Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- ################################################################################
- # esets.cfg
- #
- # Main ESET Security configuration file is a configuration file for all the
- # ESET's Security products running under Linux/BSD OS.
- #
- # The configuration file is composed from sections each containing a variety
- # of configuration options. The configuration section definition format is:
- #
- # [sname]
- #
- # where 'sname' is a header name of an appropriate section. The configuration
- # option definition format is:
- #
- # pname = pvalue
- #
- # where 'pname' is any valid parameter name and 'pvalue' is any value accepted
- # by an appropriate parameter. For more refer to esets.cfg(5) manual page.
- #
- # Any line starting with a semi-colon (;) or a hash (#) is assumed to be
- # comment and thus ignored. In this sample file a hash character is used for
- # commentary and a semi-colon character is used for commented configuration
- # options that may be enabled and modified (Note that the commented options
- # values represent defaults for an appropriate configuration options.).
- #
- ################################################################################
- [global]
- #
- # Main ESETS system control options.
- #
- # daemon_sock_path = "path"
- # Path to UNIX socket used to communicate with main daemon (esets_daemon).
- #daemon_sock_path = "/tmp/esets.sock"
- # num_thrd = value
- # Number of main daemon (esets_daemon) scanning threads.
- #num_thrd = 2
- # restricted_user = user
- # Run all executive daemons as this user (or don't change uid, if empty).
- #restricted_user = "esets"
- # av_clean_file_cache_size = value
- # Number of cached results.
- #av_clean_file_cache_size = 50000
- # scheduler_tasks = tasks
- # Scheduled tasks.
- # Refer to esets_daemon(8) manual page for details.
- #scheduler_tasks = "1;Log maintenance;;0;0 3 * * * *;@logs;3;Automatic startup file check;;0;login;@sscan;4;Automatic startup file check;;0;engine;@sscan;64;Regular automatic update;;;repeat 60;@update;66;Automatic update after user logon;disabled;;login 60;@update;"
- #
- # ESETS Logging options.
- #
- # log_format_summ = "format"
- # Format of summ log messages. Refer to esets_daemon(8) manual page for details.
- #log_format_summ = "vdb=%vdb%, agent=%agent%, name="%name%", virus="%virus%", action="%action%", info="%info%", avstatus="%avstatus%", hop="%hop%""
- # log_format_part = "format"
- # Format of part log messages. Refer to esets_daemon(8) manual page for details.
- #log_format_part = "vdb=%vdb%, agent=%agent%, name="%name%", virus="%virus%", action="%action%", info="%info%""
- # syslog_facility = "none/kern/user/mail/daemon/auth/syslog/lpr/news/uucp/cron/authpriv/ftp/local0/local1/local2/local3/local4/local5/local6/local7"
- # Defines syslog facility used for the logging (daemon by default).
- #syslog_facility = "daemon"
- # syslog_class = "error:warning:summ:summall:part:partall:info:debug"
- # Logging class. Refer to esets.cfg(5) manual page for details.
- #syslog_class = "error:warning:summall:part"
- #
- # ESETS Handle Object Policy options.
- #
- # action_av = "scan/accept/defer/discard/reject"
- # Defines action to be performed on all objects approaching AV control.
- #action_av = "scan"
- # av_clean_mode = "none/standard/strict/rigorous/delete"
- # Defines cleaning mode when scanning.
- #av_clean_mode = "standard"
- # action_av_infected = "accept/defer/discard/reject"
- # Defines action to be performed on infected objects.
- #action_av_infected = "reject"
- # action_av_notscanned = "accept/defer/discard/reject"
- # Defines action to be performed on AV not scanned objects, e.g. password
- # protected archives.
- #action_av_notscanned = "accept"
- # action_av_deleted = "accept/defer/discard/reject"
- # Defines action to be performed on AV deleted objects, e.g. objects
- # containing not relevant information after AV clean process.
- #action_av_deleted = "discard"
- # av_quarantine_enabled = yes/no
- # Enables quarantine of every infected object if cleaned.
- #av_quarantine_enabled = no
- # action_as = "scan/accept/defer/discard/reject"
- # Defines action to be performed on all emails approaching AS control.
- #action_as = "accept"
- # action_as_spam = "accept/defer/discard/reject"
- # Defines action to be performed on emails found as spam (mail agents only).
- action_as_spam = "reject"
- # action_as_notscanned = "accept/defer/discard/reject"
- # Defines action to be performed on AS not scanned emails.
- #action_as_notscanned = "accept"
- #
- # ESETS anti-virus scanner common options.
- #
- # av_scan_obj_files = yes/no
- # Enables/disables scanning of files.
- #av_scan_obj_files = yes
- # av_scan_obj_archives = yes/no
- # Enables/disables scanning of archives (.ZIP, .RAR, .ARJ, etc.).
- # Default value of this parameter is redefined in sections [pac],[dac].
- # Refer to libesets_pac.so(1), esets_dac(1) and esets.cfg(5) manual page for details.
- #av_scan_obj_archives = yes
- # av_scan_obj_mime = yes/no
- # Enables/disables scanning of MIME archives, i.e. e-mails in raw format.
- # Default value of this parameter is redefined in sections [pac],[dac].
- # Refer to libesets_pac.so(1), esets_dac(1) and esets.cfg(5) manual page for details.
- #av_scan_obj_mime = yes
- # av_scan_obj_mailbox = yes/no
- # Enables/disables scanning of various mailboxes.
- # Default value of this parameter is redefined in sections [pac],[dac].
- # Refer to libesets_pac.so(1), esets_dac(1) and esets.cfg(5) manual page for details.
- #av_scan_obj_mailbox = no
- # av_scan_obj_rtp = yes/no
- # Enables/disables scanning of runtimepackers.
- # Default value of this parameter is redefined in sections [pac],[dac].
- # Refer to libesets_pac.so(1), esets_dac(1) and esets.cfg(5) manual page for details.
- #av_scan_obj_rtp = yes
- # av_scan_obj_sfx = yes/no
- # Enables/disables scanning of self extracting archives.
- # Default value of this parameter is redefined in sections [pac],[dac].
- # Refer to libesets_pac.so(1), esets_dac(1) and esets.cfg(5) manual page for details.
- #av_scan_obj_sfx = yes
- # av_scan_app_adware = yes/no
- # Enables/disables scanning of adware, spyware, etc..
- #av_scan_app_adware = yes
- # av_scan_app_unsafe = yes/no
- # Enables/disables scanning of potentially dangerous applications.
- #av_scan_app_unsafe = no
- # av_scan_app_unwanted = yes/no
- # Enables/disables scanning of unwanted applications.
- #av_scan_app_unwanted = no
- # av_scan_pattern = yes/no
- # ESETS anti-virus scanner will use virus signatures while scanning.
- #av_scan_pattern = yes
- # av_scan_heur = yes/no
- # ESETS anti-virus scanner will use heuristics while scanning.
- #av_scan_heur = yes
- # av_scan_adv_heur = yes/no
- # ESETS anti-virus scanner will use advanced heuristics while scanning.
- # Default value of this parameter is redefined in sections [pac],[dac].
- # Refer to libesets_pac.so(1), esets_dac(1) and esets.cfg(5) manual page for details.
- #av_scan_adv_heur = yes
- # av_scan_ext = "ext1:ext2:ext3"
- # Defines list of only extensions of files to be scanned.
- # If not defined, all files are scanned regardless of extension.
- # If defined, the 'av_scan_ext_exclude' parameter is ignored.
- #av_scan_ext = ""
- # av_scan_ext_exclude = "ext1:ext2:ext3"
- # Defines list of only extensions of files to be excluded from scanning,
- # i.e. all files are scanned except these defined by the list.
- # If parameter 'av_scan_ext' defined, this parameter is ignored.
- #av_scan_ext_exclude = ""
- # av_exclude = "path1:idef1:path2:idef2:"
- # Define list of paths to be excluded from scanning, i.e. all files
- # are scanned except those defined by the list.
- # Refer to esets.cfg(5) manual page for details.
- #av_exclude = ""
- # av_scan_smart = yes/no
- # Enables/disables so called Smart Optimization of scanner, i.e. optimal
- # scanner settings to ensure the most efficient scanning level, while
- # simultanneously maintaining the highest scanning speeds.
- # Refer to esets.cfg(5) manual page for details.
- #av_scan_smart = yes
- # av_eml_subject_modification_mask = "clean:cleaned:deleted:infected:notscanned"
- # Defines AV-scanning states of e-mails whose subject will be modified
- # according to the setting of parameter 'av_eml_subject_template'.
- #av_eml_subject_modification_mask = ""
- # av_eml_subject_template = "template"
- # Defines template of subject prefix written into the subject of AV-scanned
- # e-mail under conditions of parameter 'av_eml_subject_modification_mask'.
- #av_eml_subject_template = "%avstatus%"
- # av_eml_header_modification_mask = "clean:cleaned:deleted:infected:notscanned"
- # Defines AV-scanning states of e-mails whose header will be modified
- # according to the setting of parameter 'av_eml_header_template'.
- #av_eml_header_modification_mask = ""
- # av_eml_header_template = "template"
- # Defines template of header field written into the header of AV-scanned
- # e-mail under conditions of parameter 'av_eml_header_modification_mask'.
- #av_eml_header_template = "%avstatus%"
- # av_eml_footnote_modification_mask = "clean:infected:notscanned"
- # Defines AV-scanning states of e-mails whose body will be modified
- # according to the setting of parameters:
- # 'av_eml_footnote_template_clean', 'av_eml_footnote_template_infected',
- # 'av_eml_footnote_template_notscanned' and 'av_eml_footnote_log_all'.
- #av_eml_footnote_modification_mask = "clean:infected:notscanned"
- # av_eml_footnote_template_clean = "template"
- # Defines template of footnote written into the body of AV-scanned
- # e-mail in case its status is 'clean'.
- #av_eml_footnote_template_clean = "<br>\r\n<br>\r\n__________ Information from ESET Mail Security, version of virus signature database %version% __________<br>\r\n<br>\r\nThe message was checked by ESET Mail Security.<br>\r\n<A HREF="http://www.eset.com">http://www.eset.com</A><br>\r\n\r\n"
- # av_eml_footnote_template_infected = "template"
- # Defines template of footnote written into the body of AV-scanned
- # e-mail in case its status is 'infected'.
- #av_eml_footnote_template_infected = "<br>\r\n<br>\r\n__________ ESET Mail Security warning, version of virus signature database %version% __________<br>\r\n<br>\r\nWarning, ESET Mail Security found the following threats in the message:<br>\r\n%log%<br>\r\n<br>\r\n<A HREF="http://www.eset.com">http://www.eset.com</A><br>\r\n\r\n"
- # av_eml_footnote_template_notscanned = "template"
- # Defines template of footnote written into the body of AV-scanned
- # e-mail in case its status is 'notscanned'.
- #av_eml_footnote_template_notscanned = "<br>\r\n<br>\r\n__________ ESET Mail Security warning, version of virus signature database %version% __________<br>\r\n<br>\r\nWarning, ESET Mail Security could not check this message:<br>\r\n%log%<br>\r\n<br>\r\n<A HREF="http://www.eset.com">http://www.eset.com</A><br>\r\n\r\n"
- # av_eml_footnote_log_all = yes/no
- # Footnote written into the e-mail will report also not infected files.
- #av_eml_footnote_log_all = no
- #
- # ESETS anti-virus scanner limits.
- #
- # av_scan_obj_max_size = size
- # Specifies the maximum size in bytes of a single object
- # scanned. Refer to esets.cfg(5) manual page for details.
- #av_scan_obj_max_size = 0
- # av_scan_archive_max_level = level
- # Specifies the maximum level an archive is descended during scan.
- # Default value of this parameter may be redefined in sections [pac],[dac].
- # Refer to libesets_pac.so(1), esets_dac(1) and esets.cfg(5) manual page for details.
- #av_scan_archive_max_level = 10
- # av_scan_archive_max_size = size
- # Specifies the maximum unpacked size in bytes of a single archive's level scanned.
- # Default value of this parameter may be redefined in sections [pac],[dac].
- # Refer to libesets_pac.so(1), esets_dac(1) and esets.cfg(5) manual page for details.
- #av_scan_archive_max_size = 0
- # av_scan_archive_timeout = timeout
- # Specifies the maximum scanning time of a single archive's level scan
- # in seconds. Refer to esets.cfg(5) manual page for details.
- #av_scan_archive_timeout = 0
- #
- # ESETS anti-virus ThreatSense.NET options.
- #
- # samples_enabled = yes/no
- # Enables samples submission system.
- #samples_enabled = no
- # samples_send_target = "target"
- # Target of samples submission system delivery service.
- #samples_send_target = "ras:eset"
- # samples_send_files = "event"
- # Event when samples shall be sent to ESET's Lab.
- # none - never, add - on add of sample to cache, update - on update.
- #samples_send_files = "update"
- # samples_send_stats = "event"
- # Event when statistics shall be sent to ESET's Lab.
- # none - never, add - on add of sample to cache, update - on update.
- #samples_send_stats = "update"
- #
- # ESETS anti-spam scanner common options.
- #
- # as_eml_subject_prefix = "prefix"
- # Defines subject prefix written into the subject of AS-scanned
- # e-mail in case it is spam.
- as_eml_subject_prefix = "[SPAM]"
- # as_profile = "default/faster/least_network/accurate"
- # Define anti-spam profile. The default configuration file corresponds to
- # optimal configuration recommended for typical server environment.
- #as_profile = "default"
- # as_approved_senders = "domain1.com,user@domain2.com,..."
- # List of senders addresses or senders domains whose mails never will be considered spam.
- #as_approved_senders = ""
- # as_approved_ip_list = "ip_address1,ip_address2"
- # List of IP addresses or ranges whose mails should be approved.
- # Ranges can be specified following ways:
- # IP (e.g. 1.2.3.4)
- # IP/netmask (e.g. 1.2.3.4/8)
- # StartingIP-EndingIP (e.g. 1.2.3.4-1.2.3.8)
- #as_approved_ip_list = ""
- # as_blocked_ip_list = "ip_address1,ip_address2"
- # List of IP addresses or ranges whose mails should be blocked.
- # Format is the same as format as_approved_ip_list.
- #as_blocked_ip_list = ""
- # as_ignored_ip_list = "ip_address1,ip_address2"
- # List of IP addresses or ranges whose mails should be blocked.
- # Format is the same as format as_approved_ip_list.
- #
- # The following ranges are always ignored: 10.0.0.0/8, 127.0.0.0/8, 192.168.0.0/16, 172.16.0.0
- #as_ignored_ip_list = ""
- # as_rbl_list = "servername:response:offset,servername2:response2:offset2,..."
- # Defines realtime blackhole lists.
- #as_rbl_list = ""
- # as_blocked_domain_list = "domain1, domain2"
- # Defines a list of domains and IPs which will be blocked if they appear in mail body.
- #as_blocked_domain_list = ""
- # as_ignored_domain_list = "domain1, domain2"
- # Defines a list of domains and IPs which will be ignored if they appear in mail body.
- #as_ignored_domain_list = ""
- # as_dnsbl_list = "servname1:response:offset,servname2:response:offset,..."
- # Defines a list of domains and IPs which will be excluded from DNS BL checks if they appear in mail body.
- #as_dnsbl_list = ""
- # as_home_country_list = "country_code1, country_code2, ..."
- # Defines a list of countries which are considered home. Message coming from other countries is more likely considered spam.
- # Countries are specified by two-letter code as defined in ISO 3166.
- #as_home_country_list = ""
- # as_custom_rules = "phrase1,type,value,case_sensitivity;phrase2,type,value,case_sensitivity;..."
- # Defines a list of phrases that often appear in spam.
- #as_custom_rules = ""
- #
- # ESETS Update options.
- #
- # av_update_server = "server"
- # ESET server used to update ESETS anti-virus modules,
- # empty string means - autoselect.
- #av_update_server = ""
- # av_update_username = "username"
- # Username used in authentication against ESET server.
- av_update_username = "EAV-00095547"
- # av_update_password = "password"
- # Password used in authentication against ESET server.
- av_update_password = "vcv8tf5dxa"
- # av_update_quarantine_scan = yes/no
- # Enables/disables scan of quarantined files automatically after
- # each virus signature database update.
- #av_update_quarantine_scan = yes
- # av_prerelease_updates = yes/no
- # Use prerelase av modules
- #av_prerelease_updates = no
- # av_mirror_enabled = yes/no
- # Enables ESETS mirror.
- #av_mirror_enabled = no
- # av_mirror_pcu = "mod1:mod2:..."
- # List of so called ESETS anti-virus Program Component Update modules
- # to be mirrored from ESET server.
- #av_mirror_pcu = ""
- # proxy_addr = "addr"
- # Proxy server address.
- #proxy_addr = ""
- # proxy_port = port
- # Proxy server port.
- #proxy_port = 3128
- # proxy_username = "username"
- # Username used in authentication against proxy server.
- #proxy_username = ""
- # proxy_password = "password"
- # Password used in authentication against proxy server.
- #proxy_password = ""
- #
- # ESETS optional information.
- #
- # user_mail = "email"
- # Optional information for ESET virus laboratory team.
- #user_mail = ""
- #
- # ESETS Remote Administrator Client options.
- #
- # racl_server_addr = "address"
- # Address of primary RA Server (empty string for no RA Server).
- #racl_server_addr = ""
- # racl_server_port = port
- # TCP port on primary RA Server to connect to.
- #racl_server_port = 2222
- # racl_password = "password"
- # Password to use for connecting to primary RA Server.
- #racl_password = ""
- # racl_secure_enabled = yes/no
- # Enables/disables nonencrypted connections to primary RA Server.
- #racl_secure_enabled = yes
- # racl_alt_server_addr = "address"
- # Address of secondary RA Server (empty string for no RA Server).
- #racl_alt_server_addr = ""
- # racl_alt_server_port = port
- # TCP port on secondary RA Server to connect to.
- #racl_alt_server_port = 2222
- # racl_alt_password = "password"
- # Password to use for connecting to secondary RA Server.
- #racl_alt_password = ""
- # racl_alt_secure_enabled = yes/no
- # Enables/disables nonencrypted connections to secondary RA Server.
- #racl_alt_secure_enabled = no
- # racl_interval = value
- # How often to connect to RA Server (in minutes).
- #racl_interval = 10
- # racl_logs_lifetime = value
- # Delete logs older than value (in days).
- #disklogs_lifetime = 90
- # racl_logs_optimize_percent = value
- # Optimize logs when the percentage of unused records exceeds value percent.
- #disklogs_optimize_percent = 25
- [wwwi]
- # Settings for ESETS Web Interface configuration module
- # agent_enabled = yes/no
- # Enables operation of the esets_wwwi.
- #agent_enabled = no
- # listen_addr = "address"
- # Address (IP or name) where esets_wwwi listens for HTTPS client connections.
- # If set to 0.0.0.0 then esets_wwwi listens on all available network interfaces.
- listen_addr = "0.0.0.0"
- # listen_port = port
- # TCP port where esets_wwwi listens for HTTPS client connections.
- # You may have to open this port in your firewall.
- listen_port = 8334
- # username and password needed for accessing the interface (required)
- username = "admin"
- password = "admin"
- [mird]
- # Settings for ESETS Mirror http daemon
- # agent_enabled = yes/no
- # Enables operation of the mirror http daemon.
- #agent_enabled = no
- # listen_addr = "address"
- # Address (IP or name) where agent listens for client connections. Empty means on all available interfaces.
- #listen_addr = ""
- # listen_port = port
- # TCP port where agent listens for client connections.
- # You may have to open this port in your firewall.
- #listen_port = 2221
- # timeout_client = time
- # Timeout for client part of the communication.
- #timeout_client = 30
- # auth_mode = "none"/"basic"
- # Mirror access authentication mode.
- #auth_mode = "none"
- # username and password needed for accessing the interface (necessary only if auth_mode="basic").
- #username = ""
- #password = ""
- [mda]
- # Settings for ESETS Mail Delivery Agent module.
- # mda_path = "path"
- # Full path pointing to the original MDA.
- #mda_path = "/usr/bin/procmail"
- [smtp]
- # Settings for ESETS SMTP filter module.
- # agent_enabled = yes/no
- # Enables/disables operation of the esets_smtp.
- #agent_enabled = no
- # num_proc = value
- # Keep value processes of esets_smtp running in parallel.
- #num_proc = 1
- # num_thrd = value
- # Keep value threads per process of esets_smtp running in parallel.
- #num_thrd = 2
- # listen_addr = "address"
- # Address (IP or name) where esets_smtp listens for SMTP client connections.
- # If set to 0.0.0.0 then esets_smtp listens on all available network interfaces.
- #listen_addr = "localhost"
- # listen_port = port
- # TCP port where esets_smtp listens for SMTP client connections.
- listen_port = 2527
- # server_addr = "address"
- # Address (IP or name) of the SMTP server where esets_smtp connects to.
- #server_addr = "localhost"
- # server_port = port
- # TCP port of the SMTP server where esets_smtp connects to.
- #server_port = 2525
- # timeout_client = time
- # Timeout for client part of the communication.
- #timeout_client = 30
- # add_header_xvirus = yes/no
- # Whether to add the header 'X-Virus-Scanner:' to scanned messages.
- #add_header_xvirus = yes
- # add_header_received = yes/no
- # Whether to add the header 'Received:' to scanned messages.
- #add_header_received = no
- [smfi]
- # Settings for ESETS Sendmail's content filter module.
- # agent_enabled = yes/no
- # Enables/disables operation of the esets_smfi.
- #agent_enabled = no
- # smfi_sock_path = "path"
- # A local socket used for communication of the esets_smfi with the Sendmail MTA.
- #smfi_sock_path = "/var/run/esets_smfi.sock"
- [gwia]
- # Settings for ESETS GroupWise Internet Agent contentfilter module.
- # agent_enabled = yes/no
- # Enables/disables operation of the esets_gwia.
- #agent_enabled = no
- # num_thrd = value
- # Keep value threads of esets_gwia running in parallel.
- #num_thrd = 2
- # gwia_smtphome = "path"
- # Defines root directory where GroupWise Internet Agent save files for scanning by esets_gwia.
- #gwia_smtphome = ""
- # gwia_dhome = "path"
- # Defines destination root directory for moving scanned files by esets_gwia where GroupWise Internet Agent watch.
- #gwia_dhome = ""
- [http]
- # Settings for ESETS HTTP filter module.
- # agent_enabled = yes/no
- # Enables/disables operation of the esets_http.
- #agent_enabled = no
- # num_proc = value
- # Keep value processes of esets_http running in parallel.
- #num_proc = 1
- # num_thrd = value
- # Keep value threads per process of esets_http running in parallel.
- #num_thrd = 2
- # listen_addr = "address"
- # Address (IP or name) where esets_http listens for HTTP client connections.
- # If set to 0.0.0.0 then esets_http listens on all available network interfaces.
- #listen_addr = ""
- # listen_port = port
- # TCP port where esets_http listens for HTTP client connections.
- #listen_port = 8080
- # parent_addr = "address"
- # Parent proxy server address (IP or name).
- #parent_addr = ""
- # parent_port = port
- # Parent proxy server TCP port.
- #parent_port = 0
- # timeout_server = time
- # Timeout for server part of the communication. Zero (0) means no timeout.
- #timeout_server = 30
- # timeout_client = time
- # Timeout for client part of the communication. Zero (0) means no timeout.
- #timeout_client = 30
- # transfer_delay = time
- # Limit (in seconds) for transfers handled as long (i.e. deferred/intermediate scan if infected).
- #transfer_delay = 10
- # lt_intermediate_scan_enabled = yes/no
- # Enables intermediate scan method for long transfers.
- #lt_intermediate_scan_enabled = yes
- # lt_infected_alert_enabled = yes/no
- # Enables/disables administrator alert notification when infected message found in long transfer,
- # when deferred scan method used.
- #lt_infected_alert_enabled = yes
- # lt_infected_alert_script_file = "path"
- # Path to script used to notify administrator when infected message found in long transfer,
- # when deffered scan method used.
- #lt_infected_alert_script_file = "/etc/opt/eset/esets/scripts/http_lt_infected_alert_script"
- # cache_url_blocked_size = size
- # Size of the cache (measured in entries) used to store URL's blocked.
- #cache_url_blocked_size = 10000
- # cache_url_blocked_eltime = time
- # Time interval (in minutes) after which the URL blocked entry is removed from the cache.
- #cache_url_blocked_eltime = 180
- # scan_obj_max_size = size
- # Maximum size in bytes of objects scanned by proxy. Zero (0) means no limit.
- #scan_obj_max_size = 0
- # scan_obj_max_size_accepted = yes/no
- # Accept or reject transfer of objects with size higher than scan_obj_max_size.
- #scan_obj_max_size_accepted = no
- # partial_transfer_enabled = yes/no
- # Enables/disables HTTP partial transfer. Partial transfer is not scanned for infiltrations.
- #partial_transfer_enabled = no
- # http_template_infected = "template"
- # Defines template sent to client in case the AV-scanned object is 'infected'.
- #http_template_infected = "<html><head><title>ESET Gateway Security warning</title><meta http-equiv="content-type" content="text/html; charset=UTF-8"></head><body bgcolor="#FFFFFF" text="#000000" topmargin="3" marginheight="3"><br><br><table width="100%%" bgcolor="#ed0000" cellpadding="5"><tr><td style="color: #000000"><strong>________ ESET Gateway Security warning ________</strong><br>Warning, ESET Gateway Security found the following threats in this object:<br>%log%<br><a href="http://www.eset.com" style="color: #0000dd">http://www.eset.com</a></td></tr></table><br></body></html>"
- # http_template_notscanned = "template"
- # Defines template sent to client in case the AV-scanned object is 'notscanned'.
- #http_template_notscanned = "<html><head><title>ESET Gateway Security warning</title><meta http-equiv="content-type" content="text/html; charset=UTF-8"></head><body bgcolor="#FFFFFF" text="#000000" topmargin="3" marginheight="3"><br><br><table width="100%%" bgcolor="#009794" cellpadding="5"><tr><td style="color: #000000"><strong>________ ESET Gateway Security warning ________</strong><br>Warning, ESET Gateway Security could not check this object:<br>%log%<br><a href="http://www.eset.com" style="color: #0000dd">http://www.eset.com</a></td></tr></table><br></body></html>"
- # tunnel_ports = "port1:port2:port3"
- # Specifies list of port numbers allowed when CONNECT method used.
- #tunnel_ports = "443"
- [ftp]
- # Settings for ESETS FTP filter module.
- # agent_enabled = yes/no
- # Enables/disables operation of the esets_ftp.
- #agent_enabled = no
- # num_proc = value
- # Keep value processes of esets_ftp running in parallel.
- #num_proc = 1
- # num_thrd = value
- # Keep value threads per process of esets_ftp running in parallel.
- #num_thrd = 2
- # listen_addr = "address"
- # Address (IP or name) where esets_ftp listens for FTP client connections.
- # If set to 0.0.0.0 then esets_ftp listens on all available network interfaces.
- #listen_addr = ""
- # listen_port = port
- # TCP port where esets_ftp listens for FTP client connections.
- #listen_port = 2121
- # timeout_server = time
- # Timeout for server part of the communication. Zero (0) means no timeout.
- #timeout_server = 30
- # timeout_client = time
- # Timeout for client part of the communication. Zero (0) means no timeout.
- #timeout_client = 30
- # scan_obj_max_size = size
- # Maximum size in bytes of objects scanned by proxy. Zero (0) means no limit.
- #scan_obj_max_size = 0
- # scan_obj_max_size_accepted = yes/no
- # Accept or reject transfer of objects with size higher than scan_obj_max_size.
- #scan_obj_max_size_accepted = no
- # partial_transfer_enabled = yes/no
- # Enables/disables FTP partial transfer. Partial transfer is not scanned for infiltrations.
- #partial_transfer_enabled = no
- [icap]
- # Settings for ESETS ICAP server module.
- # agent_enabled = yes/no
- # Enables/disables operation of the esets_icap.
- #agent_enabled = no
- # num_proc = value
- # Keep value processes of esets_icap running in parallel.
- #num_proc = 1
- # num_thrd = value
- # Keep value threads per process of esets_icap running in parallel.
- #num_thrd = 2
- # listen_addr = "address"
- # Address (IP or name) where esets_icap listens for ICAP client connections.
- # If set to 0.0.0.0 then esets_icap listens on all available network interfaces.
- #listen_addr = ""
- # listen_port = port
- # TCP port where esets_icap listens for ICAP client connections.
- #listen_port = 1344
- # ident_scanning_service = "identifier"
- # Infiltrations scanning service identifier using in request line:
- # METHOD icap://server[identifier] ICAP/1.0
- #ident_scanning_service = "/av_scan"
- # timeout_client = time
- # Timeout for client part of the communication.
- #timeout_client = 30
- # transfer_delay = time
- # Limit (in seconds) for objects handled as large (i.e. defer handling if infected).
- #transfer_delay = 10
- # lt_intermediate_scan_enabled = yes/no
- # Enables intermediate scan method for long transfers.
- #lt_intermediate_scan_enabled = yes
- # lt_infected_alert_enabled = yes/no
- # Enables/disables administrator alert notification when infected message found in long transfer.
- #lt_infected_alert_enabled = yes
- # lt_infected_alert_script_file = "path"
- # Path to script used to notify administrator when infected message found in long transfer.
- #lt_infected_alert_script_file = "/etc/opt/eset/esets/scripts/icap_lt_infected_alert_script"
- # cache_url_blocked_size = size
- # Size of the cache (measured in entries) used to store URL's blocked.
- #cache_url_blocked_size = 10000
- # cache_url_blocked_eltime = time
- # Time interval (in minutes) after which the URL blocked entry is removed from the cache.
- #cache_url_blocked_eltime = 180
- # scan_obj_max_size = size
- # Maximum size in bytes of objects scanned by proxy. Zero (0) means no limit.
- #scan_obj_max_size = 0
- # scan_obj_max_size_accepted = yes/no
- # Accept or reject transfer of objects with size higher than scan_obj_max_size.
- #scan_obj_max_size_accepted = no
- # http_template_infected = "template"
- # Defines template sent to client in case the AV-scanned object is 'infected'.
- #http_template_infected = "<html><head><title>ESET Gateway Security warning</title><meta http-equiv="content-type" content="text/html; charset=UTF-8"></head><body bgcolor="#FFFFFF" text="#000000" topmargin="3" marginheight="3"><br><br><table width="100%%" bgcolor="#ed0000" cellpadding="5"><tr><td style="color: #000000"><strong>________ ESET Gateway Security warning ________</strong><br>Warning, ESET Gateway Security found the following threats in this object:<br>%log%<br><a href="http://www.eset.com" style="color: #0000dd">http://www.eset.com</a></td></tr></table><br></body></html>"
- # http_template_notscanned = "template"
- # Defines template sent to client in case the AV-scanned object is 'notscanned'.
- #http_template_notscanned = "<html><head><title>ESET Gateway Security warning</title><meta http-equiv="content-type" content="text/html; charset=UTF-8"></head><body bgcolor="#FFFFFF" text="#000000" topmargin="3" marginheight="3"><br><br><table width="100%%" bgcolor="#009794" cellpadding="5"><tr><td style="color: #000000"><strong>________ ESET Gateway Security warning ________</strong><br>Warning, ESET Gateway Security could not check this object:<br>%log%<br><a href="http://www.eset.com" style="color: #0000dd">http://www.eset.com</a></td></tr></table><br></body></html>"
- [pop3]
- # Settings for ESETS POP3 filter module.
- # agent_enabled = yes/no
- # Enables/disables operation of the esets_pop3.
- #agent_enabled = no
- # num_proc = value
- # Keep value processes of esets_pop3 running in parallel.
- #num_proc = 1
- # num_thrd = value
- # Keep value threads per process of esets_pop3 running in parallel.
- #num_thrd = 2
- # listen_addr = "address"
- # Address (IP or name) where esets_pop3 listens for POP3 client connections.
- # If set to 0.0.0.0 then esets_pop3 listens on all available network interfaces.
- #listen_addr = ""
- # listen_port = port
- # TCP port where esets_pop3 listens for POP3 client connections.
- #listen_port = 8110
- # server_addr = "address"
- # Address (IP or name) of the POP3 server where esets_pop3 connects to.
- #server_addr = ""
- # server_port = port
- # TCP port of the POP3 server where esets_pop3 connects to.
- #server_port = 0
- # timeout_client = time
- # Timeout for client part of the communication.
- #timeout_client = 30
- [imap]
- # Settings for ESETS IMAP filter module.
- # agent_enabled = yes/no
- # Enables/disables operation of the esets_imap.
- #agent_enabled = no
- # num_proc = value
- # Keep value processes of esets_imap running in parallel.
- #num_proc = 1
- # num_thrd = value
- # Keep value threads per process of esets_imap running in parallel.
- #num_thrd = 2
- # listen_addr = "address"
- # Address (IP or name) where esets_imap listens for IMAP client connections.
- # If set to 0.0.0.0 then esets_imap listens on all available network interfaces.
- #listen_addr = ""
- # listen_port = port
- # TCP port where esets_imap listens for IMAP client connections.
- #listen_port = 8143
- # server_addr = "address"
- # Address (IP or name) of the IMAP server where esets_imap connects to.
- #server_addr = ""
- # server_port = port
- # TCP port of the IMAP server where esets_imap connects to.
- #server_port = 143
- # timeout_client = time
- # Timeout for client part of the communication.
- #timeout_client = 30
- [pac]
- # Settings for ESETS Preload library based file Access Controler module.
- # event_mask = "mask"
- # The mask of (open, create, exec) events you wish to guard.
- #event_mask = "open:create:exec"
- # ctl_incl = "directory"
- # Colon separated list of directories to scan files in.
- #ctl_incl = ""
- # allow access to deleted files
- action_av_deleted = "accept"
- # av_scan_obj_archives = yes/no
- # Enables/disables scanning of archives (.ZIP, .RAR, .ARJ, etc.).
- # This redefines parameter 'av_scan_obj_archives' in section [global].
- # Refer to libesets_pac.so(1) and esets.cfg(5) manual page for details.
- #av_scan_obj_archives = no
- # av_scan_obj_mime = yes/no
- # Enables/disables scanning of MIME archives, i.e. e-mails in raw format.
- # This redefines parameter 'av_scan_obj_mime' in section [global].
- # Refer to libesets_pac.so(1) and esets.cfg(5) manual page for details.
- #av_scan_obj_mime = no
- # av_scan_obj_mailbox = yes/no
- # Enables/disables scanning of various mailboxes.
- # This redefines parameter 'av_scan_obj_mailbox' in section [global].
- # Refer to libesets_pac.so(1) and esets.cfg(5) manual page for details.
- #av_scan_obj_mailbox = no
- # av_scan_obj_rtp = yes/no
- # Enables/disables scanning of runtimepackers.
- # This redefines parameter 'av_scan_obj_rtp' in section [global].
- # Refer to libesets_pac.so(1) and esets.cfg(5) manual page for details.
- #av_scan_obj_rtp = no
- # av_scan_obj_sfx = yes/no
- # Enables/disables scanning of self extracting archives.
- # This redefines parameter 'av_scan_obj_sfx' in section [global].
- # Refer to libesets_pac.so(1) and esets.cfg(5) manual page for details.
- #av_scan_obj_sfx = no
- # av_scan_adv_heur = yes/no
- # Enables/disables use of advanced heuristics method while scanning.
- # This redefines parameter 'av_scan_adv_heur' in section [global].
- # Refer to libesets_pac.so(1) and esets.cfg(5) manual page for details.
- #av_scan_adv_heur = no
- # av_exec_scan_adv_heur = yes/no
- # Enables/disables use of advanced heuristics method while scanning.
- # This redefines parameter 'av_scan_adv_heur' for 'exec' events.
- # Refer to libesets_pac.so(1) manual page for details.
- #av_exec_scan_adv_heur = no
- # av_create_scan_adv_heur = yes/no
- # Enables/disables use of advanced heuristics method while scanning.
- # This redefines parameter 'av_scan_adv_heur' for 'create' events.
- # Refer to libesets_pac.so(1) manual page for details.
- #av_create_scan_adv_heur = yes
- # av_create_scan_obj_rtp = yes/no
- # Enables/disables scanning of runtimepackers.
- # This redefines parameter 'av_scan_obj_rtp' for 'create' events.
- # Refer to libesets_pac.so(1) manual page for details.
- #av_create_scan_obj_rtp = yes
- # av_create_scan_obj_sfx = yes/no
- # Enables/disables scanning of self extracting archives.
- # This redefines parameter 'av_scan_obj_sfx' for 'create' events.
- # Refer to libesets_pac.so(1) manual page for details.
- #av_create_scan_obj_sfx = yes
- # av_create_scan_def_arch = yes/no
- # Enables/disables use of AV scanner limit parameters
- # 'av_create_scan_archive_max_level' and 'av_create_scan_archive_max_size'.
- # Refer to libesets_pac.so(1) manual page for details.
- #av_create_scan_def_arch = yes
- # av_create_scan_archive_max_level = level
- # Specifies the maximum level an archive is descended during scan.
- # This redefines parameter 'av_scan_archive_max_level' for 'create' events.
- # Refer to libesets_pac.so(1) manual page for details.
- #av_create_scan_archive_max_level = 10
- # av_create_scan_archive_max_size = size
- # Specifies the maximum unpacked size in bytes of a single archive's level scanned.
- # This redefines parameter 'av_scan_archive_max_size' for 'create' events.
- # Refer to libesets_pac.so(1) manual page for details.
- #av_create_scan_archive_max_size = 0
- [dac]
- # Settings for ESETS Dazuko powered file Access Controler module.
- # agent_enabled = yes/no
- # Enables operation of the esets_dac.
- #agent_enabled = no
- # num_proc = value
- # Keep value processes of esets_dac running in parallel.
- #num_proc = 1
- # num_thrd = value
- # Keep value threads per process of esets_dac running in parallel.
- #num_thrd = 2
- # event_mask = "mask"
- # The mask of (open, create, exec) events you wish to guard.
- #event_mask = "open:create:exec"
- # ctl_incl = "directory"
- # Colon separated list of directories to scan files in.
- #ctl_incl = ""
- # allow access to deleted files
- action_av_deleted = "accept"
- # av_scan_obj_archives = yes/no
- # Enables/disables scanning of archives (.ZIP, .RAR, .ARJ, etc.).
- # This overwrites parameter of the same name in section [global].
- # Refer to esets_dac(1) and esets.cfg(5) manual page for details.
- #av_scan_obj_archives = no
- # av_scan_obj_mime = yes/no
- # Enables/disables scanning of MIME archives, i.e. e-mails in raw format.
- # This overwrites parameter of the same name in section [global].
- # Refer to esets_dac(1) and esets.cfg(5) manual page for details.
- #av_scan_obj_mime = no
- # av_scan_obj_mailbox = yes/no
- # Enables/disables scanning of various mailboxes.
- # This overwrites parameter of the same name in section [global].
- # Refer to esets_dac(1) and esets.cfg(5) manual page for details.
- #av_scan_obj_mailbox = no
- # av_scan_obj_rtp = yes/no
- # Enables/disables scanning of runtimepackers.
- # This overwrites parameter of the same name in section [global].
- # Refer to esets_dac(1) and esets.cfg(5) manual page for details.
- #av_scan_obj_rtp = no
- # av_scan_obj_sfx = yes/no
- # Enables/disables scanning of self extracting archives.
- # This overwrites parameter of the same name in section [global].
- # Refer to esets_dac(1) and esets.cfg(5) manual page for details.
- #av_scan_obj_sfx = no
- # av_scan_adv_heur = yes/no
- # ESETS anti-virus scanner will use advanced heuristics while scanning.
- # This overwrites parameter of the same name in section [global].
- # Refer to esets_dac(1) and esets.cfg(5) manual page for details.
- #av_scan_adv_heur = no
- # av_exec_scan_adv_heur = yes/no
- # ESETS anti-virus scanner will use advanced heuristics while scanning.
- # This overwrites parameter 'av_scan_adv_heur' for 'exec' events.
- # Refer to esets_dac(1) manual page for details.
- #av_exec_scan_adv_heur = no
- # av_create_scan_adv_heur = yes/no
- # ESETS anti-virus scanner will use advanced heuristics while scanning.
- # This overwrites parameter 'av_scan_adv_heur' for 'create' events.
- # Refer to esets_dac(1) manual page for details.
- #av_create_scan_adv_heur = yes
- # av_create_scan_obj_rtp = yes/no
- # Enables/disables scanning of runtimepackers.
- # This overwrites parameter 'av_scan_obj_rtp' for 'create' events.
- # Refer to esets_dac(1) manual page for details.
- #av_create_scan_obj_rtp = yes
- # av_create_scan_obj_sfx = yes/no
- # Enables/disables scanning of self extracting archives.
- # This overwrites parameter 'av_scan_obj_sfx' for 'create' events.
- # Refer to esets_dac(1) manual page for details.
- #av_create_scan_obj_sfx = yes
- # av_create_scan_def_arch = yes/no
- # Enables/disables relevance of AV scanner limit parameters
- # 'av_create_scan_archive_max_level' and 'av_create_scan_archive_max_size'.
- # Refer to esets_dac(1) manual page for details.
- # av_create_scan_archive_max_level = level
- # Specifies the maximum level an archive is descended during scan.
- # This overwrites parameter 'av_scan_archive_max_level' for 'create' events.
- # Refer to esets_dac(1) manual page for details.
- #av_create_scan_archive_max_level = 10
- # av_create_scan_archive_max_size = size
- # Specifies the maximum unpacked size in bytes of a single archive's level scanned.
- # This overwrites parameter 'av_scan_archive_max_size' for 'create' events.
- # Refer to esets_dac(1) manual page for details.
- #av_create_scan_archive_max_size = 0
- [scan_deep]
- # Settings for ESETS on-demand scanner.
- # max_subdir_level = value
- # How many subdirectories to descend (0 = no limit).
- #max_subdir_level = 0
- # symlink = yes/no
- # Enables/disables following symbolic links.
- #symlink = yes
- [scan_smart]
- # Settings for ESETS on-demand scanner.
- # max_subdir_level = value
- # How many subdirectories to descend (0 = no limit).
- #max_subdir_level = 0
- # symlink = yes/no
- # Enables/disables following symbolic links.
- #symlink = yes
- # av_scan_obj_archives = yes/no
- # Enables/disables scanning of archives (.ZIP, .RAR, .ARJ, etc.).
- #av_scan_obj_archives = yes
- # av_scan_obj_mime = yes/no
- # Enables/disables scanning of MIME archives, i.e. e-mails in raw format.
- #av_scan_obj_mime = no
- [start]
- # Settings for Automatic startup file check scanner.
- # max_subdir_level = value
- # How many subdirectories to descend (0 = no limit).
- #max_subdir_level = 0
- # symlink = yes/no
- # Enables/disables following symbolic links.
- #symlink = no
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement