ESET MAIL SECURITY 4 Installation Manual Download | Manualshive

Page: 37 / 48

background image

37

The

Background scanning

option allows scanning of all messages in the system background. Microsoft Exchange

Server decides whether a background scan will run or not, based on various factors, such as the current system load,
the number of active users, etc. Microsoft Exchange Server keeps a record of scanned messages and the virus
signature database version used. If you are opening a message that has not been scanned by the most current virus
signature database, Microsoft Exchange Server sends the message to ESET Mail Security to be scanned before
opening the message in your e-mail client. You can choose to

Scan only messages with attachment

and filter based

on time received.
Since background scanning can affect system load (scanning is performed after each virus signature database update),
we recommend using scheduled scanning outside working hours. Scheduled background scanning can be configured
via a special task in the Scheduler/Planner. When you schedule a Background scanning task you can set the launch
time, the number of repetitions and other parameters available in the Scheduler/Planner. After the task has been
scheduled, it will appear in the list of scheduled tasks and as with the other tasks, you can modify its parameters,
delete it or temporarily deactivate the task.

Enabling the

Scan RTF email bodies

option activates scanning of RTF message bodies. RTF message bodies may

contain macro viruses.

NOTE:

Plain text email bodies are not scanned by VSAPI.

4.2.4.4.1 Actions

In this section you can specify the actions to take if a message and/or attachment is evaluated as infected.

The

Actions to take if cleaning not possible

field allows you to block infected content or delete the message. This

action will be applied only if the automatic cleaning (defined in

ThreatSense engine parameter setup > Cleaning

) did

not clean the message.

The

Message body deletion method

option offers the choice to either delete the message body or rewrite the

message body with action information.

Attachment deletion method

lets you decide to delete the message, truncate file attachment to zero size or replace

the infected file with action information.

If the

Use VSAPI Quarantine

option is enabled, infected messages will be stored in the email server quarantine. Please

note that this is the server's managed quarantine (not the client's quarantine or the quarantine mailbox). Infected
messages stored in mail server quarantine are inaccessible until they are cleaned with the latest virus signature
database.

By activating

Rescan

, you can scan messages and files that have already been scanned again.

«
...
35
36
37
38
39
...
»

Summary of Contents for MAIL SECURITY 4

Page 1: ...ESET Mail Security 4 for Microsoft Exchange Server Version 4 2 Installation Manual and User Guide Microsoft Windows Server 2000 2003 2008...

Page 2: ...sion 2 3 11 Installation in a clustered environment 2 4 13 License 2 5 14 Post Installation Configuration 2 6 16 3 Update 17 Proxy server setup 3 1 19 4 ESET Mail Security Microsoft Exchange Server pr...

Page 3: ...x86 and x64 Microsoft Windows Server 2008 x86 and x64 Microsoft Windows Server 2008 R2 Microsoft Windows Small Business Server 2003 Microsoft Windows Small Business Server 2003 R2 Microsoft Windows S...

Page 4: ...ntispam protection module is the Greylisting technique disabled by default The technique relies on the RFC 821 specification which states that since SMTP is considered an unreliable transport every me...

Page 5: ...ith ease of use and high system performance Typical installation is the default option and is recommended if you do not have the particular requirements for specific settings After selecting the insta...

Page 6: ...e By default the Enable ThreatSense Net Early Warning System option is selected which will activate this feature Click Advanced setup to modify detailed settings for the submission of suspicious files...

Page 7: ...button 2 2 Custom Installation Custom installation is designed for users who have experience with fine tuning programs and who wish to modify advanced settings during installation After selecting the...

Page 8: ...same as in Typical installation see Typical installation In the next step License Manager add the license file delivered via email after product purchase After entering your username and password clic...

Page 9: ...roxy server select the I do not use a proxy server option To configure your proxy server settings select I use a proxy server and click Next Enter the IP address or URL of your proxy server in the Add...

Page 10: ...on to display a confirmation window before downloading program components To download program component upgrades automatically select the Always update program components option NOTE After a program c...

Page 11: ...single server This type of environment provides high accessibility and reliability of available services If one of the nodes in the cluster fails or becomes inaccessible its functioning is automatica...

Page 12: ...llation process it is necessary to fulfill certain conditions on the target computers as well as on the ERA Server For further details refer to the ESET Remote Administrator User Guide Configuration F...

Page 13: ...are protected and which ones are excluded from protection Resource mailboxes i e a conference room mailbox will be tallied in the mailbox count Email aliases are not tallied in the mailbox count In a...

Page 14: ...kely it is to delete legitimate email Advantages of this method include very low consumption of system resources and less administration The drawback to this method is that if a legitimate email is de...

Page 15: ...into account the configurations of the Approved IP addresses list the Ignored IP addresses list the Safe Senders and Allow IP lists on the Exchange server and the AntispamBypass settings for the recip...

Page 16: ...name and password received at the time of purchase should be entered If the username and password were entered during installation of ESET Mail Security you will not be prompted for them at this point...

Page 17: ...from the Advanced Setup tree Select the Use proxy server option and then fill in the Proxy server IP address and Port fields If needed select the Proxy server requires authentication option and then e...

Page 18: ...18 profiles in Advanced Setup by clicking Update from the Advanced Setup tree...

Page 19: ...column Number next to each rule name displays the number of times the rule was successfully applied The rules are checked against a message when it is processed by transport agent TA or VSAPI When bot...

Page 20: ...ent size condition it is sufficient to fill in only part of a phrase as long as the Match whole words option is not selected Values are not case sensitive unless the Match case option is selected If y...

Page 21: ...ter Message quarantine Submit file for analysis sends suspicious attachments to ESET s lab for analysis Send event notification sends a notification to the administrator based on settings in Tools Ale...

Page 22: ...out being stored in the log cache By default ESET Mail Security components running in Microsoft Exchange Server store log messages in their internal cache and send them to the application log at perio...

Page 23: ...p down menu at the bottom Mails are then delivered to quarantine by Exchange s internal mechanism using its own settings In the Message quarantine by recipient field you can define message quarantine...

Page 24: ...orary folder NOTE In order to reduce the potential I O and fragmentation impact we recommend placing the Temporary folder on a different hard drive than the one on which Microsoft Exchange Server is i...

Page 25: ...highly unlikely to be spam while a rating of 9 indicates that the message is very likely spam SCL values can be processed further by the Microsoft Exchange Server s Intelligent Message Filter or Cont...

Page 26: ...ng the Enable antivirus and antispyware mail server protection option Note that antivirus and antispyware protection is turned on automatically after every service computer restart 4 2 1 Actions In th...

Page 27: ...a notification tag to the email subject with the value defined in the Template added to the subject of infected messages text field by default virus VIRUSNAME The above mentioned modifications can au...

Page 28: ...plication Programming Interface VSAPI Microsoft Exchange Server provides a mechanism to make sure that every message component is scanned against the current virus signature database If a message comp...

Page 29: ...rus signature database Microsoft Exchange Server sends the message to ESET Mail Security to be scanned before opening the message in your e mail client Since background scanning can affect system load...

Page 30: ...nfected content or delete the message This action will be applied only if the automatic cleaning defined in ThreatSense engine parameter setup Cleaning did not clean the message The Deletion option al...

Page 31: ...and represents the period after which the client will retry accessing the file that had previously been inaccessible due to scanning 4 2 4 2 Microsoft Exchange Server 2000 VSAPI 2 0 This version of Mi...

Page 32: ...eters available in the Scheduler Planner After the task has been scheduled it will appear in the list of scheduled tasks and as with the other tasks you can modify its parameters delete it or temporar...

Page 33: ...time a thread waits for a message scan to complete If the scan is not finished within this time limit Microsoft Exchange Server will deny the client access to the email Scanning will not be interrupt...

Page 34: ...se update we recommend using scheduled scanning outside working hours Scheduled background scanning can be configured via a special task in the Scheduler Planner When you schedule a Background scannin...

Page 35: ...hment to zero size or replace the infected file with action information By activating Rescan you can scan the messages and files that have already been scanned again 4 2 4 3 2 Performance In this sect...

Page 36: ...E Performance is not improved significantly if there are more ThreatSense scanning engines than scanning threads 4 2 4 4 Microsoft Exchange Server 2007 2010 VSAPI 2 6 This version of Microsoft Exchang...

Page 37: ...the other tasks you can modify its parameters delete it or temporarily deactivate the task Enabling the Scan RTF email bodies option activates scanning of RTF message bodies RTF message bodies may con...

Page 38: ...For the best program performance we advise using an equal number of ThreatSense scan engines and scan threads TIp To determine the Number of scan threads the Microsoft Exchange Server provider recomme...

Page 39: ...mailbox or retain it If a threat is found you can choose to write a spam score to the scanned message and specify the value in Since botnets are responsible for sending the majority of infected messa...

Page 40: ...pam module The Recommended profile is comprised of the recommended settings striking a balance between security and impact on system performance The Most accurate profile is focused solely on mail ser...

Page 41: ...message scores 100 and no other checks are made In the Allowed domains tab you can specify domains used in the message body that should be approved In the Ignored domains tab you can specify domains u...

Page 42: ...ck is positive the message will be assigned an offset of 60 which increases its overall spam score Example 3 rbl_list bx9 dbl com 85 list dnb org 127 0 0 4 35 req gsender org 75 RBL check is performed...

Page 43: ...be decreased by 75 points negative value home_country_list List of countries that will be considered home Messages routed through a country not on this list will be evaluated using more strict rules h...

Page 44: ...a domain domain policy to determine whether a sender is authorized to send messages from that domain enable_all_spf This option is to determine whether domains not on the spf_list or Mailshell file ca...

Page 45: ...email subject By default the tag is SPAM although it can be a user defined string NOTE You can also use system variables when adding a template to the message subject 4 3 3 Transport Agent In this sec...

Page 46: ...g protection As a result spam messages may be delivered to clients or messages may not be delivered at all Time limit for the initial connection denial min when a message is delivered for the first ti...

Page 47: ...Where is the problem A The decision to scan all messages immediately or at the user s attempt to access a message depends on several factors including server load CPU time required to scan all message...

Page 48: ...es from senders on the Safe Senders list All messages from servers on the Whitelist list e g MS Exchange IPAllow list or the Allowed IP addresses Q Users download messages to their email clients via P...

Reviews:

No comments

Related manuals for MAIL SECURITY 4

AV Tutor MCFBV1-D

Brand: Califone Pages: 1

3C19250 - USB Ethernet Network Interface...

Brand: 3Com Pages: 16

FIREWORKS 2-USING FIREWORKS

Brand: MACROMEDIA Pages: 20

Brand: Qlogic Pages: 180

Brand: Brocade Communications Systems Pages: 47

Brand: Steinberg Pages: 1

Brand: RedMoon Music Pages: 74

Brand: Agilent Technologies Pages: 9

Conference Composer

Brand: Polycom Pages: 29

SimpleDrive SP-U25/120

Brand: SimpleTech Pages: 8

ASSET MANAGEMENT SUITE 7.0

Brand: Symantec Pages: 4

ANTIVIRUS 5.2 - FOR NETWORK ATTACHED STORAGE

Brand: Symantec Pages: 3

Altiris CMDB Solution 7.0

Brand: Symantec Pages: 64

XTRAWARE - V3.0

Brand: YASKAWA Pages: 263

Brand: Texas Instruments Pages: 37

Brand: GRASS VALLEY Pages: 216

Brand: FieldServer Pages: 43

SANsurfer FC HBA Manager

Brand: Qlogic Pages: 152

Brands by name

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Popular brands

Load more brands