Anti-Virus Policy

At Flexihostings, the servers are equipped with Clamav,a Linux based anti-virus software. Though virus attack have a lower incidents in Linux environments, however this is used to prevent our server from becoming a source for virus infections. In order for an effective virus removal, the following minimum requirements is applied:

1. Clamav is operated in real time on all servers.
2. The anti-virus library definitions is updated on a regular basis.
3. Anti-virus scans is done a minimum of once per week on all servers.

Email Server Policy

Clamav is also used to provide additional protection against malware, since email with malware must be prevented from entering the network.

Email Malware Scanning

When a virus is found or malware is found, we shall delete the email and not to notify either the sender or recipient. The reason for this is that most viruses fake the sender of the email and sending them a notice that they sent a message with a virus may alarm them unnecessarily since it would not likely be true. It would simply cause an additional helpdesk call by the notified person and most likely waste system administrator's time needlessly. Notifying the recipient that someone tried to send them a virus would only alarm them needlessly and result in an increased number of helpdesk calls as well.

Blocked Attachment Types

The email server or proxy server will block all emails with attachment types that is listed below. This is because these attachment types are dangerous and contains active content which may be used to infect a computer with hostile software or because these attachment types are commonly successfully used by virus programs or malware to spread.

  • ade - Microsoft Access project extension can contain executable code.
  • adp - Microsoft Access project can contain executable code.
  • bas - Basic program source code is executable code.
  • bat - Batch file which can call executable code.
  • chm - Compiled HTML help file can contain executable code.
  • cmd - Windows NT command script file is executable code.
  • com - Command file program is executable code.
  • cpl - Control panel extension
  • crt
  • eml
  • exe - Binary executable program is executable code.
  • hlp - Help file
  • hta - HTML program
  • inf - Setup information
  • ins - Internet naming service
  • isp - Internet communication settings
  • js - JavaScript file
  • jse - JavaScript encoded file
  • ksh - Unix shell file
  • lnk - Link file
  • mda - Microsoft Access add-in program
  • mdb - Microsoft Access program
  • mde - Microsoft Access MDE database
  • mdt - Microsoft Access file
  • mdw - Microsoft Access file
  • mdz - Microsoft Access wizard program
  • msc - Microsoft Common Console document
  • msi - Microsoft windows installer package
  • msp - Windows Installer patch
  • mst - Visual Test source files
  • pcd - "Photo CD image or Microsoft Visual Test compiled script"
  • pif - "Shortcut to MS-DOS program"
  • prf - "Microsoft Outlook Profile Settings"
  • reg - Registry files
  • scf - "Windows Explorer Command file"
  • scr - Screen saver
  • sct - Windows(R) script component
  • shb - Document shortcut
  • shs - Shell scrap object
  • url - Internet address
  • vb - Visual Basic file
  • vbe - Visual Basic encoded script file
  • vbs - Visual Basic file
  • vsd
  • vss
  • vst
  • vsw
  • wsc - Windows script component
  • wsf - Windows script file
  • wsh - Windows script host settings file

Based on experience and research, there are still many users who use this type of attachment. In order to secure the network, it has become necessary to block this type of attachments.

There is no ideal policy in here. Every system administrators must choose the best method depending on the situation being experienced by their organization. Flexihostings usually use the first option and provide training to users so they know these files are blocked and what the work around is for this situation.

Anti-spam Server

For increased mail security, we actively scan every email thats is received by the main server for spamming. On our shared hosting accounts, we provide our customers with their own Spamassasin to further filter any spam that might have leaked through our main server. The updates for our spam filters is done on a monthly basis or whenever there's a new update available.