john at gallaghernet
Mar 11, 2005, 1:23 AM
Post #2 of 2
(614 views)
Permalink
|
|
RE: Use of ClamAV 0.83 on Red Enterprise Linux 3
[In reply to]
|
|
>Am I missing anything important?
>Thanks in advance...
>Edward W. Ray
>CISSP, MCSE 2003+Security, P.E. GCIA, GCIH
>NetSec Design & Consulting
I would install postfix and remove sendmail (use apt or yum) get the apt rpm
from dag it will make things much easier.
ftp://rpmfind.net/linux/dag/redhat/el3/en/i386/dag/RPMS/apt-0.5.15cnc6-3.1.e
l3.dag.i386.rpm
Then install Amavisd, spamassassin, razor from dag
apt-get update
apt-cache search amavis
apt-get install amavisd clamd spamassassin razor
download and compile dcc
http://flakshack.com/anti-spam/wiki/index.php?page=Installing+DCC
You can install most of this from RPMS on DAG using apt and it works without
much needing to be done. For detailed configuration help on some of this
check out http://www.flakshack.com/anti-spam/wiki/index.php.
Modify postfix:
#vi /etc/postfix/main.cf
Read and uncomment the basic postfix config items(mydomain, mynetworks....)
Add the following line:
content_filter=smtp-amavis:[127.0.0.1]:10024
#vi /etc/postfix/aliases
Set the alias for root.
#vi /etc/postfix/master.cf
#ADD THE FOLLOWING
smtp-amavis unix - - n - 3 smtp
-o smtp_data_done_timeout=1200
-o disable_dns_lookups=yes
127.0.0.1:10025 inet n - n - - smtpd
-o content_filter=
-o local_recipient_maps=
-o relay_recipient_maps=
-o smtpd_restriction_classes=
-o smtpd_client_restrictions=
-o smtpd_helo_restrictions=
-o smtpd_sender_restrictions=
-o smtpd_recipient_restrictions=permit_mynetworks,reject
-o mynetworks=127.0.0.0/8
-o strict_rfc821_envelopes=yes
Restart postfix:
service postfix restart
Turn on the applications:
#chkconfig amavisd on
#chkconfig clamd on
#chkconfig postfix on
#vi /etc/mail/spamassassin/local.cf
report_safe 0
use_bayes 1
bayes_path /var/amavisd/.spamassassin/bayes
skip_rbl_checks 0
use_razor2 1
use_dcc 1
use_pyzor 0
dns_available yes
header LOCAL_RCVD Received =~ /.*\(\S+\.domain\.com\s+\[.*\]\)/
describe LOCAL_RCVD Received from local machine
score LOCAL_RCVD -50
#vi /etc/amavis.conf
Modify how you want to handle spam, virus mail....
$mydomain = 'yourdomain.com'
$virus_admin = "yourname\@$mydomain"; # notifications recip.
$spam_admin = "yourname\@$mydomain"; # notifications recip.
$mailfrom_notify_admin = "yourname\@$mydomain"; # notifications sender
$mailfrom_notify_recip = "yourname\@$mydomain"; # notifications sender
$mailfrom_notify_spamadmin = "yourname\@$mydomain"; # notifications sender
$mailfrom_to_quarantine = ''; # null return path; uses original sender if
undef
$final_virus_destiny = D_DISCARD;
$final_banned_destiny = D_BOUNCE;
$final_spam_destiny = D_BOUNCE;
$final_bad_header_destiny = D_BOUNCE;
Restart everything and test.
_______________________________________________
http://lurker.clamav.net/list/clamav-users.html
|
