Integration with External Applications

 Top  Previous  Next

The interface—that emulates the one of the clamd anti-virus daemon (included in ClamAV)—allows Dr.Web ClamD to communicate with any external application that is capable of connecting to this anti-virus daemon.

The table below shows examples of applications that can use clamd for anti-virus scans:

Product

Integration

Mail services

Mail server
Postfix

Use of clamd:

Scanning of email messages for viruses and malicious programs.

Integration requirements:

Use of an intermediate component:clamsmtpd, clamav-milter or amavisd-new.

Links to documentation:

Postfix documentation: http://www.postfix.org/documentation.html

Description and source code files of amavisd-new: http://www.amavis.org/

Mail server
Exim

Use of clamd:

Scanning of email messages for viruses and malicious programs.

Integration requirements:

Adding the following setting in the Exim configuration file

av_scanner = clamd:<path_to_clamd_UNIX_socket>

where <path_to_clamd_UNIX_socket> corresponds to the socket of a connection point (endpoint) configured in Dr.Web ClamD.

Links to documentation:

Exim documentation: http://exim.org/docs.html

Mail server
CommuniGate Pro

Use of clamd:

Scanning of email messages for viruses and malicious programs.

Integration requirements:

Using cgpav as an intermediate component.

Links to documentation:

CommuniGate Pro documentation: https://www.communigate.com/CommunigatePro/

Description and source code files of cgpav: http://program.farit.ru/index.html

In the settings of the external software component that communicates directly with Dr.Web ClamD as with the clamd anti-virus daemon, specify an address for connecting to clamd as a path to a UNIX socket or as a TCP socket listened to by Dr.Web ClamD at one of its connection points (endpoint) set up in its configuration.

Example of how to connect CommuniGate Pro to Dr.Web ClamD:

1.Downloading and building of cgpav (version 1.5):

$ wget http://program.farit.ru/antivir/cgpav-1.5.tar.gz
$ tar -xzvf cgpav-1.5.tar.gz
$ cd cgpav-1.5/
$ ./configure
$ make && make install

At the configure stage, when choosing a response to a question “Choose Anti-Virus daemon”, select Clamav.

2.Configuring Dr.Web ClamD:

[ClamD]
Start = yes

[ClamD.Endpoint.mail]
ClamdSocket = /var/run/drweb.clamd

3.CommuniGate Pro configuration:

1)In the CommuniGate Pro settings file (/var/CommuniGate/Settings/cgpav.conf), indicate path to a socket Dr.Web ClamD:

clamd_socket = /var/run/drweb.clamd

2)In the CommuniGate Pro web interface:

Go to Settings –> General –> Helpers. In the Content Filtering section set a new filter: switch it to Enabled by specifying a filter name (for example, drweb); in the Program Path parameter, specify cgpav. Save changes.

Go to Settings –> Mail –> Rules. Indicate a name of a new parameter (for example, drweb_scan) and click Add Rule. Set a rule priority to Highest, save changes and then click Edit on the right side of the rule name. In the drop-down list Data select Message Size, in the Operation field select greater than, and in the Parameter field select value 1. In the Action field select the ExternalFilter value, in Parameter—a name of the filter created earlier (drweb in this example). Save changes.