ESET Online Help

Search English
Select the topic

Email protocols

The IMAP and POP3 protocols are the most widespread protocols used to receive email communication in an email client application. The Internet Message Access Protocol (IMAP) is another internet protocol for email retrieval. IMAP has some advantages over POP3, for example, multiple clients can simultaneously connect to the same mailbox and maintain message state information such as whether or not the message has been read, replied to or deleted. The protection module providing this control is automatically initiated at system startup and is then active in memory.

ESET Endpoint Antivirus provides protection for these protocols regardless of the email client used, and without requiring re-configuration of the email client. By default, all communication over POP3 and IMAP protocols is scanned, regardless of the default POP3/IMAP port numbers.
MAPI protocol is not scanned. However the communication with the Microsoft Exchange server can be scanned by the integration module in email clients such as Microsoft Outlook.

We recommend that you keep Enable email protection by protocol filtering enabled. To configure IMAP/IMAPS and POP3/POP3S protocol checking, navigate to Advanced setup (F5) > Web and email > Email client protection > Email protocols.

ESET Endpoint Antivirus also supports the scanning of IMAPS (585, 993) and POP3S (995) protocols, which use an encrypted channel to transfer information between server and client. ESET Endpoint Antivirus checks communication utilizing the SSL (Secure Socket Layer), and TLS (Transport Layer Security) protocols. The program will only scan traffic on ports defined in Ports used by IMAPS/POP3S protocol, regardless of operating system version. Other communication ports can be added if necessary. Multiple port numbers must be delimited by a comma.

Encrypted communication will be scanned by default. To view the scanner setup, navigate to SSL/TLS in the Advanced setup section, click Web and email > SSL/TLS, and enable the Enable SSL/TLS protocol filtering option.

CONFIG_EPFW_SCAN_IMAP