Feature #2865

POP3 transparent proxy

Added by Filippo Carletti about 5 years ago. Updated about 5 years ago.

Status:CLOSEDStart date:
Priority:NormalDue date:
Assignee:-% Done:

100%

Category:nethserver-p3scan
Target version:v6.5
Resolution: NEEDINFO:Yes

Description

LAN clients should have their external pop3 connections intercepted to be scanned for virus/spam.
I'd use p3scan. I have a working src.rpm to begin.

Associated revisions

Revision e165dcd8
Added by Giacomo Sanchietti about 5 years ago

First import. Refs #2865

Revision 23239956
Added by Giacomo Sanchietti about 5 years ago

Web UI: add simple web interface. Refs #2865

Revision 51a6d5d2
Added by Giacomo Sanchietti about 5 years ago

createlinks: fix service name. Refs #2865

Revision 45c195e6
Added by Giacomo Sanchietti about 5 years ago

First source code import. Refs #2865

Revision 87056fba
Added by Davide Principi about 5 years ago

*.spec.in: reduce RPM dependencies. Refs #2865

nethserver-mail-filter reduced to nethserver-antivirus and spamassasin.

Revision 60ab7e7b
Added by Giacomo Sanchietti about 5 years ago

Init scripts: handle service with upstart. Refs #2865

Revision cf860dca
Added by Giacomo Sanchietti about 5 years ago

Help: add inline help. Refs #2865

Revision 2553a4b0
Added by Giacomo Sanchietti about 5 years ago

firewall category: add p3scan. Refs #2865

History

#1 Updated by Filippo Carletti about 5 years ago

  • Target version set to ~FUTURE

#2 Updated by Giacomo Sanchietti about 5 years ago

  • Status changed from NEW to TRIAGED
  • Target version changed from ~FUTURE to v6.5
  • % Done changed from 0 to 20
Create a web interface where the user can:
  • enable/disable the service: when the service is enabled, port 110 will be redirect to p3scan
  • enable/disable spam check
  • enable/disable antivirus check

Also handle migration from old releases.

#3 Updated by Giacomo Sanchietti about 5 years ago

  • Category set to nethserver-p3scan

#4 Updated by Giacomo Sanchietti about 5 years ago

  • Status changed from TRIAGED to ON_DEV
  • Assignee set to Giacomo Sanchietti
  • % Done changed from 20 to 30

#5 Updated by Giacomo Sanchietti about 5 years ago

  • Assignee deleted (Giacomo Sanchietti)
The package has two main problems:
  • can't compile p3scan binary using nethserver-devbox
  • when p3scan service is started from runlevel-adjust or adjust-services actions, calling event is stuck. Maybe is something related to #2696? I can't figure it out.
What else is missing:
  • inline help
  • documentation on admin manual
  • documentation on developer manual (see: Nethserver-p3scan)

#6 Updated by Giacomo Sanchietti about 5 years ago

The problem on init.d script can be fixed using upstart.

/etc/e-smith/templates.metadata/etc/init/p3scan.conf:

TEMPLATE_PATH='upstart-job'
OUTPUT_FILENAME='/etc/init/p3scan.conf'
MORE_DATA={ name => 'p3scan', description => 'POP3 proxy', author => 'Giacomo Sanchietti <giacomo.sanchietti@nethesis.it>', daemon_bin => '/usr/sbin/p3scan', daemon_args => '', respawn => 1, 'expect' => 'fork', stop_on => 'stopping network', start_on => 'started network' }

#7 Updated by Giacomo Sanchietti about 5 years ago

Since p3scan code is almost not maintained, I just create a new p3scan repository with spec and sources.
The build system can now correctly create p3scan rpm.

#8 Updated by Giacomo Sanchietti about 5 years ago

  • Assignee set to Giacomo Sanchietti

#9 Updated by Giacomo Sanchietti about 5 years ago

  • Status changed from ON_DEV to MODIFIED
  • % Done changed from 30 to 60

P3scan is now handled by upstart. Also added inline help.

#10 Updated by Giacomo Sanchietti about 5 years ago

  • Status changed from MODIFIED to ON_QA
  • Assignee deleted (Giacomo Sanchietti)
  • % Done changed from 60 to 70
Package in nethserver-testing:
  • nethserver-p3scan-0.0.2-3.0git72c5384b.ns6.noarch.rpm
    nethserver-p3scan-0.0.2-3.0git87056fba.ns6.noarch.rpm
  • p3scan-2.3.2-1.x86_64.rpm
Test case 1
  • Enable p3scan without POP3s
  • Check the firewall is restarted with redirect rule for port 110
Test case 2
  • Enable p3scan with POP3s
  • Check the firewall is restarted with redirect rules for port 110 and 995
Test case 3
  • Try to enable and disable the service multiple times from web interface
  • Check p3scan status reflects the selected one
Test case 4
  • Try to enable and disable antispam and antivirus checks
  • Check p3scan configuration reflects the selected options
Before release:
  • create chapter for administrator manual
  • create chapter for developer manual
  • add package to Firewall category inside yum comps file

#11 Updated by Davide Principi about 5 years ago

  • Assignee set to Davide Principi

#12 Updated by Davide Principi about 5 years ago

  • Status changed from ON_QA to VERIFIED
  • Assignee deleted (Davide Principi)
  • % Done changed from 70 to 90
  • NEEDINFO changed from No to Yes

Test case 1 OK

Test case 2 OK

Test case 3 OK

Test case 4 OK

VERIFIED

Note: the nethserver-mail-filter dependency has been reduced to nethserver-antivirus and spamassassin.

#13 Updated by Giacomo Sanchietti about 5 years ago

  • Status changed from VERIFIED to CLOSED
  • % Done changed from 90 to 100
Release in nethserver-updates:
  • nethserver-p3scan-1.0.0-1.ns6.noarch.rpm
Documentation:

Also available in: Atom PDF