We have been using Qmail, configured using qmail rocks.
I have one more requirement...
Is there any way emails with any reserved word on the mail body can be sent
As a scenario, we need to monitor the emails having some reserved words
like "resume", "resignation". If any email contains the above word will get
a copy to email address configured in qmail-scanner
This is very important for our business needs.
Thanks in advance.
Sorry, no. The only thing qs could do for you is check for that words
in the subject, adding the rules to the file 'quarantine-events.txt'
(in older version it was a different file..) and rebuild
At 16:19 +0530 28-05-2013, Kunal Soni wrote:
>We have been using Qmail, configured using qmail rocks.
>I have one more requirement...
>Is there any way emails with any reserved word on the mail body can
>be sent to postmaster
>As a scenario, we need to monitor the emails having some reserved
>words like "resume", "resignation". If any email contains the above
>word will get a copy to email address configured in qmail-scanner
>This is very important for our business needs.
>Thanks in advance.
From: Jason Haar <Jason_Haar@tr...> - 2013-05-29 01:38:07
On 29/05/13 04:02, Salvatore Toribio wrote:
> Hi Kunal
> Sorry, no.
Not quite true :-).
>From the home page http://qmail-scanner.sf.net/
If an organization is using clamav, Qmail-Scanner can be directly used
for Data Loss Prevention (DLP). Localized clamav signature rules can be
written that enable Qmail-Scanner to detect and block emails that clamav
detects as "malware". A bit of a misuse perhaps - but clamav's built-in
support for archival formats and understanding of document types makes
it perfect in this role. If you want Qmail-Scanner to log but not block
such DLP "hits" (perhaps because the false positive rates are too high
to go with full block-mode), then Qmail-Scanner has a "dlp-monitor"
option which tells it which regex of normally quarantinable events are
in fact to be let past (i.e. without blocking). It will archive a copy
of such messages, and the logging will reflect this was a "DLP:" event.
Information Security Manager, Trimble Navigation Ltd.
Phone: +1 408 481 8171
PGP Fingerprint: 7A2E 0407 C9A6 CAF6 2B9F 8422 C063 5EBB FE1D 66D1