karsten

btw, thanks for quick response [:)]
Cancel
Vote Up 0 Vote Down

Cancel
0 Mygent over 23 years ago in reply to KKnecht

Hi,

Anything new about this?

Has the option to customize postmaster replies and virus alerts been added to Astaro?

Regards,
Jens Kristian Mygent
Cancel
Vote Up 0 Vote Down

Cancel