Installing PureMessage

This document describes how to install, configure and implement PureMessage. It is recommended that you first read the “Deployment Strategies” section of this guide, which provides examples of single-server and multi-server configurations, along with suggestions for phasing in PureMessage installations. For an overview of PureMessage and basic operating instructions, see the “Quick Reference Guide”.

Important You must perform all installations as the root user.

Digitally Signed Installations

PureMessage uses certificate validation to verify the authenticity of installations, upgrades, and all subsequent software and data updates. Downloads from Sophos are signed with a private key that matches the public key embedded in the PureMessage validator application. This offers protection in the event that someone attempts to spoof the Sophos website to make it appear as though you are downloading from a trusted source. If a data or software update is interrupted, a partial update is not applied. This ensures the validity and completeness of the download.

In addition, you can configure PureMessage to notify you via email when a download fails the verification. This is done by enabling email notifications for scheduled jobs (see the scheduler.conf man page for more information).