ESET Antivirus for Linux
It is recommended that all Mailborder Master and Child servers have two virus scanners if possible. ESET NOD32 Desktop Antivirus or ESET File Server Security Antivirus suites are a low cost addition. You may install the ESET NOD32 Desktop software and use the trial at no charge. Both ESET 5.x and 7.x for Linux are supported.
The ESET File Server Security Antivirus is the preferred add-on suite for use with Mailborder. The desktop solution will work, but requires a Linux GUI such as Gnome to install the software and exclusions must be added to the configuration.
*Note that if your server does not have a GUI such as Gnome installed, you cannot use the ESET NOD32 Desktop Antivirus as it requires a graphical installer.
ESET 7.x
Product: ESET File Server Security (7.x)
Configuration GUI default: https://hostname-here.tld:9443
Required Exclusions for Real-Time Protection
Left Menu > Setup > Detection Engine
Performance exclusions > Edit
Detection exclusions > Edit
Add these items:
/etc/mailborder/*
/srv/mailborder/*
/var/spool/mailborder/*
/usr/lib/mailborder/*
/var/lib/mailborder/*
/var/tmp/mailborder/*
Required: Disable Real-Time Protection
Note that real-time file system protection will interfere with the Mailborder services unless this service is disabled or Cleaning is disabled. Every email and attachment is scanned by the Mailborder software using virus scanners available on the server, so real-time protection is not required if this is a dedicated gateway. (It should be!)
Left Menu > Setup > Detection Engine > Real-time file system protection > Basic tab > Enable Real-time file system protection = off
Left Menu > Setup > Detection Engine > Real-time file system protection > Threatsense Parameters tab > Cleaning = no cleaning
How to Enable for use in Mailborder
To enable this virus scanner, edit the file /etc/mailborder/conf.d/engine.cf and add these lines:
x_enable_esets=yes
x_esets=/opt/eset/efs/sbin/cls/cls
Note that if your installation location is different, you will need to set the appropriate path for the x_esets value.
ESET 5.x
Product: ESET File Server Security (5.x)
*Note that if your server does not have a GUI such as Gnome installed, you cannot use the ESET NOD32 Desktop Antivirus as it requires a graphical installer.
Recommended Settings
Installation location: /opt/eset/esets/
Real-time file system protection: Off or add directory exclusions*
* Note that real-time file system protection is extremely resource intensive and will interfere with the Mailborder services unless certain directories are excluded. Every email and attachment is scanned by the Mailborder software using virus scanners available on the server, so real-time protection is not required if this is a dedicated gateway. (It should be!)
Required Exclusions for Real-Time Protection
/etc/mailborder/*
/srv/mailborder/*
/var/spool/mailborder/*
/usr/lib/mailborder/*
/var/lib/mailborder/*
/var/tmp/mailborder/*
How to Enable for use in Mailborder
To enable this virus scanner, edit the file /etc/mailborder/conf.d/engine.cf and add this line:
x_enable_esets=yes
The default install local is /opt/eset/esets/sbin/esets_scan. If you used a different install location, also add this line to the engine.cf file:
x_esets=/path/to/file/esets_scan