How can I enable third party anti-virus signatures within Warden to improve the ClamAV detection rate?

Warden supports enabling third party anti-virus signatures to improve the detection rate. These signatures can block phishing, double attachments, macro malware, javascript malware, zero-day malware and even on zero-hour malware. Full documentation about each provider can be found below:

https://docs.danami.com/warden/settings/antivirus/signature-providers

  1. Navigate to Warden Anti-spam and Virus Protection -> Settings -> Anti-virus Settings -> Signature Providers
  2. We recommend enabling at least the SaneSecurity and URLhaus providers. If you want the very best protection and have the server memory then we also recommend enabling the SecuriteInfo provider. Additionally SecuriteInfo paid signatures are very reasonable and well worth it at only €29 per year for up to 10 servers. Paid plans can add the securiteinfo.mdb and securiteinfo0hour.hdb files from the SecuriteInfo provider files select list to download additional generic and 0-hour anti-virus signatures. Users can purchase the SecuriteInfo signatures here after creating an account, logging in, and pressing the subscribe button in the client area.
  3. Press the update button on the page then the restart button to restart the Anti-virus signature service. You can view the signature download logs under Warden Anti-spam and Virus Protection -> Logs -> Signature log.
  4. Once the new signatures have been downloaded to the /var/lib/clamav/ directory they will be loaded into ClamAV within the hour. You can press the Signature widget reload button on the dashboard or issue the command clamdscan --reload if you want to load them earlier.

  • signatures, anti-virus
  • 0 Benutzer fanden dies hilfreich
War diese Antwort hilfreich?

Verwandte Artikel

How can I change the interface language of the extension?

You can change the interface language under Settings -> Application Settings -> Locale...

How can I disable admin email notifications in Amavis?

Amavis has different default options for controlling where virus, spam, banned file attachments,...

How can I whitelist or blacklist a mail server from greylisting?

To Whitelist a Mail Server From Greylisting Navigate to Warden -> Settings ->...

How can I setup a local caching DNS resolver to speed up DNS queries used by Amavis?

Run the following command to check if local DNS caching is enabled: host -tTXT...

How can I enable the Rule2XSBody plugin to speed up anti-spam rules by compiling them into native code?

Install the required packages Install the required packages and compile our rules into native...