I suggest you ...

Add ClamAV as module in Plesk to protect better the server. Thank you Parallels Team.

Is easy to use.

512 votes
Sign in
Check!
(thinking…)
Reset
or sign in with
  • facebook
  • google
    Password icon
    I agree to the terms of service
    Signed in as (Sign out)

    We’ll send you updates on this idea

    German shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →
    open discussion  ·  AdminPlesk Staff (Admin, Plesk International GmbH) responded  · 

    Plesk currently offers two high-quality anti-viruses and other related services like WAF. Integrating another anti-virus solution is an expensive undertaking, so we’d like you to let us know which ClamAV features are missing in anti-viruses and services already available in Plesk. This will help us properly evaluate and prioritize this request.

    —AK

    98 comments

    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • facebook
    • google
      Password icon
      I agree to the terms of service
      Signed in as (Sign out)
      Submitting...
      • TronNort commented  ·   ·  Flag as inappropriate

        Over years i use the kaspersky av solution - i dont think that a clamAV integration is a better choice.

        Costs of the kaspersky AV is like to eat one pizza - let me repeat: ONE PIZZA - in a month! :-D
        Who arent able to "invest" this, should not be able mainatain a serverystem - i think!

      • Alexander Marinov commented  ·   ·  Flag as inappropriate

        I don't know why we still comment on this. It should be obvious by now that this "feature" was chosen for monetization if one wants to feel more secure :)

        So dear plesk team, yes we can integrate ClamAV on our own but then what is the benefit to pay for a "solution" if this requires additional effort to steup and *maintain*?!

        If I'd like to go that route then I'd rather go fully self-managed than start hacking trough an encrypted 3rd party software. Thanks, but no thanks.

        And IMO you are overestimating the value of Plesk if you think that the cost of a Plesk+Paid AV combo is worthy for a VPS installation.

      • Anonymous commented  ·   ·  Flag as inappropriate

        You seem not audited the loss you are making, peoples have deserted Plesk for cpanel merely for you not integrating ClamAV or any other FREE AV support. This is a genuine request, this request is so old that in that period I know even Plesk is capable of developing there own FREE AV merely not just able to integrate.

      • Me commented  ·   ·  Flag as inappropriate

        Given the latest massive license fee increase for Plesk (reseller) licenses it would have been a miracle if Plesk dedicated time and money into establishing ClamAV as an additional option for mail scanning.
        Seems like they only care about maximizing their profit...

      • AdminSergey L (Director of Program Management, Plesk International GmbH) commented  ·   ·  Flag as inappropriate

        Hi, we are updating status when there is some new information or status update from our end. Status updates are not frequent, but always meaningful.

        Unfortunately we cannot report to you any major change as of now:
        - this request is in remaining top5 (after higher priorities were delivered) and we fully recognize its priority for our customers
        - for quite a while we were seeing ClamAV as an alternative to already provided Dr.Web and Kaspersky antiviruses and honestly we considered that 2 available options should be already enough, while there were many other requests to work on. Especially given relatively easy manual integration of ClamAV by a server admin (guidelines are available online)
        - thanks to later posts of ClamAV supporters we re-evaluated ClamAV as a file scanner for web files, rather than for email. And in this context it definitely deserves more attention

        As of now we have a bunch of tasks assigned for the next release, but once we deliver the next version, we will seriously consider this item. Should there be any update on actual status, we will post it here

        We are thankful for everyones' votes and involvement

      • Ronald van Helden commented  ·   ·  Flag as inappropriate

        Can one of the staff members please reply and update the previous response or add a new response with the current state?

        Would be nice to be hearing something from you, as you are the ones who created the forum...
        It doesn't make sense for us to create feature suggestions if it takes you more than 1,5 years to respond.

      • raykai commented  ·   ·  Flag as inappropriate

        come on this is the biggest asked suggestion we are going to be in 2018 ... and still without FREE anti-viruses. How about thinking about making the internet a better place for all of us.

        Having a FREE anti-viruses on Plesk would get you more users. i for one switched for Cpanel on 3 of my servers as of Plesk not having basic free anti-viruses.

        Another alternative would be Sophos free Antivirus for Linux https://www.sophos.com/en-us/products/free-tools/sophos-antivirus-for-linux.aspx

      • ARad commented  ·   ·  Flag as inappropriate

        It's 2017 and I just provisioned a Plesk VPS w/out anti-virus. Why? Because there's no built in AV enabled by default. How is this even possible? How hard/expensive could it be to make clamav built in by default while the dev staff undertakes massive projects such as wordpress toolkit [which is very awesome I admit]. ClamAV integration and default enabling would be tiny by comparison.

      • Wack commented  ·   ·  Flag as inappropriate

        Why don´t you integrate ClamAV? I totally agree with all others. You should integrate it soon. @Thorsten, @anonymous @B_P

      • B_P commented  ·   ·  Flag as inappropriate

        Since common tutorials already exist that show how to integrate ClamAV into a setup with Postfix, it is not really clear what should be that cost expensive to integrate it. The only reason could be that less customers will buy Dr. Web or Kaspersky as an add-on...
        As indicated by @Thorsten, I totally agree that this should be included.

      • Thorsten commented  ·   ·  Flag as inappropriate

        @anonymous "I can understand that Plesk only wants to add supported 3rd party software for this reason." I did't see neither this statement, nor any other statement from Plesk yet (after 1.5 years). The is a need for a free (maybe not perfect) standard solution; better not perfect than no protection. I think Plesk wants to sell 3rd party licenses which are more expensive than Plesk itself and didn't care about internet security by providing no default solution at all ... saying that, running servers with Plesk weakens safety of users and the Internet.
        Sure, ClamAV is not enough: but ClamAV, a milter configuration, Spamassasin, rkhunter, firewall rules, regular updates, and maybe other hardening tools. I understand Plesk as a frontend for configuration Linux / Windows systems, to simplify administration. If you say that I can do it manually, for sure, why I should use Plesk then at all?

      • Anonymous commented  ·   ·  Flag as inappropriate

        There are pros/cons as in every decision regarding adding features or not.

        Yes it would be nice to have ClamAv supported. This would allow a lowcost security solution. The issue i see here is that ClamAv alone is not enough, but users would expect this to be a full protection solution (thats what ClamAv is not without manual adjustments). I can understand that Plesk only wants to add supported 3rd party software for this reason.

        For those who do want to use ClamAV it can be integrated within a few minutes by just installing a system package and adjusting plain text config files.

      • Thorsten commented  ·   ·  Flag as inappropriate

        "Integrating another anti-virus solution is an expensive undertaking, "

        : Expensive undertaking means you sell less ridiculous expensive commercial third party antivirus licenses?

        "... we’d like you to let us know which ClamAV features are missing in anti-viruses and services already available in Plesk."

        : ClamAV IS missing... just add it as an option (a) install the related packages; (b) add the milter in Postfix. Level of Done: DONE

        "This will help us properly evaluate and prioritize this request."

        : Now, 1,5 years for evaluation, grooming/ planning, and prioritizing is more than enough... Conclusion?

        Very BAD marketing...

      • Thorsten commented  ·   ·  Flag as inappropriate

        Wenn ich anfangen muss an der Kommandozeile das System zu konfigurieren, welchen Zweck hat dann gleich noch Plesk? Hier geht es um eine Unterstützung durch Plesk - und da diese ja wie beschrieben relativ trivial ist, sollte die Umsetzung ebenso trivial sein. Fakt ist aber: Plesk will Drittanbieter-Software verkaufen, die teuerer als die Plesk-Lizenz selbst ist und startet hier unsinnige Umfragen, ignoriert sie dann aber und schweigt sich aus. Dass nenne ich User Centric Design und Kundenzufriedenheit. Oder das Plesk-Team hat Plesk einfach falsch konfiguriert und bekommt die Antworten dieses Threads gar nicht mit... ;)

        If I'm forced to use the command line, which use case fulfills Plesk? Do I need it anymore? This thread is about supporting a (open source) Linux system standard (ClamAV + the related postfix milter); its simple to configure, so the integration into Plesk should be trivial. And hey, Plesk asked us, we answered and now they ignore us). Maybe they are not able to read their own uservoice by a misconfiguration of their Plesk instance...

      • hitd commented  ·   ·  Flag as inappropriate

        Es geht doch ( das stammt von einer Centos 6 mit Plesk 17.0 ):

        X-Virus-Checker: Scanned by SAV Dynamic Interface 2.5.0 3.68.0 2017-06-15 5.40 on genf132.server4you.de ( no virus );
        Mon, 19 Jun 2017 09:12:43 +0200
        Received-SPF: none (no valid SPF record)

        X-Virus-Status: Clean
        X-Virus-Scanned: clamav-milter 0.99.2 at genf132.server4you.de

        Received: from [192.168.78.101] ([77.64.252.42]) by mrelayeu.kundenserver.de
        (mreue004 [212.227.15.167]) with ESMTPSA (Nemesis) id
        0MUjkW-1dJQWx3WXM-00YEAK for <peter@service.heirich.eu>; Mon, 19 Jun 2017
        09:12:39 +0200

        Wer es nicht schafft, ein Paket mit yum zu installieren und eine Zeile in der Postfix Konfiguration zu ändern, muß halt leiden.

      • hitd commented  ·   ·  Flag as inappropriate

        @wiz
        Why doesn't you use clamav-milter. ? Yes it is offical part of the clamav package. If you build clamav from a source RPM, it creates iIRC 3 binary RPMs, one of them is clamav-milter

        You should find a clamav-milter .RPM or .deb for your OS

        I'm admin on a plesk 17.0 /Centos 6 Server. There is clamav-milter running in Addition to Plesk PA ( without key ). Runs fine with postfix, is free and because the usual clamd is used, your Extended signatures should work.

        You have to install clamav-milter, clamd and freshclam and setup them. modify one single line in postfix config and as long you don't change the mailer from postfix to qmail and back or add/remove outgoing spam protection extention ( you have to pay for ) Plesk doesn't touch this line anymore, i think.

        BTW: there exists a some years old solution ( http://heirich.eu/drupal-7/clamav-plesk ) for clamav using within Plesk 10 and qmail using a mailhandler written in perl. however because the mailhandler Interface is still unchanged up to date and they don't differ between postfix and qmail this old solution should still work . Not sure, because i've gone to clamav-milter and does not need this solution anymore, since some years. Checking the same mail twice using the same av-scanner is senseless.

      ← Previous 1 3 4 5

      Feedback and Knowledge Base