MailScanner 4.59-4.2 - Почтовый вирусный сканер, защитная программа и маркировщик спама. Совместим с Postfix, Sendmail, Exim, Qmail, ZMailer MTAs и практически любыми антивирусными программами - Sophos, McAfee, F-Prot, F-Secure, CommandAV, InoculateIT, Inoculan, eTrust, Kaspersky, Nod32, AntiVir, BitDefender, RAV, Panda, DrWeb, ClamAV и т.д.
MailScanner использует SpamAssassin для высокоэффективной идентификации спама и обработки атак типа "отказ в обслуживании". MailScanner определяет защищенные паролем файлы архивов и выполняет проверку имен файлов для их содержимого. Практика показала, что MailScanner может быть легко встроен в любую почтовую систему.
Cсылка "скачать" - страница загрузки.

---

Home_http://www.mailscanner.info/
RedHat, Fedora and Mandrake Linux_http://www.sng.ecs.so...6-2.rpm.tar.gz
SuSE Linux 8 to 9.3_http://www.sng.ecs.so...-2.suse.tar.gz
Solaris / BSD / Other Linux / Other Unix_http://www.sng.ecs.so....44.6-2.tar.gz

4/3/2008 New in Version 4.67.6-1
==============
* New Features and Improvements *
1 Added support for the ESET virus scanner, from www.eset.com. Support written
by Phil (UxBoD). Many thanks! Just use "Virus Scanners = esets" in
MailScanner.conf and check you have installed it in the expected location or
change /etc/MailScanner/virus.scanners.conf.
2 "MailScanner --lint" now checks to ensure unrar is installed and executable.
2 Esets autoupdater now accurately reports status results.
3 Implemented file MIME type checking, as reported by the "file -i" command.
This includees 3 new settings, which all work just like their non-MIME
brothers: "Log Permitted File MIME Types", "Allow File MIME Types" and "Deny
File MIME Types".
The main use is via the filetype.rules.conf file, where a new optional field
may be added just after the regular expression field (just after the 2nd
field in each line). If this field is added, then the "file -i" command is
run on every batch of messages and the output checked against the MIME types
specified in the newly inserted 3rd field (out of fields 1-5 on each line of
filetype.rules.conf files).
4 Added compatibility for BitDefender 7.5 to bitdefender-wrapper.
4 --debug now tells you when it's waiting for its batch of messages, and how
big the batch is.
4 "Use TNEF = replace" behaviour changed to add attachments with their original
potentially very long filenames instead of a sanitised one.
4 Linux RPM install.sh fixed for Fedora Core 8. Thanks to [email protected] for that one.
4 Improvement to the phishing net to allow all the links that look like this:
Name of my Blog -
http://site.blogspot.com/
4 Installation order of Perl module changed to install File::Spec before ExtUtils::MakeMaker, which should help the Solaris folks.
5 Made warning about %org-name% containing illegal characters a lot more
obvious when running "MailScanner --debug" as well as "MailScanner --lint".
5 Any mail headers inserted with spaces in them will have spaces replaced with
hyphens.
5 When "MailScanner --debug --debug-sa" is run, the start of every line of
SpamAssassin debugging output now has the current time stuck on the front
of it. This makes looking for pauses a whole lot easier.
6 Improvements to the init.d scripts for the RPM distributions. While waiting
for the MailScanner processes to die of natural causes, they periodically
send them another kill signal as there are a few cases in which the kill
signals are ignored. This should result in far more reliable restarting.
6 "sophos-autoupdate" improved to handle new "suspicious" threat data files
whose names start with "sus".

* Fixes *
4 Improved definition of "Scan Messages" when using Postfix, to attempt to
avoid occasional double delivery of unscanned messages on heavily loaded
servers.
5 Maliciously crafted attachment filenames could circumvent the 'very-long-
filename' rule in filename.rules.conf. Fixed.
5 Fix to include "ClamAVModule" in log outputs from it.
5 Symantec Scan Engine support problems now fixed. Set the path in
MailScanner's virus.scanners.conf to "/opt/SYMCScan". If set to that value,
it expects to see the Linux command-line scanner in the file
/opt/SYMCScan/ssecls/ssecls.

---

Downloads (~7,8 Mb)_http://www.mailscanne....67.6-1.tar.gz

1/4/2008 New in Version 4.68.8-1
=============
* New Features and Improvements *
1 Support for the Fpscand daemon that is supplied with F-Prot version 6.
Add this line to your virus.scanners.conf
f-protd-6 /bin/false /usr/local/f-prot
and set "Virus Scanners = f-protd-6" in your MailScanner.conf.
This is very much faster than the f-prot-6 command-line scanner.
3 Improved the list of ignored web-bug filenames.
3 New update_bad_phishing_sites script to use major new fireproof delivery
system. Many thanks to Matt Hampton for all his time and support with this.
3 Updated to Catalan translation.
3 Updated support for Vexira "vascan" virus scanner.
3 Changed location of Web-Bug Replacement image. upgrade_MailScanner_conf will
put in the new URL. This will give significantly better response to your
users.
3 Added new option "Log SpamAssassin Rule Actions" so that you can see exactly
what actions fire on what messages from the "SpamAssassin Rule Actions"
setting.
3 Added new option to the filename.rules.conf and filetype.rules.conf files.
Instead of "allow", "deny" or "deny+delete", you can now specify a space or
comma-separated list of email addresses. If the filename or filetype rule
is matched, the message is sent to these new addresses instead of the ones
given in the original email address.
3 Updated support for latest versions of Esets virus scanner from Nod32.
4 Added Net-DNS and Digest-SHA1 to the main MailScanner distributions so that
they are installed appropriately ready for when you install Razor. This way
they are installed as RPMs and not just plain Perl modules, as the RPM of
Razor requires them to have been installed as RPMs.
4 New configuration option "Automatic Syntax Check" added, default is "yes",
which causes a quick syntax check of the MailScanner.conf file and the other
configuration files, printing out errors on the console, instead of just
logging them to your system's mail log as it did before.
This will hopefully make it easier for novices to get going successfully.
5 SpamAssassin Cache will no longer cache "timed out" responses.
5 Upgraded to perl-Digest-SHA1 version 2.11.
6 Added SpamAssassin MCP patch for 3.2.4.
7 Changed default supplied High-Scoring Spam Actions to "store". That way
users don't have to work out how to change it, to reduce their spam a lot.

* Fixes *
2 Improved MakeNameSafe() to fix problems caused by f-protd-6 working with
filenames containing spaces (which it cannot handle!).
2-2 Fixed error in --lint support for F-Protd-6.
2-3 Typo, missed out a "$" :-(
3 Fixed important bug in f-protd handling code.
4 Fixes to Ruleset-From-Function.pm Custom Function code.
5 Fixed various issues with new automatic syntax check (--lintlite) code.
6 Fixed IPBlock problem with MailScanner --lintlite.
6 Fixed Postfix milter problem (thanks Glenn!).
7 Fixed problem with Inline images in HTML signatures. Now works with nested
multiple replies.
8 Fixed bug where original unsafe filename wasn't used correctly when auto-
replacing attachments with zipped copies to save space in mail stores.
Thanks to Armand Leroux at Capgemini for finding this one.

---

Downloads (~8,0 Mb)_http://www.mailscanne....68.8-1.tar.gz

1/5/2008 New in Version 4.69.8-1
=============
* New Features and Improvements *
1 Added command-line option "--id=" which will force it to scan
just the message described by . Only works when used with
"--debug".
1 Commented out definition of ORDB-RBL to force a syntax error in setups which
are still mistakenly using it (and not getting any mail as a result!).
1 Added comand-line option "--inqueuedir=" which can take
a) a directory name, or
a directory name glob (or wildcard), or
c) a text file listing any combination of (a) and ( above.
This specifies where to look for incoming messages. This is very useful when
debugging, as test messages can be put in their own queue directory, and the
main MailScanner running will not touch them, only a MailScanner run with
this command-line option will see them.
1 Can now extract embedded files from within Microsoft Office documents and
subject them to all the file tests like any other attachments.
1 To allow for executables embedded in zipped Office documents, default value
for "Maximum Archive Depth" has been increased to 3. Remember that using
upgrade_MailScanner_conf will *not* over-ride your current settings, so you
will have to change this manually to use the new value.
3 Added new keywords available in Spam Actions, the SpamAssassin Rule Actions
and Archive Mail locations. You can now specify _DATE_, _FROMUSER_,
_FROMDOMAIN_, _TOUSER_ and _TODOMAIN_ keywords in any of those and they
will be replaced with the user and domain halves of the relevant addresses
of the original message.
If, for example, you specify a "forward" address
"[email protected]", then a new recipient
will be added to the message for *each* of the original recipients. So
a message with 5 original recipients will have 5 new ones added to it.
3 Added new configuration setting "Missing Mail Archive Is =" which can take
the values "file" or "directory". This allows you archive to mbox files whose
name is based on the addresses of the original recipients.
4 Using the "store" Spam Action, you can now specify an arbitrary directory
path after the '-', so
"store-/var/spool/MailScanner/quarantine/spam/_TOUSER_._TODOMAIN_"
will store the message in a location determined by the recipient addresses.
Any of the _DATE_, _FROMUSER_, _FROMDOMAIN_, _TOUSER_ and _TODOMAIN_
keywords can be used.
4 Changed "Monitors for ClamAV Updates" for ClamAV version 0.93.
5 If the image signature tag includes alt="MailScanner Signature" then
it notices the sig file is present and so doesn't add it again.
The "alt" attribute is matched by the word "MailScanner" followed by anything
followed by the word "Signature" in any combination of upper- and lower-case
so you can adapt this text quite a lot. See note for "6" below.
6 Added new configuration setting "IP Protocol Version Header" which will tell
you the IP version number used in the last hop to this server. It produces
either "IPv4" or "IPv6" in the header. To stop the header appearing, just
set it to be blank. Added at special request by my boss :-)
6 Added new configuration setting "Allow Multiple HTML Signatures". If the
message has been signed with an HTML signature containing an tag,
whose "alt" attribute contains "MailScanner" and "Signature" and
"%org-name%", then it will not be signed again if this option is set to "no".
Once a message (with an image in the signature) has been replied to a few
times, it starts getting very large and ugly. This option keeps the message
size down and makes it look better. This is set to "no" by default as
messages look better this way.
7 Debian/Ubuntu have changed the default %org-name% value to "unconfigured-
debian-site" so I have to check for that as well in the 'Have I Been
Configured" code at startup :-(

* Fixes *
1 "IPBlock" Custom Function will start up properly without MailScanner.conf
location on the command-line.
2 Fixed problem with file MIME type checks were being incorrectly applied.
2 Added OLE::Storage_Lite to the list output by "MailScanner -v".
4 Forced "Debug SpamAssassin" to no unless "Debug" is set to yes.
7 Fixed problem with "--debug-sa" and MailScanner freezing using 100% CPU.
8 Fixed problem with modules not reporting properly with "MailScanner -v".
8 Fixed problem where "MailScanner --lint" would sometimes report false errors.

---

Downloads (~8,0 Mb)_http://www.mailscanne....69.8-1.tar.gz

* New Features and Improvements *
1 Improvement to OLE document unpacking code, more likely to extract embedded
files correctly.
1 Added new setting "Dont Sign HTML If Headers Exist" to provide finer control
over placement of HTML signatures. If any of the named headers exist in
the message, the message is deemed to be a "reply", and so the HTML
signature is not attached. By default this functionality is switched off
by not specifying any header names.
2 Improvement to Filename and Filetype checks to catch mistakenly starting a
regular expression with a "*" on its own, as in "*.pdf" or just "*".
2 Improved message reporting when Sophos finds password-protected zip archives.
2 Now supports Mail::ClamAV 0.22 for ClamAV 0.93. You will need to upgrade your
ClamAV+SpamAssassin installation, using the download package I provide.
3 Improved update_bad_phishing_sites to support proxy_* environment variables.
Thanks to [email protected] for this.
3 Improved upgrade_MailScanner_conf for ClamAV 0.93 and Mail::ClaAV 0.22.
3 Removed URIBL additions from spam.assassin.prefs.conf. They are in
SpamAssassin by default now.
3 Improvements to handling of Watermarks to resolve various problems with them.
3 Upgraded to ClamAV 0.93.1 in ClamAV+SpamAssassin easy-to-install package.
4 Added "-w" to suggested "diff" command in upgrade_MailScanner_conf. Thanks
to Anthony Cartmell for this idea.
6 Changed Watermarking, so it only checks if there was a SMTP client IP address
as we don't want to block messages we generated on the MailScanner server.
6 Added "ID Header" setting so that you can choose whether or not you want
the header showing the MailScanner message id value. If you don't want the
header then set this to be blank.
6 Minor improvement to link detection in the phishing net.

* Fixes *
2 Silly mistake fixed in "Dont Sign HTML If Headers Exist" feature.
2 Fixed output text error in upgrade_MailScanner_conf.
3 Bugfixes to Watermark handling and logging.
4 More fixes to Watermark handling.
5 More fixes to Watermark handling, and a minor header change.
6 Made check for Sophos Allowed Error Messages case-insensitive.
7 Fix for missing images in HTML messages with "Allow WebBugs = yes" set.

---

Downloads (~8,0 Mb)_http://www.mailscanne....70.7-1.tar.gz

1/9/2008 New in Version 4.71.10-1
==============
* New Features and Improvements *
1 Upgraded from File::Temp 0.19 to File::Temp 0.20 to resolve installation
problem reported with Fedora Core 8 systems.
2 New Feature: We can now extract the plain text of Microsoft Word (up to 2004)
documents in the *.doc format, and add it as new attachments to a message.
This is done using the "antiword" program available from

http://www.winfield.demon.nl/. There are 3 new configuration settings for
this feature:
"Add Text Of Doc" - This switches the feature on and off. Off by default.
"Antiword" - Full command to run the antiword binary. Adding "-f" to it
makes it highlight emphasized text in the output, which I find helps.
"Antiword Timeout" - The greatest length of time antiword is allowed to run.
3 Improvement to phishing net, now correctly ignores ':80' in http URLs.
3 Implemented support for Esets version 3.
4 Implemented support for F-Secure 7.01.
5 Added protection against attacks on the HTML text parser (Perl module
HTML::Parser) which is used to analyse HTML messages for dangerous tags.
There is a message in circulation that breaks this, causing Perl to trigger
a "Segmentation Fault". This protection is necessary, but may have an impact
on the performance of MailScanner. Until the Perl module is fixed, however,
this is very necessary protection for your email systems.
7 Added new option "Read IP Address From Received Header" which you can set to
yes if you are running fetchmail and injecting mail from fetchmail into your
MTA using SMTP. You need to set the "--invisible" option to fetchmail as well
to stop it adding its own "Received:" header. See the "Advanced" section of
MailScanner.conf for more info on this.
8 Added new rules to filename.rules.conf to allow for days of the week and
months in filenames like my_document.july.doc so they aren't caught by the
double filename extension trap.
8 Improved error notification if your permissions on /tmp are all wrong. It
now tells you exactly what to type to fix them.
8 Improved VBA32 output parser to handle slightly different new output format.
8 Improved 'partial message' handling to only remove the partial-message
section of the message, and not the whole thing. This is particularly
relevant to DSNs from bigfoot.com
10 Improved F-Secure scanning within executables.

* Fixes *
3 Improvement to "Sign Clean Messages" so the signature now appears where it
should, above any tag as well as above any tag.
6 Fix to Exim support to allow for arbitrarily-named Exim ACLs. Fix kindly
provided by [email protected].
6 Fix for missing watermarks, courtesy of Lasantha Marian.
7 Fix for case when Rebuild Bayes Every = 0 and Bayes is still rebuilt.
7 TNEF attachments will be added with correct filenames when TNEF Expander =
internal. It was erroneously adding them with their "safe" filenames.
9 Removed a load of extra debug output code.
9 "Partial messages" are now quarantined correctly.
10 Removed duplicate warning output when "Virus Scanners = none".

---

Downloads (~8,0 Mb)_http://www.mailscanne...71.10-1.tar.gz

* New Features and Improvements *
1 Added support for ClamAV 0.94. Note that this has necessitated removal of
complete support for earlier versions of ClamAV as the command-line settings
are incompatible. So only use this version if you have upgraded to the latest
ClamAV 0.94.
2 The "Found to be clean" header will not be added to the message at all if
the relevant configuration setting is blank in MailScanner.conf.
2 Filename and filetype checks are now done before virus scanning. This means
that you can use the "deny+delete" type of filename or filetype rule to
selectively delete files that will choke your buggy virus scanner.
4 "install.sh" now logs all output to "install.log".
4 The RPM and SuSE versions of "install.sh" now have a "reinstall" command-
line option which will make it attempt to remove the Perl RPMs before it
installs them, in case you have changed your Perl version enough that the
previous Perl modules were not being found by your new setup. Very handy
for Fedora upgraders, among others.
4 Improvements to the "reinstall" command-line switch so it removes all the
old versions first, before it starts installing anything new.
4 Updated MIME-tools to version 5.427.
4 Minor improvement to phishing net.
4 Added check to --lint for sufficiently correct /tmp permissions.
5 Remove dsbl.org blacklist from spam.lists.conf.
5 Added more comments to the "Remove These Headers" documentation. The
suggested list of headers to remove is now all of these:
Disposition-Notification-To
Return-Receipt-To
X-Confirm-Reading-To
Disposition-Notification-To
Receipt-Requested-To
Confirm-Reading-To
MDRcpt-To
MDSend-Notifications-To
Smtp-Rcpt-To
Return-Receipt-To
Read-Receipt-To
X-Confirm-Reading-To
X-Acknowledge-To
Delivery-Receipt-To
X-PMrqc
Errors-To
X-IMAPBase
X-IMAP
X-UID
Status
X-Status
X-UIDL
X-Keywords
X-Mozilla-Status
X-Mozilla-Status2

* Fixes *
1 Changed logging of clamd so that it reports the virus scanner name correctly.
2 Removed debug code from OLE unpacking code.
3 Fixed log handling bug in filename rules matching code, thanks to Derek Chee.
4 Fixed bug where whole message body was deleted if a file nested within 2
zip files failed filename tests.
4 Fixed reporting bug in 'service MailScanner status' where it would produce
an error instead of saying the incoming sendmail process was working fine.
4 Fixed a parsing bug in the "Avast" scanner support.
4 Minor change to error message when /tmp has wrong permissions.

---

Downloads (~8,0 Mb)_http://www.mailscanne....72.5-1.tar.gz

* New Features and Improvements *
1 Improved install.sh for RPM systems to install correct arch of tnef RPM.
1 Upgraded to tnef version 1.4.4.
2 Scanner name will always be logged even if not being reported in text to user.

* Fixes *
2 Resolved reporting bug with number of viruses found when multiple scanners in use.
2 Security issue in "trend-autoupdate" resolved.
3 Problem caused by zip files containing identically-named zip files fixed.
4 Fixed bug in RPM installer when no TNEF was installed. Didn't actually cause any problems, just generated a noisy error message.

---

Downloads (~4,3 Mb)_http://www.mailscanne....73.4-1.tar.gz

12/1/2009 New in Version 4.74.16-1
===============
* New Features and Improvements *
1 Patch added to ClamAV & SpamAssassin easy-to-install package to make
Mail::ClamAV Perl module handle ClamAV 0.94 correctly.
Thanks to Steve Barber for telling me about this fix.
7 Upgraded to tnef 1.4.5.
9 The Spam Actions and its pals may now contain the "header" action with the
special keyword "_TO_" anywhere in the header value. This will be replaced
by a comma-separated list of the original recipients of the message.
I wrote this for when I divert a message to the postmaster when it's detected
as spam, for example. Then you can put
Spam Actions = store forward [email protected] header "X-ECS-Recips-were: Sent to _TO_"
I don't always want to include the list of recipients in the headers, as
others object to their privacy being violated by everyone receiving the full
list of recipients, so I can't use the "Add Envelope To Header". I *only*
want to add this information to spam messages, so I know to whom they were
originally addressed.
11 Another check to ensure it doesn't chmod /tmp on misconfigured systems.
14 Added support for Fedora 10.
16 Added a bit more logging of message non-delivery.
16 Slight improvement to output of list of virus scanners with --lint.

* Fixes *
2 Major work on removing symlink attack vulnerabilities affecting -autoupdate
lock files.
Note: This vulnerability only affected systems where normal interactive users
could log in to the system, or create arbitrary symlinks in your filesystem.
So the ISP-style setups were never vulnerable, as they didn't allow normal
users to login or allow people to arbitrarily create symlinks in the
filesystem.
2 Removed symlink attack vulnerabilities in SpamAssassin and tnef handlers.
6-2 Re-release to fix filesize problems.
7-2 Added missing "use" statement to WorkArea.pm.
7-3 Added missing tnef to Other Unix tarball distribution.
Linux distributions unchanged.
8 Minor fix in handling of complicated "SpamAssassin Rule Actions".
10 Fixes for Locks creation bugs from Jeff Earickson. Non-RPM distribution
should work rather better now.
12 Tiny (but important) fix to mcafee-autoupdate so that it will work properly.
13 Last few symlink attack vulnerabilities found and squashed.
14 Added the Bayes-rebuild lock files to mailscanner_create_locks.
15 Fixed locking problems with Bayes-rebuild lock files.
15-2 Fixed problem with "rewind()" errors appearing in SA.pm.
16 Fixed bug in update_virus_scanners where trailing spaces or comments on
the "Run As User" or "Run As Group" settings in MailScanner.conf would
cause the Locks files to be owned by root.
16 Fixed similar bugs in /etc/sysconfig/MailScanner in RPM distributions.

---

Downloads (~8,1 Mb)_http://www.mailscanne...74.16-1.tar.gz

* New Features and Improvements *
1 Added more spam logging to simply find delivery and non-delivery addresses.
1 Improved error messages when using Custom Functions that won't compile.
1 Added new configuration option "Unpack Microsoft Documents" to control the
unpacking of OLE document files, as there have been rare cases of the
third-party extraction code hanging when faced with particular files.
If you rely on ClamAV for all your virus-checking, then you can safely
switch this off as ClamAV has its own OLE unpacking code. Do remember,
however, that this will disable all filename and filetype checking of
embedded files.
It is on by default.
1 Added new option "delete" to setting "Treat Invalid Watermarks With No
Sender as Spam =" so messages with invalid watermarks can just be deleted.
2 Added "restartms" command-line option to the init.d script for use in the
anti-spear-phishing package I wrote.
2 Implemented crash-protection, by limiting the number of attempts made at
processing any given message. There are 2 new configuration settings:
"Maximum Processing Attempts" which is set to 6 by default, and
"Processing Attempts Database" which is set to /var/spool/MailScanner/
incoming/Processing.db by default.
To disable this feature, just set "Maximum Processing Attempts = 0".
To clean out the database, just stop MailScanner and delete the database
file.
Many thanks to David Lee at Durham University, UK for the ideas behind
this new system.
3 New script "processing_messages_alert" which will be installed in /usr/sbin
on Linux systems and in /opt/MailScanner/bin on other systems. Also, in
Linux, this is enabled as an hourly cron job. It executes the command
"MailScanner --processing" which prints the contents of the "messages being
processed" database, excluding any messages which are being processed for
the first time. If there is nothing to print, it outputs nothing and no
mail message is generated by the cron job. It sends the mail message from
the "Notices From" address to the "Notices To" address. To edit the text of
the message, just edit the "processing_messages_alert" script, it is very
simple.
4 Messages killed by the crash protection will now generatee warnings back to
the sender, and to the local postmaster, just like other forms of errors
in messages. They will, however, remain in the database so you can see them.
5 Messages that caused MailScanner to die will not be re-tried for 4 +- 2
minutes. This stops the system spinning generating high system load while
achieving nothing, and makes it more likely that we can defend against some
DoS scenarios. This also means that we do not have to worry about always
building the same batch from the same messages, which could cause some safe
messages to be "thrown out with the bathwater" along with the single message
which *actually* killed MailScanner.
5 Messages are moved from the "current" table to an "archive" table which is
printed separately when "MailScanner --processing" is run.
6 The "MailScanner --processing" option can now be given as, for example,
"MailScanner --processing=0" which will give a minimum value for which you
want to print the records from the "processing messages" database table.
The default value is 1.
8 I have added a new configuration option "Place New Headers At Top Of
Message". This is set to "no" by default, as I think the result looks a
bit ugly. However, some people are fussy about always adding headers at the
very top of email messages, rather than at the bottom of them, so they can
see the order in which they were added.
8-3 Added support for latest versions of Bitdefender.
9 Added support for regular expressions in "Remove These Headers". Note that
the expression is matched against the whole header line, not just the name
of the header. Note that the expressions must not contain any spaces, so
use '\s' instead of ' '. The match is done case-insensitive in all cases.

* Fixes *
1 Fix to multiple-milter support in Postfix in rare case.
7 2 minor bugfixes in crash-protection system. Wasn't handling messages
correctly when their spam action was "delete".
7 Fixed problem when messages are left in processing-messages database if a
batch is interrupted by MailScanner being shut down or restarted.
8 Fixed reporting bug in processing-database record deletion.
8 Fixed problem with some Perl 5.10.0 distributions with trackback handling
in Sendmail and Postfix support.
8-2 Added NewHeadersAtTop to ConfigDefs.pl.
8-4 "Max Spam Check Size" can now be a ruleset. ConfigDefs.pl corrected.
9-2 Fixed bug in new handling of regexps in "Remove These Headers" in Postfix.
10 Correct mcafee-autoupdate so it wipes old dat files.
10 Worked around problem cause when Razor is set to syslog, caused MailScanner
to log with the wrong "facility" (see syslog(3)).

---

Downloads (~8,1 Mb)_http://www.mailscanne...75.11-1.tar.gz

2/5/2009 New in Version 4.76.24-2
===============
* New Features and Improvements *
1 Added the ability to have totally different filename and filetype checks
for files which are attachments and files which are members of attached
archives. You even get to define what you consider to be an archive and
what is not.
New Configuration options in MailScanner.conf are
Archives Are =
Archives: Allow Filenames =
Archives: Deny Filenames =
Archives: Filename Rules =
Archives: Allow Filetypes =
Archives: Allow File MIME Types =
Archives: Deny Filetypes =
Archives: Deny File MIME Types =
Archives: Filetype Rules =
In the shipped MailScanner.conf, the checks applied to files within
archives are the same as those applied to normal attachments that are
not within an archive. See the relevant settings in MailScanner.conf
for more information.
4 RPM builds changed so that no RPMs are "forced" into being installed on
RedHat 5 or CentOS 5 systems.
5 RPM builds changed so that no RPMs are "forced" into being installed at all.
5 RPM builds changed so that any previously installed RPM will not be
rebuilt, even if the perl version check shows that it is not being used.
This will dramatically speed up the upgrade process in future,
especially if you use "./install.sh fast" to upgrade.
5 Changed @INC which is where Perl looks for its Perl modules. It was
previously mostly left alone so that RedHat could override some versions
of modules that you thought you had upgraded. The new @INC path inserts
the "site_perl" and "vendor_perl" directories before the core directories.
This may result in your MailScanner behaving differently from before as
it will actually be using all your upgraded modules, and not sticking
with ones supplied by RedHat (at which point it ignore your upgrades).
This should not cause any problems with MailScanner.
7 Rebuilt i386 version of "tnef" on RHEL4 to be compatible with more systems.
8 Drastically improved getPERLLIB added in 4.76.5. Perl does funny things
with $PERL5LIB when calculating @INC to find Perl modules.
8 Added Digest::HMAC as RedHat Enterprise 4 needs it for Net::DNS.
9 Upgraded Perl module DBD::SQLite.
11 The "Archives: Filename Rules" and "Archives: Filetype Rules" now
point to copies of the normal filename and filetype.rules.conf files,
rather than pointing to the same file. This will make it easier for
new users to customise the rules for files in archives.
12 Improved RPM install.sh installation script so that it detects an upgrade
from before the big RPM rebuild in 4.76.11 and forces a "reinstall" of
all the Perl modules, which will fix problems with later upgrading Perl.
13 Improved Postfix MailScanner message id so that it relates much better
with the "messages being processed" database. It is now based on the
"Fletcher" checksum of the data at the start of the file. Thanks to JD
Marsters ([email protected]) for this one!
17 If you use "Sign Clean Messages", then the signature will be placed in
your email message wherever you put the marker "_SIGNATURE_", and it
will be placed at the end by default if that marker is not found.
22 Both the "Phishing Safe Sites File" and the "Phishing Bad Sites File"
settings can now take a space-separated list of filenames, to make local
management simpler. Note that your filenames must not have spaces in them!
22 Speeded up SQL processing-messages database code by pre-preparing all SQL
statements. I am now tempted to leave this feature enabled by default for
safety. We can always add a note to the performance tips on the wiki that
users struggling under high load might want to switch this feature off.
23 Changed RPM installation order to fit better with CentOS 5.2->5.3 systems.

* Fixes *
2 Added "Unpack Microsoft Documents" back into the list of recognised
settings in MailScanner.conf.
3 Fixed "Add Text Of Doc" for Apple Mail's utterly broken MIME structure.
6 Fixed problems with RHEL5 installation created by 4.76.5.
7 Fixed problems with RHEL4 installation created by 4.76.5.
10 Fixed problems with Fedora Core 10 installation created by 4.76.5.
10-2 Fixed missing Locks dir.
14 Possibly fixed problem with incomplete Postfix messages getting into the
'processed messages' table.
15 Neatened up message rejection code to help solve processing-messages
database problem.
16 Fixed permissions and ownership problems with data extracted from TNEF
winmail.dat attachments.
16 Fixed slight problem in installer on new systems, so it does not complain
about perl-TimeDate already being installed.
16 Fixed problem with Postfix leaving messages in the processing-messages db.
Many thanks to Kai Schaetzl and Mark Sapiro for spotting the common
features of the message ids being left behind.
18 Fixed Postfix entropy bug.
19 Changed handling of "Sign Clean Messages" so that if the signing process
fails, we don't worry about it too much, and we certainly don't create a
new message section just containing a signature and nothing else.
20 Alternate solution to Postfix procesing database bug, without adding 'P'.
21 Better solution to Postfix processing database bug, adding 'A' to shorter
entropy value, so no change to final message id.
21 Moved Net::CIDR much lower down in the installation order, to avoid
problems with CentOS 5.2-->5.3 upgraded systems.
22 Made sure it works with the processing-messages database switched on.
23 Fixed problem with HTML sig being re-added at end of message.
24 Removed type identifier from filenames listed in sender warnings.
24-2 Don't uninstall ExtUtils-MakeMaker in "./install.sh --reinstall".

---

Downloads (~8,7 Mb)_http://www.mailscanne...76.24-2.tar.gz