Allo,
Saya udah berhasil install postfix+amavis-new+clamav+spamassassin, dan sudah
bisa ambil scan virus dan spam nya. Ada yang ingin saya tanyakan,
1. Kalau saya terima email dengan virus, email itu langsung di blok dan dikirm
ke [EMAIL PROTECTED], maunya juga dikirim ke sipengirim dan penerima
supaya tau kalo ada email yang kena virus.. settingnya dimana ya ? gak ketemu
nih.. Disini /etc/amavis.conf
$final_bad_header_destiny = D_PASS; # (defaults to D_PASS), D_BOUNCE
suggested
$warnvirussender = 1; # (defaults to false (undef))
$warnvirusrecip = 1; # (defaults to false (undef))
$warnbannedrecip = 1; # (defaults to false (undef))
$viruses_that_fake_sender_re = new_RE(
2. Kenapa clamav selalu jadi backup antivirus ?
Feb 11 11:31:05 arz amavis[10850]: (10850-04) Checking:
<[EMAIL PROTECTED]> ->
<[EMAIL PROTECTED]>
Feb 11 11:31:05 arz amavis[10850]: (10850-04) WARN: all primary virus scanners
failed, considering backups
Feb 11 11:31:06 arz amavis[10850]: (10850-04) spam_scan: hits=0 tests=
Feb 11 11:31:06 arz amavis[10850]: (10850-04) FWD via SMTP: [127.0.0.1]:10025
<[EMAIL PROTECTED]> ->
<[EMAIL PROTECTED]>
Feb 11 04:31:06 arz postfix/smtpd[11196]: connect from unknown[127.0.0.1]
3. Kalau saya mengirim email pakai virus, keluar error seperti ini yang
dikirim ke [EMAIL PROTECTED] Bagaimana supaya kelihatan siapa yang
mengirim ? (sendernya).
Scanner detecting a virus: Clam Antivirus - clamscan
The mail originated from: <[EMAIL PROTECTED]>
According to the 'Received:' trace, the message originated at:
scanner (unknown [192.127.0.12])
4. Untuk email, saya pakai virtual-domain, gimana saya buat forward mail tapi
ke external mail, misal [EMAIL PROTECTED] di forward ke
[EMAIL PROTECTED], karena di /etc/postfix/virtual gak bisa dibuat seperti itu.
5. Lalu untuk ganti password, apakah harus root ? Bisa si user gak yang ganti
?
Ini postconf -n
alias_database = hash:/etc/aliases
alias_maps = hash:/etc/aliases
command_directory = /usr/sbin
config_directory = /etc/postfix
content_filter = smtp:localhost:10024
daemon_directory = /usr/lib/postfix
debug_peer_level = 2
home_mailbox = Maildir/
inet_interfaces = all
mail_owner = postfix
mail_spool_directory = /var/spool/mail
mailbox_transport = virtual
mailq_path = /usr/bin/mailq
manpage_directory = /usr/local/man
mydestination = $myhostname, localhost.$mydomain, $mydomain
mydomain = reyman.dyndns.org
myhostname = mail.reyman.dyndns.org
mynetworks = 192.127.0.0/24, 127.0.0.0/8
myorigin = $mydomain
newaliases_path = /usr/bin/newaliases
queue_directory = /var/spool/postfix
readme_directory = /etc/postfix/readme
relay_domains = $mydestination
sample_directory = /etc/postfix
sendmail_path = /usr/sbin/sendmail
setgid_group = maildrop
smtpd_recipient_restrictions = permit_mynetworks reject_unauth_destination
reject_rbl_client cbl.abuseat.org reject_rbl_client relays.ordb.org
transport_maps = hash:/etc/postfix/transport
virtual_gid_maps = static:502
virtual_mailbox_base = /home/virtual
virtual_mailbox_maps = hash:/etc/postfix/virtual
virtual_uid_maps = static:507
Ini salah satu dari /etc/amavisd.conf
use strict;
$MYHOME = '/amavis'; # (default is '/var/amavis')
$mydomain = 'reynaldi.dyndns.org'; # (no useful default)
$daemon_user = 'amavis'; # (no default; customary: vscan or amavis)
$daemon_group = 'amavis'; # (no default; customary: vscan or amavis)
$TEMPBASE = $MYHOME; # (must be set if other config vars use is)
$ENV{TMPDIR} = $TEMPBASE; # wise, but usually not necessary
$max_servers = 2; # number of pre-forked children (default 2)
$max_requests = 10; # retire a child after that many accepts (default 10)
$child_timeout=5*60; # abort child if it does not complete each task in n sec
@local_domains_acl = ( ".$mydomain" ); # $mydomain and its subdomains
$unix_socketname = "$MYHOME/amavisd.sock"; # amavis helper protocol socket
$inet_socket_port = 10024; # accept SMTP on this local TCP port
@inet_acl = qw( 127.0.0.1 ); # allow SMTP access only from localhost IP
$DO_SYSLOG = 1; # (defaults to false)
$LOGFILE = "$MYHOME/amavis.log"; # (defaults to empty, no log)
$log_level = 2; # (defaults to 0)
$log_templ = '[? %#V |[? %#F |[?%#D|Not-Delivered|Passed]|BANNED name/type
(%F)]|INFECTED (%V)], #
<%o> -> [<%R>|,][? %i ||, quarantine %i], Message-ID: %m, Hits: %c';
$final_virus_destiny = D_BOUNCE; # (defaults to D_BOUNCE)
$final_banned_destiny = D_BOUNCE; # (defaults to D_BOUNCE)
$final_spam_destiny = D_REJECT; # (defaults to D_REJECT)
$final_bad_header_destiny = D_PASS; # (defaults to D_PASS), D_BOUNCE
suggested
$warnvirussender = 1; # (defaults to false (undef))
$warnvirusrecip = 1; # (defaults to false (undef))
$warnbannedrecip = 1; # (defaults to false (undef))
$viruses_that_fake_sender_re = new_RE(
qr'nimda|hybris|klez|bugbear|yaha|braid|sobig|fizzer|palyh|peido|holar'i,
qr'tanatos|lentin|bridex|mimail|trojan\.dropper|dumaru|parite|spaces'i,
qr'dloader|galil|gibe|swen|netwatch|bics|sbrowse'i,
[qr'^(EICAR\.COM|Joke\.|Junk\.)'i => 0],
[qr'^(WM97|OF97|W95/CIH-|JS/Fort)'i => 0],
);
$virus_admin = "[EMAIL PROTECTED]";
$mailfrom_notify_admin = "[EMAIL PROTECTED]";
$mailfrom_notify_recip = "[EMAIL PROTECTED]";
$mailfrom_notify_spamadmin = "[EMAIL PROTECTED]";
$mailfrom_to_quarantine = undef; # original sender if undef, or set explicitly
$QUARANTINEDIR = '/amavis/virusmails';
$virus_quarantine_to = 'virus-quarantine'; # traditional local quarantine
$spam_quarantine_to = 'spam-quarantine';
$X_HEADER_TAG = 'X-Virus-Scanned'; # (default: undef)
$X_HEADER_LINE = "by amavisd-new at $mydomain";
$remove_existing_x_scanned_headers = 0; # leave existing X-Virus-Scanned alone
$remove_existing_spam_headers = 1; # remove existing spam headers if
--
Ka Pe eL I
[EMAIL PROTECTED]
