[Mimedefang] Group enabling List.

David F. Skoll dfs at roaringpenguin.com
Fri Dec 21 11:29:49 EST 2001

On Fri, 21 Dec 2001, Albert E. Whale wrote:

> I have recently been requested NOT to scan the Email of a specific user,
> as they have Norton Anti-Virus 2001!

Does the person who asked this have the authority to set e-mail
scanning policy?  If not, I would ignore the request.  If so, I would
try to reason with the requestor and explain the dangers of not
scanning mail on the server.  If that person insists, then you have a
very difficult job -- you are charged with responsibility for securing
e-mail without being given adequate powers to do so.  You may point
out some articles I have written:


> That being said, I want to develop a list of Users (or PDBs) that do not
> want to have their Email Scanned for Viruses.  If that is what they
> want, I'm inclined to let ALL Of the Viruses in.

This is hard to do, because let's say A wants his e-mail scanned and B
does not.  If a *single* message comes in for both A and B, you can either
scan for both or scan for neither.  If you want to split the message, you
have to write code similar to stream_by_domain which streams by recipient
instead.  This is CPU-intensive and a Bad Idea(tm) in general.

> I know that there was a discussion some time ago regarding the scanning
> of Mail for Domains, how (or where) would I include a Look up (in the
> multiplexed clients) for exclusion of various Users from Email Scanning?

See the code for stream_by_domain().  You have to write code which goes
through @Recipients, and if there is more than one recipient, resends
the message individually to each recipient, and then discards the original
message.  DO NOT do this UNLESS you are running Sendmail 8.12!!!



More information about the MIMEDefang mailing list