-----BEGIN PGP SIGNED MESSAGE-----
Hello Einar,
Wednesday, October 03, 2001, 5:19:16 PM, you wrote:
>> What virus scanner app do you use, then? And on what OS? (I think
>> the only one which is any good on FreeBSD would be Kaspersky AVP).
>> The Linux version appears to have a demo (which only scans, but
>> that would
>> be enough on a server, but for FreeBSD, there doesn't seem to be
>> any demo ;-)
> Trend iscan: v3.1/v5.420-0629/949/41274
> NAI uvscan: v4.1.50/v4163
> Sophos sweep: 2.4/3.47.
> h+bedv antivir: 6.2.0.3
> F-Secure fsav: 4.08/2030/2001-10-01/2001-09-18/2001-09-02
Uuh that many? I think of those, only Kaspersky and h+b edv are
available for FreeBSD but the latter is bloody expensive (some
2000EUR
per server, I think, compared to this, the 560$ for AVP are cheap).
> I also have Kaspersky AVP, but have not a license for that one.
And about which do feel best?
>> Uhm not my problem. I'm not going to use TMDA anyway ;-).
> You might see it as a problem, but from my side it's intentionally
> ;-)
I mean it ain't my problem to make this work cause I don't need it
;-). Some of the staff wanted to have TMDA (our CFO, which HATES spam
also figured it might be a nice selling argument), so they get TMDA.
>> Not 100%ly. You must ensure that import os stays there. So it is:
>> echo import os > [users maildir]/.tmdarc
>> /usr/local/bin/tmda-keygen -b >> [users maildir]/.tmdarc
>>
>> I've got a KISS guide case anyone is interested.
Attached.
Best regards,
Gabriel
B
-----BEGIN PGP SIGNATURE-----
Version: PGP 6.5i
iQEVAwUBO7s+3MZa2WpymlDxAQFLrgf/Yv0Pvef1MRS0A4p5bL1RSZobVS6Jae4h
s+01GCqj0WZkr6wu9BTmySc1DOVEi9vZd71WIpiPY1CE5Bo1VIduLOmqwKSzNhD8
2evHqnikpDi+z1TRk1UxKAtwpDS8pjBtjsJP6FdoyAQBn3xp0pHrnhyaSg3euXOb
xEEaE2AsPi4mtLbahN4L3QqoSGSAskH2wdgCWItLjD1PZZ/wK0+/ZLoCBTMCFxyP
/+MQrU08UWVkbYjRJdsr4rvyS5lFiI6ydjQrpGFeVt0D0uVXOpGGfWxYjF6+Qnr6
13tVpDV9Zkwvkjsjbxvon1g8lFzUv25UHvD0ifwFWiqZYQMrBf6xmA==
=Ymdq
-----END PGP SIGNATURE-----
Installing TMDA (KISS) on vpopmail, per user configurable
OS: FreeBSD 4.4, qmail (standard + tarpit), vpopmail (in /home/vpopmail)
vpopmail: all domains virtualdomains, cdb, no valias
----------------------------------------------------------------------
- Install TMDA from ports
# cd /usr/ports/mail/tmda/
# make
# make install
Create a /var/qmail/bin/qmail-tmda file with the following contents:
--
#!/bin/sh
export USR=`echo $EXT | cut -d\- -f1`
export HOME=`pwd`/$USR
env > /tmp/echoenvdotqmail
echo $HOME
if [ -r ~/.tmdarc ]; then
/usr/local/bin/tmda-filter
else
exit 0
fi
--
Give it chmod 755:
# chmod 755 /var/qmail/bin/qmail-tmda
Change the .qmail-default file of the domain to:
--
| /var/qmail/bin/qmail-tmda
|/home/vpopmail/bin/vdelivermail '' bounce-no-mailbox
--
Create ~vpopmail/domains/domain.com/user/.tmdarc file, owned by vpopmail, chmod 600:
# echo import os > ~vpopmail/domains/domain.com/user/.tmdarc
# tmda-keygen -b >> ~vpopmail/domains/domain.com/user/.tmdarc
# chown vpopmail:vchkpw ~vpopmail/domains/domain.com/user/.tmdarc
# chmod 600 ~vpopmail/domains/domain.com/user/.tmdarc
TMDA will take care of the creation of ~vpopmail/domains/domain.com/user/.tmda/pending
but if you want to use white/black/whatever-list, then you need to create the
following
files (all permission 600, owned by vpopmail):
# mkdir ~vpopmail/domains/domain.com/user/.tmda/lists/
# chmod 700 ~vpopmail/domains/domain.com/user/.tmda/lists/
# touch ~vpopmail/domains/domain.com/user/.tmda/lists/whitelist
# touch ~vpopmail/domains/domain.com/user/.tmda/lists/blacklist
# touch ~vpopmail/domains/domain.com/user/.tmda/lists/bare
# touch ~vpopmail/domains/domain.com/user/.tmda/lists/sender
# touch ~vpopmail/domains/domain.com/user/.tmda/lists/exp
# touch ~vpopmail/domains/domain.com/user/.tmda/lists/ext
# chmod 600 ~vpopmail/domains/domain.com/user/.tmda/lists/*
# chown -R vpopmail:vchkpw ~vpopmail/domains/domain.com/user/.tmda/lists
Test what's going to happen if you send mail to the users as well as users in
the same domain without .tmdarc (i.e. no TMDA on that account).
That's it.
