 |
|||||||||||||||||||
 |
|
||||||||||||||||||
 |
Products | Partners | Download | Buy | Network | About | Community | Help |
|
Contact Us |
Howtos - Anti-Virus and Anti-Spam Filtering with MailScanner
[edit] OverviewMailScanner is a highly-respected open-source e-mail security system that scans all e-mail for viruses, spam and attacks against security vulnerabilities. It is not tied to any particular virus scanner and may be used with any combination of 14 different virus scanners. This document explains how to install MailScanner using a single copy of Postfix to handle both incoming and outgoing mail delivery. The approach described here does not require Mailscanner to access the active queue. Instead Postfix puts all incoming email into a hold queue so Mailscanner can safely access these emails for scanning and then pass them back to the Postfix active queue for delivery. Anti-virus and anti-spam filtering is provided by the following optional components:
[edit] Installing AntirVirAntiVir is provided courtesy of AntiVir PersonalProducts GmbH. The private, non-commercial use of AntiVir Workstation for Linux is free. Please check their Web site for the latest version. To install AntiVir, use the following commands:
The default settings offered by the script are acceptable since MailScanner will ensure the virus definitions are kept up-to-date. To update AntiVir type from the command line:
To scan from the command line use:
[edit] Installing BitDefenderBitDefender is provided courtesy of SOFTWIN SRL. BitDefender Linux Edition is a freeware product, which doesn't require a license to be used. Please check their Web site for the latest version. To install BitDefender, use the following commands:
To update BitDefender from the command line use:
To scan from the command line use:
[edit] Installing ClamAVClamAV is a free anti-virus toolkit for UNIX and is provided courtesy of the ClamAV Project. Clam AntiVirus is licensed under the GNU Public Licence. Packages used in this Howto are either built and/or maintained by Dag Wieers. Please check each Web site for the latest versions. To install ClamAV, use the following commands:
To update ClamAV from the command line use:
To scan from the command line use:
[edit] Installing SpamAssassinSpamAssassin is an open-source spam filter provided courtesy of The Apache SpamAssassin Project. Clam AntiVirus is licensed under the GNU Public Licence. Please check their Web site for the latest version. To install SpamAssassin simply use the following command:
[edit] Install and configure MailScannerMailScanner is developed by the Electronics and Computer Science Department at the University of Southampton and is distributed for free under the GNU Public Licence. Please check their Web site for the latest version. Before you proceed any further you will need to install the ClarkConnect developer tools on your system. For instructions go to the following howto: Installing and Removing the Developer Tools. To install MailScanner, use the following commands:
Installing MailScanner will generate lots of output; ensure it finishes without error before proceeding.
Open /etc/postfix/main.cf and make sure that you add the following line: header_checks = regexp:/etc/postfix/header_checks Next, open the file /etc/postfix/header_checks and add this line: /^Received:/ HOLD This tells Postfix to move all messages to the HOLD queue. Now edit the file /etc/MailScanner/MailScanner.conf and change the following 6 settings, which are all near the top of the file: Run As User = postfix Run As Group = postfix Incoming Queue Dir = /var/spool/postfix/hold Outgoing Queue Dir = /var/spool/postfix/incoming MTA = postfix SpamAssassin User State Dir = /var/spool/MailScanner/spamassassin Next, make sure Postfix can write to /var/spool/MailScanner/incoming and /var/spool/MailScanner/quarantine:
Finally, execute the following commands and you're ready for testing:
[edit] Using MailScannerNow you are ready to test MailScanner without using anti-virus or anti-spam filtering:
If you can successfully send and recieve mail start adding virus scanners and SpamAssassin one at a time. Modify /etc/MailScanner/MailScanner.conf accordingly: Virus Scanning = yes Virus Scanners = antivir bitdefender clamav Use SpamAssassin = yes Notify Senders = no Once you are satisfied that everything is working correctly, edit the organisation and server identification information: %org-name% = YOURSITENAME %org-long-name% = The name of your organisation %web-site% = www.yoursite.com Finally, you need to amend the virus scanner wrapper so that ClamAV is automatically updated. Modify /etc/MailScanner/virus.scanners.conf: clamav /usr/lib/MailScanner/clamav-wrapper /usr/bin/clamdscan
[edit] Optional Webmin modulesWebmin modules are available for BitDefender (excludes Linux Edition), ClamAv and MailScanner. Download the modules you require from the respective Web sites (see links below) and install using Webmin: Alternatively, issue the following commands from the shell (single example shown):
[edit] Configuring Clam Antivirus management moduleThe Clam Antivirus Webmin module provides a simple front-end for administering Clam Antivirus and is licensed under the GNU Public Licence. Edit the configurable options for Clam Antivirus as follows:
[edit] Configuring MailScanner Front EndThe MailScanner Webmin module provides a simple front-end for administering MailScanner and is in the Public Domain. Edit the configurable options for MailScanner as follows:
[edit] Links
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
