Dr.Web MailD

Dr.Web MailD is designed for direct email scanning, detection of malicious contents (not only attachments but also links to unwanted websites), and analysis of messages for signs of spam, their compliance with the security criteria indicated by a mail system administrator (scanning of body and headers of email messages using regular expressions specified by the administrator).

The component could be integrated into the mail server (MTA) via the standard interfaces Milter, Spamd, and Rspamd (these interfaces are usually used by the filter SpamAssasin), as well as into mail protocols (SMTP, POP3 и IMAP) transparent for the sending and receiving parties (MTA and MTA, MDA and MUA). The second method proposes that the functionality of the SpIDer Gate component for scanning of network traffic is used by the Dr.Web MailD component.

As the SpIDer Gate monitor operates only in the GNU/Linux environment, a method for the transparent integration (“proxy” mode) is available only for the mail servers that operate in the GNU/Linux environment.

In case of high intensity of the scanning of email messages, there is a possibility of having problems with their scanning due to depletion of the number of available file descriptors by Dr.Web Network Checker. In this case, it is necessary to increase the limit number of file descriptors available to Dr.Web for UNIX (see section “Errors without codes” in the Appendix F of the Administrator Manual).

Full version of Administrator Manual for Dr.Web for UNIX is available

•At Doctor Web official website https://download.drweb.com/doc/ (Internet connection is required).

•You can view a PDF file in the <opt_dir>/share/doc directory (the suffix in the name indicates the language).