Site Map Contact Us Home
E-mail Newsletter
Subscribe to get informed about
Clever Components news.

Your Name:
Your Email:
 
SUBSCRIBE
 
Previous Newsletters
 




Products Articles Downloads Order Support
Customer Portal      

MailClient with AntiVirus in Delphi

Abstract

These days there are a lot of different ways of exchanging documents, data and any other important information. Among of these technologies, E-mail is the most commonly used way of exchanging information. As a result, Emails are widely used for disturbing with unwanted messages, as viruses and Trojans and other bad codes. That is why it is necessary to protect users by integrating an E-mail anti-virus scan functionality to E-mail client and server programs.

This article demonstrates how to write a simple Mail client program in Delphi with a functionality similar to the Windows Live Mail client that allows you to receve E-mails from the POP3 mailbox, scan it on the fly with anti-virus and display to the user. The message composing and sending via the SMTP protocol with embedded images and file attachments is implemented as well. The program allows you to connect to secure mail servers, such as Google Mail and Yahoo Mail via SSL/TLS.

This Delphi project represents a basic yet fully functional E-mail client, which utilizes the TRichView components to display and edit HTML messages, Clever SMTP and POP3 components to send and retrieve E-mails. The downloaded messages are scanned using the ClamAV antivirus library.

MailClient with AntiVirus in Delphi

 

Receive E-mail and parse the raw message source

For both, receiving and sending E-mails and also for the parsing of received messages we will use the Internet Components from the Clever Internet Suite. These components implement the necessary functionality for working with mails, and can be easily integrated with anti-virus scanner API. The Clever Internet Suite can connect to the POP3 mailbox, download E-mails, manage mailboxes via an IMAP4 protocol, send E-mails via SMTP and so on. The SSL/TLS encryption is supported as well. The TclMailMessage component works with MIME-formatted E-mails, parses raw message sources, extracts both, text and HTML bodies, embedded images and file attachments, composes new messages in any appropriate format.

clMailMessage.BuildMessage(text, html, imageList, attachmentList);
clMailMessage.Subject := subject;
clMailMessage.From.FullAddress := fromAddress;
clMailMessage.ToList.Add(recipient);

clSMTP.Server := FAccounts.SMTPServer;
clSMTP.UserName := FAccounts.SMTPUser;
clSMTP.Password := FAccounts.SMTPPassword;
clSMTP.Open();
clSMTP.Send(clMailMessage);

...
clPOP3.Open();
for i := 0 to clPOP3.MessageCount - 1 do
begin
      clPOP3.Retrieve(i+1, clMailMessage);
      text := clMailMessage.Text;
      html := clMailMessage.Html;
      subject := clMailMessage.Subject;
....
end;

If you need to digitally sign or encrypt your mail with x509 certificates, choose another component - TclSMimeMessage. This component is inherited from the TclMailMessage, and can be easily incorporated into your code for SMIME message support.

In addition you can use any third-party Internet library, e.g. Indy, for connecting to the POP3 mailbox, sending messages via an SMTP protocol and parsing raw message sources. Depending on the selected library, the implemented features in your program may change.

 

Call anti-virus scan programmatically

As an example of an anti-virus scanner, we used the Clam AV antivirus engine. This is an open source (GPL) solution designed for detecting Trojans, viruses, malware and other malicious threats. It contains also the Delphi API. So we can easily integrate it into our project. Alternatively you can use any other anti-virus scanner, which provides you with a similar functionality and allows scanning memory blocks and/or files onto the disk. See also Symantec Scan Engine

For instance, let us write a special basic wrapper class with abstract scanning methods and an inherited class that implements the ClamAV API:

TclAVScanner = class
...
protected
    function ScanMessageSource(Msg: TStrings): Boolean; virtual; abstract;
    function ScanAttachment(const AFileName: string): Boolean; virtual; abstract;
public
    function ScanMessage(Msg: TStrings): Boolean;
    property TempDir: string read FTempDir write SetTempDir;
end;

TclClamAVScanner = class(TclAVScanner)
private
    FAV: TClamAV;
....
protected
    function ScanMessageSource(Msg: TStrings): Boolean; override;
    function ScanAttachment(const AFileName: string): Boolean; override;
...
end;

function TclClamAVScanner.ScanMessageSource(Msg: TStrings): Boolean;
begin
    Result := (FAV.ScanMem(Msg.Text) = '');
end;

function TclClamAVScanner.ScanAttachment(const AFileName: string): Boolean;
begin
    Result := (FAV.ScanFile(AFileName) = '');
end; 

The TClamAV class is declared in Clam AV API and can be downloaded at ClamAV antivirus, Delphi edition

A malicious code can be within the message body or come together with encoded and packed attachments. So the best choice is to scan both 1) the raw message source and 2) the E-mail attachments extracted and saved to a temporary folder on the disk. The TclMailMessage component does all the work easily:

MsgSource: TStringList.Create;
//load  MsgSource  with raw message source
...
FMailMessage := TclMailMessage.Create(nil);
FMailMessage.OnSaveAttachment := DoMailMessageSaveAttachment;
FMailMessage.MessageSource := MsgSource;
.....

procedure TclAVScanner.DoMailMessageSaveAttachment(Sender: TObject;
    ABody: TclAttachmentBody; const AFileName: string; var AData: TStream; var Handled: Boolean);
begin
    AData := TFileStream.Create(AFileName, fmCreate);
    Handled := True;
end;

 

View and Edit the message content

For displaying and editing the E-mail content the TRichView component from www.trichview.com will be used. TRichView is a suite of native Delphi/C++Builder components for displaying, editing and printing hypertext documents. This component can be easily integrated with Clever Internet Suite E-mail components. There is a demo, which provides the functionality of simple E-mail client and allows composing, sending, receiving and managing messages on POP3 mailbox: Functions for editing and sending HTML emails with the Clever Internet Suite

We can use this demo as as a starting point for developing our E-mail client with an anti-virus scanner. All that we need is adding an additional folder to the folders list. This folder will be used for stoding of infected messages.

Next, we need to create an instance of the TclClamAVScanner object and, finally, call it when receiving E-mails:

for i := 0 to clPOP3.MessageCount - 1 do
begin
....
    clPOP3.Retrieve(i+1);
    MsgItem.MailMessage.Assign(clPOP3.Response);

    if not FAVScanner.ScanMessage(MsgItem.MailMessage) then
    begin
        MsgItem.Status := msInfected;
    end;
....
end;

Please check the demo from the link above, to learn more about the message retrieving function.

 

How to compile

  1. Please clone the GitHub/CleverComponents/MailClient-AntiVirus repository.
  2. Download and install the Clever Internet Suite library.
  3. Download and install the TRichView library.
  4. Download and install the HtmlViewer library.
  5. Open and compile the MailClient project in your Delphi IDE.
  6. Enjoy.

Daily virus databases (cvd files) should be downloaded and stored to the MailClient folder near the application executable: ClamAV

 

Notes

The current version of the MailClient project uses an outdated version of ClamAV Delphi client library. You can still download it here: ClamAV for Delphi This is a drawback, and we suggest a task to replace this library with Delphi/Object Pascal ClamAV API Binding or any other antivirus library.

 

Further development

The next step is incorporating the anti-virus scan to your E-mail server. In case of using of TclSmtpServer and TclPop3Server components, you will need to call to the TclAVScanner inside the handler of the corresponding component event:

procedure TclSmtpServerTester.DoOnMessageReceived(Sender: TObject; AConnection: TclSmtpCommandConnection;
     const AMailFrom: string; ARecipients: TStrings; AMessage: TStrings; var Action: TclSmtpMailDataAction);
begin
    if not FAVScanner.ScanMessage(AMessage) then
    begin
        AddWarningToMessage(AMessage);
    end;
end; 

 

In the next article of this series we will implement a simple mail server; it will have an ability to accept and deliver mails to local users with anti-virus checking and relay mails to external recipients.

Follow us in our Facebook group, Twitter and Telegram channel.

Feel free to subscribe to our Email list

Ask a question in Customer Portal

 

Sergey Shirokov, Internet components developer,
Clever Components team
www.clevercomponents.com

    Copyright © 2000-2024