[Avcheck] anounce: experimental versions of avcheck available

Michael Tokarev mjt@tls.msk.ru
Sat, 04 Aug 2001 00:39:46 +0400 

I uploaded two *experimental* versions of avcheck
(note without "p") to
 ftp://ftp.corpit.ru/pub/avpcheck/beta/

In short:

 syslogging support added (was available in
 another "preview release" for a some time)

 included support for DrWeb antivirus product,
 www.sald.com (English) or www.drweb.ru (Russian).
  (not yet available in countries other than Russia,
   should be released soon)
 In order to compile avcheck.c, one should now
 "tell" what antivirus he wants to use, by
 adding -DAVP or -DDRWEB to compiler's command
 line.

 Experimental "feature cutoff/addition": second
 variant (avcheck2.c on ftp) will call another
 program to handle all infected mails.  This way,
 one can write/customize it's own handler that
 will do what he needs exactly.  There is no
 handler for now, I'll place an example into this
 directory shortly.  Note that syslogging also
 removed from this variant -- script can do it
 just fine using e.g. `logger' program.

I need a feedback about second variant's "architecture"
(as long as no "infected mail handler" exists,
there is no way to really test it).  The main
question before proper packaging: can we use
second variant only (with external handler),
or this handler should be added to first (current)
variant as another option?  I personally think about
"clean" way, where only external handler will
be used.

Changes (from changelog), compared to last "official"
version:

 * Fri Aug  3 2001 Michael Tokarev <mjt@corpit.ru> ***Experimental***
 * Removed *all* infected mail handling: bounces,
 *  sending alerts, etc, etc, and all options
 *  around this.  All infected mail handling
 *  should now performed by external program/script
 *  (by default, `infected' in the avcheck's directory).
 * New option, -i infected-program, to specify another
 *  program to call for infected mail.
 *
 * Fri Aug  3 2001 Michael Tokarev <mjt@corpit.ru>
 * Added original recipients to virus-alert generated message.
 *  this one should be taken with care, as it will show
 *  even BCC'd recipients, and there is an option to send
 *  virus notification to original recipients too, so every
 *  original recipient will see all other recipients, even
 *  them where BCC'd.  Having recipients in administrator's
 *  email is good, in bounce it is also good, but questionable
 *  in mail for original recipients.
 * Changed temporary filename to include only pid, not current time
 * Added support for DrWeb (www.sald.com) antivirus -- not really
 *  tested yet, but seems to work
 * Renamed to avcheck, as it isn't avp specific now ;)
 * Changed compilation: you now should specify antivirus engine
 *  to use, via -DAVP or -DDRWEB compiler command line option.
 *
 * Wed Jul 25 2001 Michael Tokarev <mjt@corpit.ru>
 * Limited avp daemon response size to 8Kb (for now)
 * Added another option, -V,--vsendmail, to specify
 * a command (or smtp host:port) to send virus alerts
 * only (may differ from -S in some rare cases).
 *
 * Wed Jul 11 2001 Ralf Hildebrandt <ralf.hildebrandt@innominate.com>
 * added syslog()ing.
 * New option
 *    -l,--syslog - to send warnings about infected message to syslog()
 * Fixed some typos in messages.
 *


Regards,
 Michael.