Clamd + Exim
Добавлено: 2008-03-14 11:57:25
Настроил с грехом пополам exim, прикрутил clamd. Вобщем антивирь работает, выдает сообщение что содержится вирус, но если в письме нет файла или есть, но не зараженый то в логах следующее.
2008-03-13 21:12:25 1JZruj-0001fr-6a H=(ADMIN) [192.168.2.143] F=<lebens@domain.ru> rejected after DATA: This missage contains a VIRUS (Eicar-Test-Signature)
2008-03-13 21:14:02 no host name found for IP address 192.168.2.143
2008-03-13 21:14:04 1JZrwI-0001fs-MK H=(ADMIN) [192.168.2.143] F=<lebens@domain.ru> rejected after DATA
Вот конфиг.
acl_check_rcpt:
accept hosts = :
deny domains = +local_domains
local_parts = ^[.] : ^.*[@%!/|]
deny domains = !+local_domains
local_parts = ^[./|] : ^.*[@%!] : ^.*/\\.\\./
accept local_parts = postmaster
domains = +local_domains
require verify = sender
deny message = HELO/EHLO required by SMTP RFC
condition = ${if eq{$sender_helo_name}{}{yes}{no}}
deny message = Go Away! You are spammer.
condition = ${if match{$sender_host_name} \
{bezeqint\\.net|net\\.il|dialup|dsl|pool|peer|dhcp} \
{yes}{no}}
accept domains = +local_domains
endpass
message = unknown user
verify = recipient
message = unknown user
verify = recipient
accept domains = +relay_to_domains
endpass
message = unrouteable address
verify = recipient
accept hosts = +relay_from_hosts
accept authenticated = *
deny message = relay not permitted
#acl_check_data:
# deny message = This missage contains a VIRUS ($malware_name)
# malware = *
acl_check_mime:
warn decode = default
2008-03-13 21:12:25 1JZruj-0001fr-6a H=(ADMIN) [192.168.2.143] F=<lebens@domain.ru> rejected after DATA: This missage contains a VIRUS (Eicar-Test-Signature)
2008-03-13 21:14:02 no host name found for IP address 192.168.2.143
2008-03-13 21:14:04 1JZrwI-0001fs-MK H=(ADMIN) [192.168.2.143] F=<lebens@domain.ru> rejected after DATA
Вот конфиг.
acl_check_rcpt:
accept hosts = :
deny domains = +local_domains
local_parts = ^[.] : ^.*[@%!/|]
deny domains = !+local_domains
local_parts = ^[./|] : ^.*[@%!] : ^.*/\\.\\./
accept local_parts = postmaster
domains = +local_domains
require verify = sender
deny message = HELO/EHLO required by SMTP RFC
condition = ${if eq{$sender_helo_name}{}{yes}{no}}
deny message = Go Away! You are spammer.
condition = ${if match{$sender_host_name} \
{bezeqint\\.net|net\\.il|dialup|dsl|pool|peer|dhcp} \
{yes}{no}}
accept domains = +local_domains
endpass
message = unknown user
verify = recipient
message = unknown user
verify = recipient
accept domains = +relay_to_domains
endpass
message = unrouteable address
verify = recipient
accept hosts = +relay_from_hosts
accept authenticated = *
deny message = relay not permitted
#acl_check_data:
# deny message = This missage contains a VIRUS ($malware_name)
# malware = *
acl_check_mime:
warn decode = default