Hier werden die Unterschiede zwischen zwei Versionen gezeigt.
lpi2:postfix-amavis [2010/02/19 08:21] |
lpi2:postfix-amavis [2010/02/19 08:21] (aktuell) |
||
---|---|---|---|
Zeile 1: | Zeile 1: | ||
+ | ====== Voraussetzungen ====== | ||
+ | Grundinstallation [[postfix]] | ||
+ | |||
+ | |||
+ | ====== Benötigte Pakete ====== | ||
+ | Debian : ( 5.0 ) | ||
+ | amavisd-new clamav clamav-daemon | ||
+ | |||
+ | Debian Pakete zu amavis und clamav bezieht man besser von debian-volatile (( http://www.debian.org/volatile )): | ||
+ | |||
+ | ''/etc/apt/sources.list'' : siehe auch secure_apt in [[ paketverwaltung ]] | ||
+ | <file>deb http://volatile.debian.org/debian-volatile etch/volatile main contrib non-free</file> | ||
+ | |||
+ | SuSE Linux 10.0: | ||
+ | amavisd-new clamav | ||
+ | |||
+ | CentOS 5 : | ||
+ | |||
+ | CentOS liefert keine Pakete für amavis und clamav mit. Das Repository rpmforge bietet welche für CentOS | ||
+ | |||
+ | ====== Konfiguration freshclam ====== | ||
+ | Die Virensignaturen werden mit Hilfe des Deamons ''freshclam'' aktuell gehalten. Beim ersten Start ruft ''freshclam'' aktuelle Virensignaturen von der Projektseite ab. | ||
+ | |||
+ | SuSE: | ||
+ | chconfig freshclam on | ||
+ | /etc/init.d/freshclam start | ||
+ | |||
+ | Debian: | ||
+ | |||
+ | Bei Debian wird freshclam automatisch gestartet | ||
+ | |||
+ | ====== Konfiguration clamav ====== | ||
+ | SuSE: | ||
+ | chconfig clamd on | ||
+ | /etc/init.d/clamd start | ||
+ | |||
+ | Debian: | ||
+ | |||
+ | Bei Debian wird clamav automatisch gestartet. | ||
+ | |||
+ | ===== testen ===== | ||
+ | | ||
+ | |||
+ | |||
+ | ====== Konfiguration amavisd-new ====== | ||
+ | Debian: | ||
+ | |||
+ | Bei Debian wird amavisd-new automatisch gestartet. | ||
+ | Achtung AntivirenCheck aktivieren durch Auskommentieren in der Datei | ||
+ | ''15-content_filter_mode'' . | ||
+ | |||
+ | Folgender Bug ist in Debian lenny enthalten: | ||
+ | http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=530745 | ||
+ | |||
+ | adduser clamav amavis | ||
+ | |||
+ | ===== Erreichbarkeit Amavis testen ===== | ||
+ | lsof -i :10024 | ||
+ | |||
+ | ====== Konfiguration postfix ====== | ||
+ | ''/etc/postfix/master.cf'' : | ||
+ | <file> | ||
+ | amavis unix - - n - 2 lmtp | ||
+ | -o lmtp_data_done_timeout=1200 | ||
+ | -o lmtp_send_xforward_command=yes | ||
+ | -o disable_dns_lookups=yes | ||
+ | -o max_use=20 | ||
+ | 127.0.0.1:10025 inet n - n - - smtpd | ||
+ | -o content_filter= | ||
+ | -o local_recipient_maps= | ||
+ | -o relay_recipient_maps= | ||
+ | -o smtpd_delay_reject=no | ||
+ | -o smtpd_restriction_classes= | ||
+ | -o smtpd_client_restrictions= | ||
+ | -o smtpd_helo_restrictions= | ||
+ | -o smtpd_sender_restrictions= | ||
+ | -o smtpd_recipient_restrictions=permit_mynetworks,reject | ||
+ | -o smtpd_data_restrictions=reject_unauth_pipelining | ||
+ | -o smtpd_end_of_data_restrictions= | ||
+ | -o mynetworks=127.0.0.0/8 | ||
+ | -o smtpd_error_sleep_time=0 | ||
+ | -o smtpd_soft_error_limit=1001 | ||
+ | -o smtpd_hard_error_limit=1000 | ||
+ | -o smtpd_client_connection_count_limit=0 | ||
+ | -o smtpd_client_connection_rate_limit=0 | ||
+ | -o receive_override_options=no_header_body_checks,no_unknown_recipient_checks | ||
+ | </file> | ||
+ | postconf -e 'content_filter=amavis:[127.0.0.1]:10024' | ||
+ | |||
+ | ===== Konfiguration testen ===== | ||
+ | postfix reload | ||
+ | tail /var/log/mail* | ||
+ | |||
+ | ===== Erreichbarkeit postfix testen ===== | ||
+ | lsof -i :10025 | ||
+ | |||
+ | ===== Virenscanner testen ===== | ||
+ | wget http://www.eicar.org/download/eicarcom2.zip | ||
+ | swaks --to iw@localhost --from root@localhost --server localhost --attach eicarcom2.zip | ||
+ | tail /var/log/mail* | ||
+ | |||
+ | ====== Links ====== | ||
+ | * http://postfix.state-of-mind.de/patrick.koetter/amavisd-new | ||
+ | * http://www.yrex.com/spam/spamconfig.php | ||
+ | |||
+ | ====== Doku ====== | ||
+ | * ''/usr/share/doc/packages/amavisd-new/README_FILES/README.postfix'' ( SuSE Linux 10.0 ) | ||
+ | * ''/usr/share/doc/amavisd-new/README.postfix.gz'' ( Debian 4.0 ) | ||