I am not an expert on Anti-virus things and Domino, that would be Daniel Nashed.
But if HCL Domino has something new, I test it out and set it up on my server.
In this case, I had heard that ClamAV would now work with Domino as of 14.5.1.
Having used Clam for many years at the OS level, I wanted to play with this in Domino.
My server is Windows, not Linux, ClamAV Linux instructions are pretty common, Windows, not as much.
Boy was this the hardest "easy' thing to do ever.
To start, HCL provides no documentation.
There are only 3 references to ClamAV in the official docs:
https://help.hcl-software.com/domino/14.5.1/admin/wn_config_features_1451.html#wn_config_features_1451__section_fq1_wgc_23c
https://help.hcl-software.com/domino/14.5.1/admin/conf_configuringscanninginscscancfg.html?hl=clamav
https://help.hcl-software.com/domino/14.5.1/admin/conf_scanningattachmentsforviruses.html?hl=clamav
None of which tell you much about how to set up ClamAV or how to configure it for Domino integration.
I opened a ticket and eventually was directed to this post:
https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0129703
Which is in Japanese. Use Google Translate or Chrome built in translstion.
I see now, at my urging, HCL has released the same document in English.
https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0131220
Their perspective is that we should go to ClamAv to set it up and then magically know how to integrate it.
I asked why it wasn't in the actual documentation and got a runaround answer, given HCL announced the availability, not ClamAV.
The new technical document covers some of the set up required.
I am going to add what is missing, more for my benefit, and anyone else who will try this on their servers.
Step 1 is Download the ClamAV from the link in the document, https://www.clamav.net/downloads and install it. BUT this does not tell you how to set it up in Services.
For that, you perform this:
clamd.exe --installStep 2 is to copy the config file as described and perform the edits.
Step 3, however, did not work for me no matter how I tried to get the certificate. Even with HCL Support help, they eventually had to send me the certificate required.
Step 4: You have to get the updated virus definitions. NOTE: This is a once off effort. And Manual.
If you want it to be automatic, and you do, you need to do these steps.
freshclam.exe --installMake sure you open port 3310 with your local server firewall, and in my case, the outside ISP.
I changed the Subject Prefix Scanned field default text to something I would know came from my server, not a spammer.
Lastly, make sure you add Mailscan to your tasks line in your notes.ini also something not mentioned in the document that is kind of important, unless you like having your mail stuck in mail.box and spend 2 hours troubleshooting it one morning, like I just did.
I eventually figured out it was an AV issue when running SMTPDebugClient=1 and
Tell Router list run from the server console.
You see this:
Mbx NoteID ID State Size Pri Count ScheduledDate From
1 000008FE 0028261D Wait AV 8443 1 K Brooks/org
2 00000902 00283C39 Wait AV 13306 1 kbrooks@test.com
1 00000902 002864E3 Wait AV 8749 1 keith@gmail.com
2 00000906 00287C9A Wait AV 8640 1 keith@gmail.com
Oh, that makes sense after the server restarted late yesterday. Mailscan was not in tasks.
So, my time spent, is your time gained.
No comments:
Post a Comment