| [Question] Postfix+ClamAV: Mail gửi đi bị vào queue |
29/02/2012 09:21:58 (+0700) | #1 | 256202 |
traunui
Member
![[Minus]](/hvaonline/templates/viet/images/minus.gif "[Minus]") |
0 |
![[Plus]](/hvaonline/templates/viet/images/plus.gif "[Plus]")
|
|
Joined: 28/02/2012 20:23:08
Messages: 62
Offline
|
|
Em đang thử lab Postfix + Procmail + SpamAssassin + ClamAV.
Khi thử Procmail + SpamAssassin thì đã lọc được spam. Thử thêm cái ClamAV thì send mail thử thấy ko nhận được, vào Postfix thấy mail lưu trong queue.
Những phần thay đổi trong config của Postfix
File main.cf
## ad them dong
content_filter = scan:127.0.0.1:10025
File master.cf
scan unix - - n - 16 smtp
-o smtp_data_done_timeout=1200
-o smtp_send_xforward_command=yes
-o disable_dns_lookups=yes
127.0.0.1:10026 inet n - n - 16 smtpd
-o content_filter=
-o receive_override_options=no_unknown_recipient_checks,no_header_body_checks
-o local_recipient_maps=
-o relay_recipient_maps=
-o smtpd_restriction_classes=
-o smtpd_client_restrictions=
-o smtpd_helo_restrictions=
-o smtpd_sender_restrictions=
-o smtpd_recipient_restrictions=permit_mynetworks,reject
-o mynetworks_style=host
-o smtpd_authorized_xforward_hosts=127.0.0.0/8
Những phần thay đổi trong cấu hình của ClamSMTP
File clamsmtpd.conf
# The address clamd is listening on
ClamAddress: /var/run/clamd.clamsmtp/clamd.sock
# A header to add to all scanned email
Header: X-Virus-Scanned: ClamAV using ClamSMTP
# Directory for temporary files
TempDirectory: /var/lib/clamd.clamsmtp
# What to do when we see a virus (use 'bounce' or 'pass' or 'drop'
Action: bounce
Log sau khi gửi mail
Feb 28 22:18:30 mail postfix/smtpd[4681]: connect from unknown[10.30.5.83]
Feb 28 22:18:30 mail postfix/smtpd[4681]: 1EBEB158139: client=unknown[10.30.5.83]
Feb 28 22:18:30 mail postfix/cleanup[4651]: 1EBEB158139: message-id=<4F4D9907.2020908@domain.local>
Feb 28 22:18:30 mail postfix/qmgr[4256]: 1EBEB158139: from=<u1@domain.local>, size=533, nrcpt=1 (queue active)
Feb 28 22:18:30 mail postfix/smtpd[4681]: disconnect from unknown[10.30.5.83]
Feb 28 22:18:30 mail spamd[1966]: spamd: connection from mail.domain.local [127.0.0.1] at port 54472
Feb 28 22:18:30 mail spamd[1966]: spamd: setuid to mail succeeded
Feb 28 22:18:30 mail spamd[1966]: spamd: processing message <4F4D9907.2020908@domain.local> for mail:8
Feb 28 22:18:30 mail spamd[1966]: spamd: clean message (-1.0/5.0) for mail:8 in 0.2 seconds, 519 bytes.
Feb 28 22:18:30 mail spamd[1966]: spamd: result: . -1 - ALL_TRUSTED scantime=0.2,size=519,user=mail,uid=8,required_score=5.0,rhost=mail.domain.local,raddr=127.0.0.1,rport=54472,mid=<4F4D9907.2020908@domain.local>,autolearn=ham
Feb 28 22:18:30 mail spamd[1961]: prefork: child states: II
Feb 28 22:18:30 mail postfix/pipe[4683]: 1EBEB158139: to=<u2@domain.local>, relay=spamassassin, delay=0.46, delays=0.05/0.02/0/0.39, dsn=2.0.0, status=sent (delivered via spamassassin service)
Feb 28 22:18:30 mail postfix/qmgr[4256]: 1EBEB158139: removed
Feb 28 22:18:30 mail postfix/pickup[4255]: 8961C158139: uid=8 from=<u1@domain.local>
Feb 28 22:18:30 mail postfix/cleanup[4650]: 8961C158139: message-id=<4F4D9907.2020908@domain.local>
Feb 28 22:18:30 mail postfix/qmgr[4256]: 8961C158139: from=<u1@domain.local>, size=832, nrcpt=1 (queue active)
Feb 28 22:18:30 mail clamsmtpd: 100042: accepted connection from: 127.0.0.1
Feb 28 22:18:30 mail postfix/smtpd[4652]: connect from mail.domain.local[127.0.0.1]
Feb 28 22:18:30 mail postfix/smtpd[4652]: 9A9AC158185: client=mail.domain.local[127.0.0.1]
Feb 28 22:18:30 mail clamsmtpd: 100042: CLAMAV: couldn't connect to: /var/run/clamd.clamsmtp/clamd.sock: Connection refused
Feb 28 22:18:30 mail clamsmtpd: 100042: from=u1@domain.local, to=u2@domain.local
Feb 28 22:18:30 mail postfix/smtp[4633]: 8961C158139: to=<u2@domain.local>, relay=127.0.0.1[127.0.0.1]:10025, delay=0.1, delays=0.03/0/0.05/0.01, dsn=4.0.0, status=deferred (host 127.0.0.1[127.0.0.1] said: 451 Local Error (in reply to end of DATA command))
Feb 28 22:18:30 mail postfix/smtpd[4652]: disconnect from mail.domain.local[127.0.0.1]
Em đã search thử cái lỗi CLAMAV: couldn't connect to: /var/run/clamd.clamsmtp/clamd.sock: Connection refused nhưng chưa tìm ra được giải pháp.
Hiện chỉ biết là do cái dòng content_filter = scan:127.0.0.1:10025, nó forward mail vào port 10025, ko hiểu sao mail nó ko gửi đi được.
Cảm ơn |
|
|
 |
|
| [Question] Postfix+ClamAV: Mail gửi đi bị vào queue |
29/02/2012 20:33:41 (+0700) | #2 | 256297 |
docong1010
Member
|
|
0 |
|
|
Joined: 28/12/2004 14:11:13
Messages: 72
Offline
|
|
Tôi không biết bạn setup clamav + clamstmp hay sao?
vì mặc định clamav nó cũng filter 1025 và thắng clamstmp cũng vậy.
Hai thằng này đụng nhau sao mà chạy được.
Không biết bạn setup thắng nào. Ở trên ghi ClamAV dưới thì clamstmp |
|
|
|
|
| [Question] Postfix+ClamAV: Mail gửi đi bị vào queue |
29/02/2012 21:55:49 (+0700) | #3 | 256317 |
traunui
Member
|
|
0 |
|
|
Joined: 28/02/2012 20:23:08
Messages: 62
Offline
|
|
2 thằng đụng nhau thì hoá ra trên home page của nó lừa nhau ah
ClamSMTP is an SMTP filter that allows you to check for viruses using the ClamAV anti-virus software
ClamAV e chỉ cài và update DB, ko làm j cả.
ClamSMTP thì sửa mấy cái đã quote ở trên.
Đại loại là theo tuts này
http://www.debian-administration.org/articles/259
Cảm ơn. |
|
|
|
|
| [Question] Postfix+ClamAV: Mail gửi đi bị vào queue |
02/03/2012 14:15:00 (+0700) | #4 | 256643 |
traunui
Member
|
|
0 |
|
|
Joined: 28/02/2012 20:23:08
Messages: 62
Offline
|
|
Bác nào support e vụ này cái  |
|
|
| [Question] Postfix+ClamAV: Mail gửi đi bị vào queue |
23/05/2012 16:48:40 (+0700) | #5 | 263886 |
![[Avatar]](/hvaonline/images/avatar/3f44f3018ff71ff4a7d22a98f3babb55.png "[Avatar]")
|
quanta
Moderator
|
Joined: 28/07/2006 14:44:21
Messages: 7265
Location: $ locate `whoami`
Offline
|
|
CLAMAV: couldn't connect to: /var/run/clamd.clamsmtp/clamd.sock: Connection refused
Thường thì ClamAV chạy dưới quyền của user `clamav`:
Code:
clamav 13513 1 0 May19 ? 00:00:32 clamd
Trong file cấu hình của ClamSMTP, uncomment/insert dòng sau vào:
Code:
# User to switch to
User: clamav
Restart clamsmtpd rồi thử lại xem.
|
|
| Let's build on a great foundation! |
|
| Users currently in here |
|
1 Anonymous
|
|
Powered by JForum - Extended by HVAOnline
hvaonline.net | hvaforum.net | hvazone.net | hvanews.net | vnhacker.org
1999 - 2013 ©
v2012|0504|218|
|
|
![[Rule]](/hvaonline/templates/viet/images/icon_mini_rule.gif "[Rule]"){kind=icon}
![[Home]](/hvaonline/templates/viet/images/icon_mini_groups.gif "[Home]"){kind=icon}
![[Portal]](/hvaonline/templates/viet/images/icon_mini_portal.gif "[Portal]"){kind=icon}
![[Members]](/hvaonline/templates/viet/images/icon_mini_members.gif "[Members]"){kind=icon}
![[Statistics]](/hvaonline/templates/viet/images/icon_mini_stats.gif "[Statistics]"){kind=icon}
![[Search]](/hvaonline/templates/viet/images/icon_mini_search.gif "[Search]"){kind=icon}
![[Reading Room]](/hvaonline/templates/viet/images/icon_mini_book.gif "[Reading Room]"){kind=icon}
![[Register]](/hvaonline/templates/viet/images/icon_mini_register.gif "[Register]"){kind=icon}
Register![[Login]](/hvaonline/templates/viet/images/icon_mini_login.gif "[Login]"){kind=icon}
Login [
Thảo luận hệ điều hành *nix
![[Profile]](/hvaonline/templates/viet/images/en_US/icon_profile.gif "[Profile]"){kind=icon}
![[PM]](/hvaonline/templates/viet/images/en_US/icon_pm.gif "[PM]"){kind=icon}
![[Up]](/hvaonline/templates/viet/images/en_US/icon_up.gif "[Up]"){kind=icon}
![[Print Copy]](/hvaonline/templates/viet/images/en_US/icon_print.gif "[Print Copy]"){kind=icon}
![[digg]](/hvaonline/templates/viet/images/digg.gif "[digg]")
![[delicious]](/hvaonline/templates/viet/images/delicious.gif "[delicious]")
![[google]](/hvaonline/templates/viet/images/google.gif "[google]")
![[yahoo]](/hvaonline/templates/viet/images/yahoo.gif "[yahoo]")
![[technorati]](/hvaonline/templates/viet/images/technorati.gif "[technorati]")
![[reddit]](/hvaonline/templates/viet/images/reddit.gif "[reddit]")
![[stumbleupon]](/hvaonline/templates/viet/images/stumbleupon.gif "[stumbleupon]")