Changes

Jump to navigation Jump to search
1,113 bytes added ,  09:52, 25 May 2017
no edit summary
Line 94: Line 94:  
  -VTAPI=[API Key]:        This is the VirusTotal public API key used to check attachments (will remain local).
 
  -VTAPI=[API Key]:        This is the VirusTotal public API key used to check attachments (will remain local).
   −
==FAQ==
+
==Privacy and Security==
 +
The solution is dependent of the joint forces of the contributing SME servers and therefore data is shared to succeed. All communication between your SME servers and the SMEOptimizer server(s) are done via HTTPS when reporting and simple DNS lookups when checking.
 +
 
 +
====DNS Blacklist====
 
* Question: What is transferred from my server to the central server as part of the spam report that is used to build the DNS Blacklist?
 
* Question: What is transferred from my server to the central server as part of the spam report that is used to build the DNS Blacklist?
 
** Answer: The qpsmtpd plugin captures the sender domain and the sending ipaddress, the qpsmtpd plugin which rejected the mail and the plugins return text.
 
** Answer: The qpsmtpd plugin captures the sender domain and the sending ipaddress, the qpsmtpd plugin which rejected the mail and the plugins return text.
 +
 +
====Attachment Filter====
 +
The system will generate a SHA1 hash based on the attached file and check this hash via a DNS lookup against the SMEOptimizer DNS server. If there is a match (A record), then the TXT record for this key provides a SHA256 and a filesize as well as Virus/Malware description. The SHA256 and size will be used to double verify the match and the description to provide a proper reject message in the qpsmtpd plugin.
 +
 +
If there is not match, then the SHA1, SHA256, file size and filename is stored in a local MySQL database. The SHA256 is checked up against VirusTotal and if there is a match then SHA1, SHA256, file size and filename will be sent to the SMEOptimizer server via a HTTPS PUT request.
 +
 +
A no time will any attachment content leave your local server and be shared anywhere.
    
==Uninstall SMEOptimizer==
 
==Uninstall SMEOptimizer==
177

edits

Navigation menu