From: | James |
---|---|
Date: | 5/24/17 3:52 PM |
Topic: | Microsoft Endpoint + Xeams |
Type: | General Discussions |
Post a follow up |
Hello, I was wondering if we could implement Microsoft Endpoint Protection (the server version of Windows Defender) with Xeams rather then using ClamAV. The idea is to protect the entire server including email flow coming into Xeams. Is there any specific requirements or any specific setup to allow this? is it a workable solution or do we need to exclude Xeams folders? I'm under the impression it should work fine as Xeams processes emails as flat files?
Thanks for your help :)
|
|
Top |
From: | Synametrics Support |
---|---|
Date: | 5/24/17 3:58 PM |
Topic: | Microsoft Endpoint + Xeams |
Type: | General Discussions |
Post a follow up |
James, Although we have not done this in our labs, theoretically speaking, you should be able to do this. Check http://www.xeams.com/external-tool.htm for details. I also recommend checking https://social.technet.microsoft.com/Forums/Azure/en-US/992cf5d5-514b-4930-b7ac-55e35470665f/command-line-scan-entire-directory?forum=FCSNext for some tips on how to use its command line version. |
|
Top |
From: | James |
---|---|
Date: | 5/26/17 6:56 AM |
Topic: | Microsoft Endpoint + Xeams |
Type: | General Discussions |
Post a follow up |
Perfect, thank you. The question is, does scanning need to be a spawned process? Can it not be left as default values with Endpoint checking emails as they are written to disk rather then as they are received to spawn?
Thanks, James
|
|
Top |
From: | Anonymous |
---|---|
Date: | 6/2/17 2:03 PM |
Topic: | Microsoft Endpoint + Xeams |
Type: | General Discussions |
Post a follow up |
Just a bump on the above question.
[Perfect, thank you. The question is, does scanning need to be a spawned process? Can it not be left as default values with Endpoint checking emails as they are written to disk rather then as they are received to spawn?]
Thanks Synametrics. |
|
Top |
From: | Synametrics Support |
---|---|
Date: | 6/5/17 2:52 PM |
Topic: | Microsoft Endpoint + Xeams |
Type: | General Discussions |
Post a follow up |
James, Yes, it has to spawn a process. It will only spawn if:
When a new message arrives, the entire message stays in Xeams memory until it is completely processed. When an attachment is encountered, Xeams will save the attached file to a temp folder, spawn the configured program and capture the results. There is a very good chance that 90% of the emails do not have anything attached and therefore, no spawning is required. |
|
Top |
From: | James |
---|---|
Date: | 6/5/17 2:40 PM |
Topic: | Microsoft Endpoint + Xeams |
Type: | General Discussions |
Post a follow up |
Perfect, thank you. The question is, does scanning need to be a spawned process? Can it not be left as default values with Endpoint checking emails as they are written to disk rather then as they are received to spawn?
Thanks, James |
|
Top |