Section: Maintenance Commands (8)Updated: November 6, 2005Local indexUp
p3scan - fully transparent proxy scanning server for POP3 and SMTP
p3scan is a fully transparent proxy scanning server for POP3, SMTP, and limited
POP3S email clients. It runs on a Linux box with iptables (for port redirection).
It implements a centralized email scanning point, transparently inspecting
messages fetched by internal network hosts from servers "in the wild"
(the Internet) for viruses, worms, trojans, spam and potentially dangerous
attachments. Since HTML email can be used by spammers to validate the recipient
address (via Web Bugs) p3scan can also provide HTML stripping by using the
associated p3pmail (or other) program.
It can also inspect outgoing SMTP messages for virus's.
p3scan can help you in protecting your "Other OS" LAN especially if used
synergically with a firewall and other proxy servers.
Specify location of renattach if wanted
Creates a copy of 'template=FILE' for manipulation
prior to use. /var/spool/p3scan/children/<pid>/vnmsg
Number (in KBytes) that should be available before we
can process messages. If not enough, report it and die.
Run as user <UID>. Default: mail
Only takes effect when started as superuser
Parse username for destination "username#url:port" vice using iptables redirection.
Prints version information
eXtract all MIME-Parts before scanning
-X, --Xtra mail program=FILE
Xtra notification reciept mail program. Default: /bin/mail
Specify path to Spam Checking program executable
Default /usr/bin/spamc (Mail::SpamAssassin)
Symlink to the email message templates sent to client in event
a virus is found. You can create a symlink, or copy a language
file p3scan-??.mail for any language provided. If you translate
a mail file into your own language, please consider contributing
it to the project so that others may enjoy your work.
Email templates for specific languages.
This file is used to add the virus definition info from your scanner
to an smtp message. It will only be added as a footer if the message
is not signed cryptographically and is only a text message.
It is used in conjunction with the "footer" option in the
1) If file does not exist and "footer" is defined:
No footer information will added to outgoing messages, but the p3scan
version and scanner info will be added to the header.
2) If file exists but blank and "footer" is defined:
P3Scan version/host info and scanner info will be added to end of
message and header.
3) If file contains information and "footer" is defined:
All lines of this file will be added to the end of the smtp message and
then p3scan version/host info and scanner info will be appended.
4) If file does not exist and "footer" is not defined:
P3Scan will only insert p3scan version info into the header.
Executable program file
This file is written when p3scan is running.
Each email scanned is manipulated in this directory
When a virus is found, the email sent to the client is generated here.