Quarantine for Linux Mail Security

Discussion in 'Other ESET Home Products' started by futsal_Ron, Dec 30, 2010.

Thread Status:
Not open for further replies.
  1. futsal_Ron

    futsal_Ron Registered Member

    Joined:
    Nov 28, 2010
    Posts:
    7
    Hi,

    Has anyone managed to quarantine an infected message on Linux mail servers?
    I am trying to quarantine the eicar file sent in an email but it seems that Mail Security is deleting the file away even if quarantine is enabled.
     
  2. TyeF

    TyeF Former Eset Moderator

    Joined:
    Feb 19, 2010
    Posts:
    78
    Quarantining/Cleaning only refers to infected code that can be quarantined/cleaned. ESET cannot clean or not clean a file like eicar, because after the malware is removed, there is no clean file that is left behind.

    If you require additional assistance, please contact ESET Customer Care.
     
  3. futsal_Ron

    futsal_Ron Registered Member

    Joined:
    Nov 28, 2010
    Posts:
    7
    Hi TyeF,

    Thanks for replying.
    I am more interested to know about quarantining than cleaning.
    I am able to quarantine eicar file using ESET Gateway Security but I do not see the reason why ESET Mail Security cannot do the same.
     

    Attached Files:

  4. Protege

    Protege Registered Member

    Joined:
    Dec 1, 2010
    Posts:
    4
    Location:
    Japan
    Hi futsal_Ron,

    I am having the same issue too when I am testing out the EICAR. I assume that there is an interface or mailbox to store the quarantine, however, I could not find the feature.

    Just wondering how my users enquire if I can release or restore the file if it is an infected file. Did you manage to test that out?

    I am currently facing the below issues too. Please advise:-

    1. I am using Zimbra but I have no way to integrate to my postfix.
    2. Why is the On-demand scan cannot be performed? Do you have any idea?

    Hi All,

    If you have any idea, please share. Thank you.
     
  5. dmaasland

    dmaasland Registered Member

    Joined:
    Nov 10, 2010
    Posts:
    468
    I've taken a quick look just now, have you tried using esets_quar? Here's the description from "man esets_quar"

     
  6. futsal_Ron

    futsal_Ron Registered Member

    Joined:
    Nov 28, 2010
    Posts:
    7
    Hi dmaasland,

    The description seems to refer to quarantine management(managing objects that have been quarantined) rather than esets agents taking action to quarantine objects.
    By the way, I am using web interface to do the configuration.
    I am puzzled as to why I am able to do quarantine in File Security but not Mail Security when I have configured the same settings on the respective agents.


    Hi Protege,

    I do notice that On-Demand Scan button for Mail Security is grayed out.
    It seems I am unable to do a On-Demand Scan as well. Does anyone knows how to enable the button?
     

    Attached Files:

    Last edited: Jan 9, 2011
Thread Status:
Not open for further replies.