Add ClamAV as module in Plesk to protect better the server. Thank you Parallels Team.
Is easy to use.
Plesk currently offers two high-quality anti-viruses and other related services like WAF. Integrating another anti-virus solution is an expensive undertaking, so we’d like you to let us know which ClamAV features are missing in anti-viruses and services already available in Plesk. This will help us properly evaluate and prioritize this request.
Over years i use the kaspersky av solution - i dont think that a clamAV integration is a better choice.
Costs of the kaspersky AV is like to eat one pizza - let me repeat: ONE PIZZA - in a month! :-D
Who arent able to "invest" this, should not be able mainatain a serverystem - i think!
Alexander Marinov commented
I don't know why we still comment on this. It should be obvious by now that this "feature" was chosen for monetization if one wants to feel more secure :)
So dear plesk team, yes we can integrate ClamAV on our own but then what is the benefit to pay for a "solution" if this requires additional effort to steup and *maintain*?!
If I'd like to go that route then I'd rather go fully self-managed than start hacking trough an encrypted 3rd party software. Thanks, but no thanks.
And IMO you are overestimating the value of Plesk if you think that the cost of a Plesk+Paid AV combo is worthy for a VPS installation.
You seem not audited the loss you are making, peoples have deserted Plesk for cpanel merely for you not integrating ClamAV or any other FREE AV support. This is a genuine request, this request is so old that in that period I know even Plesk is capable of developing there own FREE AV merely not just able to integrate.
Given the latest massive license fee increase for Plesk (reseller) licenses it would have been a miracle if Plesk dedicated time and money into establishing ClamAV as an additional option for mail scanning.
Seems like they only care about maximizing their profit...
Hi, we are updating status when there is some new information or status update from our end. Status updates are not frequent, but always meaningful.
Unfortunately we cannot report to you any major change as of now:
- this request is in remaining top5 (after higher priorities were delivered) and we fully recognize its priority for our customers
- for quite a while we were seeing ClamAV as an alternative to already provided Dr.Web and Kaspersky antiviruses and honestly we considered that 2 available options should be already enough, while there were many other requests to work on. Especially given relatively easy manual integration of ClamAV by a server admin (guidelines are available online)
- thanks to later posts of ClamAV supporters we re-evaluated ClamAV as a file scanner for web files, rather than for email. And in this context it definitely deserves more attention
As of now we have a bunch of tasks assigned for the next release, but once we deliver the next version, we will seriously consider this item. Should there be any update on actual status, we will post it here
We are thankful for everyones' votes and involvement
Ronald van Helden commented
Can one of the staff members please reply and update the previous response or add a new response with the current state?
Would be nice to be hearing something from you, as you are the ones who created the forum...
It doesn't make sense for us to create feature suggestions if it takes you more than 1,5 years to respond.
come on this is the biggest asked suggestion we are going to be in 2018 ... and still without FREE anti-viruses. How about thinking about making the internet a better place for all of us.
Having a FREE anti-viruses on Plesk would get you more users. i for one switched for Cpanel on 3 of my servers as of Plesk not having basic free anti-viruses.
Another alternative would be Sophos free Antivirus for Linux https://www.sophos.com/en-us/products/free-tools/sophos-antivirus-for-linux.aspx
4 Years ago, shame on you :/
It's 2017 and I just provisioned a Plesk VPS w/out anti-virus. Why? Because there's no built in AV enabled by default. How is this even possible? How hard/expensive could it be to make clamav built in by default while the dev staff undertakes massive projects such as wordpress toolkit [which is very awesome I admit]. ClamAV integration and default enabling would be tiny by comparison.
Why don´t you integrate ClamAV? I totally agree with all others. You should integrate it soon. @Thorsten, @anonymous @B_P
Since common tutorials already exist that show how to integrate ClamAV into a setup with Postfix, it is not really clear what should be that cost expensive to integrate it. The only reason could be that less customers will buy Dr. Web or Kaspersky as an add-on...
As indicated by @Thorsten, I totally agree that this should be included.
@anonymous "I can understand that Plesk only wants to add supported 3rd party software for this reason." I did't see neither this statement, nor any other statement from Plesk yet (after 1.5 years). The is a need for a free (maybe not perfect) standard solution; better not perfect than no protection. I think Plesk wants to sell 3rd party licenses which are more expensive than Plesk itself and didn't care about internet security by providing no default solution at all ... saying that, running servers with Plesk weakens safety of users and the Internet.
Sure, ClamAV is not enough: but ClamAV, a milter configuration, Spamassasin, rkhunter, firewall rules, regular updates, and maybe other hardening tools. I understand Plesk as a frontend for configuration Linux / Windows systems, to simplify administration. If you say that I can do it manually, for sure, why I should use Plesk then at all?
There are pros/cons as in every decision regarding adding features or not.
Yes it would be nice to have ClamAv supported. This would allow a lowcost security solution. The issue i see here is that ClamAv alone is not enough, but users would expect this to be a full protection solution (thats what ClamAv is not without manual adjustments). I can understand that Plesk only wants to add supported 3rd party software for this reason.
For those who do want to use ClamAV it can be integrated within a few minutes by just installing a system package and adjusting plain text config files.
avg support commented
Avg is I think one of the best anti-virus
"Integrating another anti-virus solution is an expensive undertaking, "
: Expensive undertaking means you sell less ridiculous expensive commercial third party antivirus licenses?
"... we’d like you to let us know which ClamAV features are missing in anti-viruses and services already available in Plesk."
: ClamAV IS missing... just add it as an option (a) install the related packages; (b) add the milter in Postfix. Level of Done: DONE
"This will help us properly evaluate and prioritize this request."
: Now, 1,5 years for evaluation, grooming/ planning, and prioritizing is more than enough... Conclusion?
Very BAD marketing...
Wenn ich anfangen muss an der Kommandozeile das System zu konfigurieren, welchen Zweck hat dann gleich noch Plesk? Hier geht es um eine Unterstützung durch Plesk - und da diese ja wie beschrieben relativ trivial ist, sollte die Umsetzung ebenso trivial sein. Fakt ist aber: Plesk will Drittanbieter-Software verkaufen, die teuerer als die Plesk-Lizenz selbst ist und startet hier unsinnige Umfragen, ignoriert sie dann aber und schweigt sich aus. Dass nenne ich User Centric Design und Kundenzufriedenheit. Oder das Plesk-Team hat Plesk einfach falsch konfiguriert und bekommt die Antworten dieses Threads gar nicht mit... ;)
If I'm forced to use the command line, which use case fulfills Plesk? Do I need it anymore? This thread is about supporting a (open source) Linux system standard (ClamAV + the related postfix milter); its simple to configure, so the integration into Plesk should be trivial. And hey, Plesk asked us, we answered and now they ignore us). Maybe they are not able to read their own uservoice by a misconfiguration of their Plesk instance...
Es geht doch ( das stammt von einer Centos 6 mit Plesk 17.0 ):
X-Virus-Checker: Scanned by SAV Dynamic Interface 2.5.0 3.68.0 2017-06-15 5.40 on genf132.server4you.de ( no virus );
Mon, 19 Jun 2017 09:12:43 +0200
Received-SPF: none (no valid SPF record)
X-Virus-Scanned: clamav-milter 0.99.2 at genf132.server4you.de
Received: from [192.168.78.101] ([22.214.171.124]) by mrelayeu.kundenserver.de
(mreue004 [126.96.36.199]) with ESMTPSA (Nemesis) id
0MUjkW-1dJQWx3WXM-00YEAK for <email@example.com>; Mon, 19 Jun 2017
Wer es nicht schafft, ein Paket mit yum zu installieren und eine Zeile in der Postfix Konfiguration zu ändern, muß halt leiden.
with all the votes its clear that this FREE anti-virus is needed!
Ronald van Helden commented
I would really like to have an free opensource option to use with plesk
Why doesn't you use clamav-milter. ? Yes it is offical part of the clamav package. If you build clamav from a source RPM, it creates iIRC 3 binary RPMs, one of them is clamav-milter
You should find a clamav-milter .RPM or .deb for your OS
I'm admin on a plesk 17.0 /Centos 6 Server. There is clamav-milter running in Addition to Plesk PA ( without key ). Runs fine with postfix, is free and because the usual clamd is used, your Extended signatures should work.
You have to install clamav-milter, clamd and freshclam and setup them. modify one single line in postfix config and as long you don't change the mailer from postfix to qmail and back or add/remove outgoing spam protection extention ( you have to pay for ) Plesk doesn't touch this line anymore, i think.
BTW: there exists a some years old solution ( http://heirich.eu/drupal-7/clamav-plesk ) for clamav using within Plesk 10 and qmail using a mailhandler written in perl. however because the mailhandler Interface is still unchanged up to date and they don't differ between postfix and qmail this old solution should still work . Not sure, because i've gone to clamav-milter and does not need this solution anymore, since some years. Checking the same mail twice using the same av-scanner is senseless.