logo
¡¡ whois | dll-download | HandBook | ¹ØÓÚ±¾Õ¾ | ºǫ́¹ÜÀí  ¡¡
¡ô              
2008 Äê 10 ÔÂ
ÈÕ Ò» ¶þ Èý ËÄ Îå Áù
   1234
567891011
12131415161718
19202122232425
262728293031 
ÉÏÔ MONTH ÏÂÔ¡¡¡¡ÉÏÒ»Äê YEAR ÏÂÒ»Äê

̞:
ÃÜ¡¡Âë:

¡¡Õ¾ÄÚËÑË÷
¡¡Í³¼ÆÐÅÏ¢
¹²ÓÐÎÄÕÂ: 650
¹²·ÃÎÊÊý: 12589052
½ñÈÕ·ÃÎÊ: 3397
ÔÚÏßÈËÊý: 2
¡¡×îÐÂÎÄÕÂ
¡¡DOSÃüÁ
¡¡È«¹úÖ÷ҪʡÊÐdns µØ...
¡¡¹ú È˵ġ°¾­µä¡±»ÑÑ...
¡¡½ñÌ죬ÎÒ³´¹ÉÁË
¡¡RedHat AS4 ÕûºÏMyS...
¡¡windows server 200...
¡¡Ê¹ÓÃfind²éÕÒÎļþµÄ...
¡¡Linux Ö¸Áî¼òµ¥½«¹¥...
¡¡LinuxÏÂÅäÖÃÍêÕû°²È...
¡¡¹ØÓÚÎÞ×é¼þÉÏ´«µÄAD...
¡¡ÓÖһƪviϸ½âÎÄÕÂ
¡¡viÌæ»»ÃüÁîÓ÷¨Ïê½â
¡¡squid-2.6.STABLE1Ö...
¡¡Áã³É±¾ LinuxÏÂÇáËÉ...
¡¡squidÓÖһƪÏêϸÅäÖ...
¡¡as4 ͨ¹ýyum×Ô¶¯Éý¼...
¡¡È«¹ú¸÷µØÍøͨDNS
¡¡squidÓ¦ÓÃÏê½â
¡¡mysql³£ÓÃÃüÁî
¡¡ÐÞ¸´ Table 'xxx' i...
¡¡×îÐÂÆÀÂÛ
¡¡Ìṩcheap wow gold...
¡¡ÄÚÃɹÅair jordansÃ...
¡¡
¡¡
¡¡
¡¡Ðåü¼Û¸ñÐÐÒµ×ÛºÏÐÅ...
¡¡Öйú¹«Ë¾,Î人Ó͸×,...
¡¡ÂÒ·¢ÕßÌåÑéµÄÁ³²¿Õû...
¡¡
¡¡ÖйúЭ»á,Laborator...
¡¡ÖÆש»úÓªÏú£¬·þÎñ. ...
¡¡ÖлªÐز¿ÕûÐÎÓÉÖлª...
¡¡¹ú¼ÒʯÓÍÁÑ»¯¹Ü¾Ö, ...
¡¡pearljewelryÓªÏú£¬...
¡¡
¡¡
¡¡ÖÂÁ¦ÓÚÀíÂÛ£¬ÆäËùÐû...
¡¡¶àÓî»°Íø,ÖйúÄòƵÔ...
¡¡º¬ÔÆÄϸ½ØºÑ×Ö¢×´ ±...
¡¡°üÀ¨¹«ÒæÄÞºçµÆ,ÆÁÄ...
¡¡×îÐÂÒýÓÃ
¡¡×î½üÎÞÒýÓÃÄÚÈÝ
¡¡ÓÑÇéÁ´½Ó
-¡¡Ä¿Ç°ÎÞÓÑÇéÁ´½Ó (0)
¡¡ÎÄÕ¾ۺÏ
RSS View v:1.0 RSS View v:2.0
ATOM View v:0.3 channel
×î½ü 10 ÌõÆÀÂÛ RSS View Powered by Blog
Creative Commons DeCode: GB2312
PHP MySQL
¡¡[Õ¾³¤½éÉÜ]
Õ¾³¤£º Glen
ÐÅÏ䣺 root@domsn.net
http://wwww.domsn.net

One Step Ahead
Clamav + Amavisd-new + Spamassassin ϵͳÉèÖà    2007-10-25 00:42:35

²¡¶¾¹ýÂËЧ¹û 100 £¥
À¬»øÓʼþ¹ýÂËЧ¹û£º ÕýÈ·ÂÊ 98 £¥ ÎóÅÐÂÊ 2 £¥
-----------------------------------------------

Clamav (/usr/local/etc/clamd.conf )

# This option enables scanning of Microsoft Office document macros.
# Default: enabled
ScanOLE2     ´ò¿ªofficeÎĵµÉ¨Ãè

# Enable internal e-mail scanner.
# Default: enabled
ScanMail     ´ò¿ªÓʼþɨÃè

# ClamAV can scan within archives and compressed files.
# Default: enabled
ScanArchive    ɨÃèѹËõ°ü

# Due to license issues libclamav does not support RAR 3.0 archives (only the
# old 2.0 format is supported). Because some users report stability problems
# with unrarlib it's disabled by default and you must uncomment the directive
# below to enable RAR 2.0 support.
# Default: disabled
ScanRAR     ɨÃèRARѹËõ°ü

# Files in archives larger than this limit won't be scanned.
# Value of 0 disables the limit.
# Default: 10M
ArchiveMaxFileSize 10M  ×î´óɨÃèѹËõ°üÎļþΪ10Õ×

# Nested archives are scanned recursively, e.g. if a Zip archive contains a RAR
# file, all files within it will also be scanned. This options specifies how
# deep the process should be continued.
# Value of 0 disables the limit.
# Default: 8
ArchiveMaxRecursion 9   ɨÃèѹËõ°ü9²ã

# Number of files to be scanned within an archive.
# Value of 0 disables the limit.
# Default: 1000
ArchiveMaxFiles 1000   ×î¶àɨÃèѹËõ°üÄÚ1500¸öÎļþ

# Set access mask for Clamuko.
# Default: disabled
ClamukoScanOnOpen
ClamukoScanOnClose
ClamukoScanOnExec

# Don't scan files larger than ClamukoMaxFileSize
# Value of 0 disables the limit.
# Default: 5M
ClamukoMaxFileSize 10M

-----------------------------------------------------------------------------------------------

Amavisd-new (/etc/ amavisd.conf )

D_PASS£º ²»×öÈκδ¦Àí£¬Ö±½Ó´«Ë͸øÊÕ¼þÈË¡£
D_DISCARD£º Óʼþ²»´«Ë͸ø·¢¼þÈ˼°ÊÕ¼þÈË¡£
D_BOUNCE£º ²»´«Ë͸øÊÕ¼þÈË¡£³ýÁ˶¨ÒåÔÚ $viruses_that_fake_sender_re ²¡¶¾Ãû³ÆÍâµÄÐżþ£¬amavisd-new ½Ô»á´«ËÍ DSN ѶϢ¸ø·¢¼þÈË¡£
D_REJECT£º ²»´«Ë͸øÊÕ¼þÈË£¬·¢¼þÈË»áÊÕµ½¾Ü¾ø´«Ë͵ÄÐÅÏ¢¡£
  
$sa_auto_whitelist = 1; # ÆôÓÃ×Ô¶¯Ñ§Ï°°×Ãûµ¥ White List
  
$sa_mail_body_size_limit = 200*1024; # ³¬¹ýij¸öÌض¨´óСµÄÓʼþ¾Í²»¾­¹ý
SpamAssassin µÄɨÃè¡£
  
$sa_tag_level_deflt = 4.0; # ³¬¹ýÕâ¸ö·ÖÊý±ê×¼Õߣ¬²ÅÊÓΪÀ¬»øÓʼþ´ò·ÖÊý¡£
     ¼ÓÈë X-Spam-Status ¼° X-Spam-Level ÐÅϢͷ

$sa_tag2_level_deflt = 6.3; # ³¬¹ýÕâ¸ö·ÖÊý±ê×¼Õߣ¬²ÅÔÊÐíÔÚÓʼþ±êÌâ¼ÓÈë
      Spam ÐÅÏ¢¡£
      ¼ÓÈë X-Spam-Flag:YES ¼°¸ÄдÖ÷Ìâ

$sa_kill_level_deflt = 10 ; # ³¬¹ýÕâ¸ö·ÖÊý±ê×¼Õߣ¬¾ÍÖ±½ÓŒ¢Ðżþ±¸·Ýºóɾ³ý¡£

$sa_dsn_cutoff_level = 9; # ³¬¹ýÕâ¸ö·ÖÊý±ê×¼Õߣ¬Œ¢²»»áËͳö DSN ÐÅÏ¢¡£

-------------------------------------------------------------------

Spamassassin (/etc/mail/spamassassin/local.cf )

# SpamAssassin config file for version 3.x
# NOTE: NOT COMPATIBLE WITH VERSIONS 2.5 or 2.6
# See http://www.yrex.com/spam/spamconfig25.php for earlier versions
# Generated by http://www.yrex.com/spam/spamconfig.php (version 1.50)

# How many hits before a message is considered spam. µÃ·Ö¶àÉÙÒÔÉϾͻᱻÅж¨ÎªÀ¬»øÓʼþ¡£
required_hits  6.3

# Whether to change the subject of suspected spam. ÔÚÒÑÅж¨µÄÀ¬»øÓʼþÖ®±êÌâ¼ÓÉϱê¼Ç¡££¨ Èç¹ûÊÇʹÓÃamaivsdÀ´ºô½Ðspamassass½øÐйýÂ˵ģ¬ÇëÐÞ¸Ä Amavisd-new µÄÅäÖÃÎļþamavisd.conf ÖеÄÏàӦѡÏ$sa_spam_subject_tag = '***[ Junk Mail ]*** '; £©
rewrite_header Subject ****SPAM(_SCORE_)****

# Encapsulate spam in an attachment.
# ÒªÈçºÎ´¦ÀíÀ¬»øÓʼþ¡£Èç¹ûÓʼþ»¹»á¾­¹ý·À¶¾³ÌÐòµÄɨÃè´¦Àí£¬ËùÒÔ±ØÐëÉ趨Ϊ 0¡£
# 0£º½«ÐÅϢдÈëÓʼþ±íÍ·¡£
# 1£º½«À¬»øÓʼþתΪ¸½¼þ¡£
# 2£º½«À¬»øÓʼþתΪ´¿ÎÄ×Ö¸½¼þ¡£
report_safe   0

# Use terse version of the spam report. Óþ«¼òµÄ·½Ê½À´»Ø¸´À¬»øÓʼþÐÅÏ¢¸ø¹ÜÀíÕß
use_terse_report  0

# Enable the Bayes system. ʹÓñ´Ò¶Ë¹Ñ§Ï°ÏµÍ³
use_bayes   1

# Enable Bayes auto-learning. ¿ªÆô±´Ò¶Ë¹×Ô¶¯Ñ§Ï°¹¦ÄÜ
auto_learn   1

# Enable or Disable network checks. ÂÔ¹ý RBLs ¼ì²é¡¢Ê¹Óà Razor version 2¡¢Ê¹Óà DCC (Distributed Checksum Clearinghouse)¡¢Ê¹Óà Pyzor
skip_rbl_checks  0
use_razor2   1
use_dcc   1
use_pyzor   1

# Blacklist. ºÚÃûµ¥£¬Åж¨œp £« 100 ·Ö
blacklist_from *@sohu.com *@mailfb.com

# Whitelist . °×Ãûµ¥£¬Åж¨¼Ó ¡ª 100 ·Ö
whitelist_from *@yahoo.com.tw *@yahoo.com.hk *@yahoogroups.com.hk
whitelist_from rika@rika.idv.tw

# Mail using languages used in these country codes will not be marked
# as being possibly spam in a foreign language.
# - chinese
ok_languages   zh en

# Mail using locales used in these country codes will not be marked
# as being possibly spam in a foreign language.
ok_locales   zh en

# Disabled scores. ·ÀÖ¹ÖÐÎÄÖ÷Ö¼ºÍÖÐÎÄÊÕ¼þÕßÎóÅУ¬½¨ÒéÔÙ¼ÓÉÏÏÂÁм¸ÐÐ
score HEADER_8BITS 0
score HTML_COMMENT_8BITS 0
score SUBJ_FULL_OF_8BITS 0
score UPPERCASE_25_50 0
score UPPERCASE_50_75 0
score UPPERCASE_75_100 0

# local domain from but ip not match. ÓòÃûºÍ IP ²»·ûºÏ£¬ÒÉΪÀ¬»øÓʼþ
header __FROM_TEATIME Received =~ /from test.com.cn/i
header __FROM_TEATIME_IP Received =~ /[12.34.56.78]/
meta FROM_TEATIME_BUT_IP_ERROR (__FROM_TEATIME)
describe FROM_TEATIME_BUT_IP_ERROR From test.com.cn but ip not match
score FROM_TEATIME_BUT_IP_ERROR 8

score NO_REAL_NAME 4.000
score SPF_FAIL 10.000
score SPF_HELO_FAIL 10.000
score BAYES_99 4.300
score BAYES_90 3.500
score BAYES_80 3.000
Spamassassin ϵͳÉèÖÃÖ® ºÚ°×Ãûµ¥

-----------------------------------------------------------------------------------------------------
vi /etc/amavisd.conf £¨¼ÓÈëÒÔÏÂÁ½ÐУ©

-----------------------------------------------------------------------------------------------------
read_hash(\%whitelist_sender, '/var/amavis/var/.spamassassin/whitelist');
read_hash(\%blacklist_sender, '/var/amavis/var/.spamassassin/blacklist');


-------------------------------------------------------------------------------------------------------

×¢Ã÷£ºÒÔÉÏÁ½¸öÎļþ whitelist ºÍ blacklist ÒªÊÖ¶¯½¨Á¢

touch > /var/amavis/var/.spamassassin/whitelist
touch > /var/amavis/var/.spamassassin/blacklist
Á½¸öÎļþµÄÊôÖ÷ÊôÐÔΪ£º
chown amavis:amavis whitelist
chown amavis:amavis blacklist

1£©½¨Á¢ºó£¬Ö´ÐÐ /etc/rc.d/init.d/amavisd reload Èà amavisd ÖØжÁÈ¡ÅäÖÃÎļþÐÅÏ¢¡£

2£©µÇ¼ÇÔÚ whitelist µÄÓʼþµØÖ·»òÓòÃû¾ù²»»á±» Spamassassin ´ò·ÖΪÀ¬»øÓʼþ¡£

3£©µÇ¼ÇÔÚ blacklist µÄÓʼþµØÖ·»òÓòÃû¾ù»á±» Spamassassin ´ò·ÖΪÀ¬»øÓʼþ¡£

4£©whitelist ºÍ blacklist µÄд·¨£¬ÀýÈ磺
test@test.com.cn
*@boss.com

5£©ÐÞ¸ÄÁË whitelist »ò blacklist Îļþ£¬¾ùÐèÒªÖ´ÐÐ /etc/rc.d/init.d/amavisd restart Èà amavisd ÖØÐÂÆô¶¯£¬·ñÔò£¬ºÚ°×Ãûµ¥²»ÄÜÉúЧ £¡£¡£¡


Posted by glen in [Linux/BSD] | ÆÀÂÛ:9 | ×Üä¯ÀÀ:1957 | [´òÓ¡È«ÎÄ]

¹Ø¼ü×Ö:
¹Ø¼ü×Ö: Clamav + Amavisd-new + Spamassassin ϵͳÉèÖÃ,²©Ö¾,soft,glen'blog,blog,weblog,blog,qzhiwu@msn.com
ÒýÓÃ [0]
±¾ÎÄÎÞTrackback
Ìí¼ÓÆÀÂÛ
êdzÆ: * ÃÜÂë:
ÐÅÏä: ͬʱע²áÕâ¸öêdzÆ
Ö÷Ò³: http://¿ªÍ·
£Ñ£Ñ:
¡¡ *
ÁªÏµÎÒÃÇ |  
¡¡
Copyright © 2006-2008 DoMsN All Rights Reserved.
ÔÁICP±¸05141795ºÅ