MailScanner 4.59-4.2 - Почтовый вирусный сканер, защитная программа и маркировщик спама. Совместим с Postfix, Sendmail, Exim, Qmail, ZMailer MTAs и практически любыми антивирусными программами - Sophos, McAfee, F-Prot, F-Secure, CommandAV, InoculateIT, Inoculan, eTrust, Kaspersky, Nod32, AntiVir, BitDefender, RAV, Panda, DrWeb, ClamAV и т.д.
MailScanner использует SpamAssassin для высокоэффективной идентификации спама и обработки атак типа "отказ в обслуживании". MailScanner определяет защищенные паролем файлы архивов и выполняет проверку имен файлов для их содержимого. Практика показала, что MailScanner может быть легко встроен в любую почтовую систему.
Cсылка "скачать" - страница загрузки.

---

Home_http://www.mailscanner.info/
RedHat, Fedora and Mandrake Linux_http://www.sng.ecs.so...6-2.rpm.tar.gz
SuSE Linux 8 to 9.3_http://www.sng.ecs.so...-2.suse.tar.gz
Solaris / BSD / Other Linux / Other Unix_http://www.sng.ecs.so....44.6-2.tar.gz

* New Features and Improvements *
1 Can now automatically unzip small zip files and other archives. This
is very useful if you have some service automatically mailing you log
files, which zips up the logfiles to save space. It will unpack them if
there only a few of them, they are fairly small and they match a list
of filename patterns.
Unzip Maximum Files Per Archive = 4
Unzip Maximum File Size = 50k
Unzip Filenames = *.txt *.ini *.log *.csv
Unzip MimeType = text/plain
1 Hourly cron job about messages being processed only sends a message if
'Send Notices = yes' is set in MailScanner.conf.
1 "Read IP Address From Received Header" has been extended, so it will
now take a number instead of yes or no. "yes"=1 and "no"=0. If it is set
to "yes" or a number, then the SMTP client IP address is taken from the
"Received:" header. For example, setting it to 2 will cause the IP
address to be taken from the 2nd Received: header.
Users of BarricadeMX might want to set this to 2, to get the real SMTP
client IP address from the 2nd Received: header, and not the 127.0.0.1
address that BarricadeMX put in the headers.
Users of fetchmail might want to set this to 1 or 2 to skip over the
127.0.0.1 address which will be inserted by fetchmail.
5 Set up Antiword to always return UTF-8 characters and use that in the
attachment it creates.
6 Removed co.dk from country.domains.conf as it's not an official 2nd level
domain.
6-2 Upgraded DBD-SQLite to 1.25 to avoid RedHat 4 build problems.
6-3 Improved detection of some x86_64 systems.
6-4 Corrected DBD-SQLite packaging error.
7 Improved --lint checking of "Processing Attempts Database" and improved
logging related to that database. Also improved documentation about the
two SQLite databases in MailScanner.conf.
8 Implemented a new type of line in rulesets. When you specify a "From:"
rule, you can use a syntax like "host:hostname.domain.com" to use the
SMTP client's hostname instead of the numerical IP address. This can
also be partial hostnames or domain names, such as "host:domain.com"
or include wildcards anywhere, such as "host:mail*.dom*ain.com", or
even Perl regular expressions such as "host:/(de|dk)$/". This goes
where the numerical IP address would go in the rule, after the "From:"
and before the value to return.
Note that these are slightly slower than using the IP address as they
involve a DNS lookup (maximum of once per message), but that value
should be in your DNS cache as other things will have already had to
look it up anyway.
They are described in more detail in the etc/rules/README and
etc/rules/EXAMPLES files.
9 Added spoofing protection to the "host:" name lookups. Forward and
reverse DNS entries must now match.

* Fixes *
3 Fixed problem where Unzip functions would not be found. Set default to off.
4 Fixed issue with Postfix not scanning some messages in 4.77.3.
5 Fixed issue with Postfix scanning too many messages in 4.77.4. :-)
6 Fixed issue with extra character on the front of files created by antiword.
7 Fixed UTF-8 character in Perl source code in Esets output parser.
7 Fixed issue with encapsulating messages containing silent whole-message
infections.

---

Downloads (~8,8 Mb)_http://www.mailscanne....77.9-1.tar.gz

* New Features and Improvements *
1 Improved handling of Postfix messages with complex structures caused by
some milters.
2 In addition to the previous 'host:hostname.domain.com' method of providing
a hostname in rulesets, you can now also specify
host-nocheck:hostname.domain.com
which is the same thing but no anti-spoof checks are made. This is only
useful if you have a 'PTR' record for providing the IP address of the
hostname but no forward 'A' record for translating the IP address into
a hostname.
This is frequently the situation when using dynamic IP addresses.
3 Swapped over virus-scanning and spam-scanning code completely, so all
virus-scanning code is done before spam-scanning code. It won't virus-
scan "Silent Viruses" which is pretty much all of them now, so it should
work okay. This allows me to introduce...
3 New feature to allow detection of "spam-viruses" which are items of spam
that are reported by your virus scanner. You can set 2 new configuration
options:
Spam-Virus Header = X-%org-name%-MailScanner-SpamVirus-Report:
Virus Names Which Are Spam = Sane*UNOFFICIAL HTML/*
The names of the "spam-viruses" found are those viruses reported by your
virus scanners which match any of the strings given in "Virus Names Which
Are Spam". These "spam-virus" names are added to the header set by
"Spam-Virus Header". You can then write a SpamAssassin rule in
spam.assassin.prefs.conf which gives a score for the presence or contents
of this header. I supply an example rule which adds a score of 3 if the
header exists. Feel free to re-write and extend that rule! It will not work
unless you customise it. You could even write a "SpamAssassin Rule Action"
to handle this rule specially!
6 Improved installer for Fedora Core 11.
7 Improved RPM installer so when it needs to, it only removes RPMs I installed.
7-2 Added an "export HOSTNAME" to the init.d script. Should resolve some
issues where using "$HOSTNAME" or "${HOSTNAME}" in MailScanner.conf did
not work.
8 Added support for "include path-to-conf-files" lines in MailScanner.conf.
You can now put your site-specific customisations in separate files, to
make upgrading of many servers a lot easier. You can nest "include" files,
which means that an "include"d file can "include" other files.
The "path-to-conf-files" can use the normal shell wildcard characters such
as "*" so a valid line might be
include /etc/MailScanner/config/*.conf
to read all the *.conf files in that directory in turn.
The *last* value read for each MailScanner.conf setting will be used.
8 Added support for "include" lines in upgrade_MailScanner_conf. If you treat
them as comments, the whole problem quietly disappears!
10 Added /etc/MailScanner/conf.d directory to RPM and added a default include
line in shipped MailScanner.conf. Put a README in the conf.d directory.
11 Improved notes in conf.d/README file.
13 Added "Quick.Peek" script to distribution to read configuration settings
from shell scripts, which correctly handles included files.

* Fixes *
2 Minor fix to phishing net for servers on port numbers that start with "80"
but are not 80.
2 Fixed issue of spam report not appearing in rare cases.
4 Fixed problem of silent viruses not being quarantined when requested.
5 Fixed issue where spam-viruses would be quarantined and found as silent.
5-3 Renamed subroutine.
6 Fixed installer for Perl-IO, Perl-DBI, Perl-DBD-SQLite, Perl-Filesys-Df,
Perl-Net-DNS for Fedora 11.
7 Fixed installer for Perl-Digest-SHA1 for Fedora 11.
9 Fixed problem where "Scan Messages = no" was ignored.
9 Fixed problem where multiply-infected files in the same archive may not
always be removed correctly.
10 Fixed issues with "include" files where they wouldn't be used for a few
variables, and "%variable%" definitions in include files were ignored.
11 Fixed problem where settings found in included conf files would be
ignored sometimes when starting up.
14 Rulesets used within Custom Functions should work again now.
15 Fixed crash when "Expand TNEF = replace".
16 Improved processing_messages_alert so it behaves better in the face of
a ruleset defining "Notices To =".
16 Fixed problem in Exim where duplicate headers could appear due to
DeleteHeader not finding them correctly.
16 Improved handling of Unicode and foreign character sets used in attachment
filenames.

---

Downloads (~8,8 Mb)_http://www.mailscanne...78.17-1.tar.gz

01/02/2010 New in Version 4.79.11-1
===============
* New Features and Improvements *
1 Settings relevant to update_spamassassin have moved from /etc/sysconfig/
MailScanner to /etc/sysconfig/update_spamassassin.
1 Log files from update_spamassassin will only be deleted if both the
sa-update and sa-compile commands succeeded. No news is good news!
2 Updated HTML-Parser to 3.64.
4 Changed behaviour. If the clamd daemon or the F-Prot daemon are unreachable
then if *all* the configured virus scanners cannot be reached then no mail
is virus-scanned and delivered. The previous behaviour was that the mail
would still be delivered and logged in this situation. Now it will not
deliver any message that could be infected but could not be scanned.
5 Changed behaviour of "Reject Message". It is now a "First match" rule and
not an "All matches" rule. The first matching rule in the ruleset will
determine the result.
5 Speeded up bitdefender-autoupdate script.
5 update_spamassassin changed to only update SpamAssassin if the rules changed.
Many thanks to Mark Sapiro for the above updates!
9 Added support for new "*.xvdl" files in the Sophos autoupdate script.

* Fixes *
3 Fixed taint errors when running with Run As User not equal to root.
4 Tiny taint bug fixed when scanning Eicar.
5 Fixed taint bug in external TNEF expander code.
5 Fixed problem signing messages which have only an HTML part and that part
has already been signed by an earlier MailScanner in the conversation thread.
6 Final TNEF taint problems fixed.
6 Fixed important bug in ClamAV output parser (only affects clamav, not clamd
or clamavmodule).
7 Fixed UnpackZip taint problem, affecting processing of .docx files.
8 Fixed typo in Message.pm.
9 Fixed typo in SweepViruses.pm affect F-Protd-6 scanning.
10 Fixed error in "Full ClamAV Message Scan" file permissions.
10 Fixed logging from "sophossavi".

---

Downloads (~8,7 Mb)_http://www.mailscanne...79.11-1.tar.gz