Antivirus setup

iali

is it possible to know how to enable antivirus and antispam so that all incoming emails are scanned before redirecting them to the user on SOGo?

I would like to make it so that based on certain rules if the email is ok, a header appears in the message telling the user that the email is safe, otherwise based on the antispam rules, it sends a warning email to the user saying that they have received an email that is considered spam and that they need to contact the administrator to unblock it from quarantine and send it to the user on SOGo.
Thank you

pkernstock

clamav (antivirus) is enabled by default and does scan each email automatically before arriving in their respective inbox (whatever web- or native-client you’re using).

aaronsmith

I’ll qualify pkernstock answer a little further … clamav is enabled if your system has enough RAM and you elected to enable it during install.

You can verify this via the mailcow.conf:

grep SKIP_CLAMD mailcow.conf

If you get the following with “n” value, then clamav is enabled:

SKIP_CLAMD=n

rspamd should be enabled by default and implements several runtime black lists (RBLs) to check the message for spam markers:
https://rspamd.com/doc/quickstart.html#configuring-rbls
https://github.com/rspamd/rspamd/blob/master/conf/modules.d/rbl.conf

From the mailcow admin UI, you can select Configuration -> System Information.

The Container Information section (assuming a docker-compose install) will show you the components running, such as rspamd-mailcow.

Rspamd docs:
https://docs.mailcow.email/manual-guides/Rspamd/u_e-rspamd/

Note you need to set the rspamd password before you can login to the separate UI though:
https://docs.mailcow.email/post_installation/firststeps-rspamd_ui/