Cisco Cisco Email Security Appliance C160 Mode D'Emploi
15-33
Cisco IronPort AsyncOS 7.5 for Email Configuration Guide
OL-25136-01
Chapter 15 System Administration
Directory Harvest Attack Prevention (DHAP) Alerts
contains a list of the various DHAP alerts that can be generated by
AsyncOS, including a description of the alert and the alert severity.
MAIL.ANTIVIRUS.
ERROR_MESSAGE
ERROR_MESSAGE
MID $mid antivirus $what error
$tag
$tag
‘mid’ - MID
’what’ - The error that
happened.
happened.
’tag’ - Virus outbreak
name if set.
name if set.
Critical. Sent when anti-virus
scanning produces an error
while scanning a message.
scanning produces an error
while scanning a message.
MAIL.SCANNER.
PROTOCOL_MAX_RETRY
MID $mid is malformed and
cannot be scanned by $engine.
cannot be scanned by $engine.
‘mid’ - MID
’engine’ - The engine
being used
being used
Critical. The scanning engine
attempted to scan the message
unsuccessfully because the
message is malformed. The
maximum number of retries has
been exceeded, and the message
will be processed without being
scanned by this engine.
attempted to scan the message
unsuccessfully because the
message is malformed. The
maximum number of retries has
been exceeded, and the message
will be processed without being
scanned by this engine.
Table 15-3
Listing of Possible Anti-Virus Alerts (Continued)
Alert Name
Message and Description
Parameters
Table 15-4
Listing of Possible Directory Harvest Attack Prevention Alerts
Alert Name
Message and Description
Parameters
LDAP.DHAP_ALERT
LDAP: Potential Directory Harvest
Attack detected. See the system mail
logs for more information about this
attack.
Attack detected. See the system mail
logs for more information about this
attack.
Warning. Sent when a possible
directory harvest attack is detected.
directory harvest attack is detected.