The OpenNET Project / Index page

[ новости /+++ | форум | wiki | теги | ]

форумы  помощь  поиск  регистрация  майллист  ВХОД  слежка  RSS
"Проблема Sendmail 8.13.3+ClamAV 0.81+FreeBSD 5.3-p5"
Вариант для распечатки Архивированная нить - только для чтения! 
Пред. тема | След. тема 
Форумы OpenNET: Виртуальная конференция (Public)
Изначальное сообщение [Проследить за развитием треда]

"Проблема Sendmail 8.13.3+ClamAV 0.81+FreeBSD 5.3-p5"
Сообщение от alexpn Искать по авторуВ закладки(??) on 02-Фев-05, 09:00  (MSK)
Собирал все из портов
вот права
ll /var/run/
drwx------  2 clamav  clamav     512 Feb  2 12:50 clamav

ll /var/run/clamav/
-rw-rw----  1 clamav  clamav  4 Feb  2 12:50 clamav-milter.pid
srwxrwxrwx  1 clamav  clamav  0 Feb  2 12:50 clamd
-rw-rw----  1 clamav  clamav  3 Feb  2 12:50 clamd.pid
srwxr-xr-x  1 clamav  clamav  0 Feb  2 12:50 clmilter.sock

Конфиг Sendmaila
divert(-1)
divert(0)
include(`../m4/cf.m4')
VERSIONID(`$FreeBSD: src/etc/sendmail/freebsd.mc,v 1.10.2.11 2001/07/14 18:07:27 gshapiro Exp $')
OSTYPE(freebsd5)
DOMAIN(generic)

FEATURE(`no_default_msa')
DAEMON_OPTIONS(`Port=smtp, Name=MTA')

define(`confMAX_HOP',`20')dnl
define(`confQUEUE_LA',`64')dnl
define(`confREFUSE_LA',`128')dnl
define(`confMAX_DAEMON_CHILDREN',`25')dnl
define(`confCONNECTION_RATE_THROTTLE',`5')dnl
define(`confDEF_CHAR_SET',`koi8-r')dnl
define(`confNO_RCPT_ACTION',`add-apparently-to')dnl
define(`confMAX_RCPTS_PER_MESSAGE',`25')dnl
define(`confSMTP_MAILER',`esmtp')dnl
define(`confDONT_BLAME_SENDMAIL',`forwardfileingroupwritabledirpath')dnl

FEATURE(access_db, `hash -o -T<TMPF> /etc/mail/access')
FEATURE(blacklist_recipients)
FEATURE(local_lmtp)
FEATURE(mailertable, `hash -o /etc/mail/mailertable')
FEATURE(relay_based_on_MX)
FEATURE(virtusertable, `hash -o /etc/mail/virtusertable')

dnl Realtime Blocking List - AntiSpam Control
dnl FEATURE(dnsbl)
dnl FEATURE(dnsbl, `relays.osirusoft.com', `Mail rejected - see http://relays.osirusoft.com/')
FEATURE(dnsbl,`relays.ordb.org',`Mail rejected - see http://ordb.org/')
FEATURE(dnsbl,`blackholes.easynet.nl',`Mail rejected - see http://blackholes.easynet.nl/')
dnl FEATURE(dnsbl,`inputs.orbz.org', `Mail rejected - see http://orbz.org/')
dnl FEATURE(dnsbl,`relays.visi.com', `Mail rejected - see http://relays.visi.com/')
dnl FEATURE(dnsbl, `ex.dnsbl.org', `Mail rejected - see http://www.dnsbl.org/')
dnl FEATURE(dnsbl,`blackholes.mail-abuse.org',`Mail rejected - see http://mail-abuse.org/')
dnl FEATURE(dnsbl,`relays.mail-abuse.org',`Mail rejected - see http://work-rss.mail-abuse.org/')
dnl FEATURE(dnsbl,`dialups.mail-abuse.org',`Mail rejected; see http://mail-abuse.org/dul/enduser.htm')
dnl Russian DialUp Blocking List
FEATURE(`dnsbl',`dul.ru',`Mail rejected - your are spammer')

dnl Uncomment the first line to change the location of the default
dnl /etc/mail/local-host-names and comment out the second line.
dnl define(`confCW_FILE', `-o /etc/mail/sendmail.cw')
define(`confCW_FILE', `-o /etc/mail/local-host-names')

define(`confMAX_MIME_HEADER_LENGTH', `256/128')
define(`confMAX_MESSAGE_SIZE',`10000000')dnl

define(`confNO_RCPT_ACTION', `add-to-undisclosed')
define(`confPRIVACY_FLAGS',
`authwarnings,noexpn,novrfy,noetrn,nobodyreturn,goaway,restrictmailq,restrictqrun')
define(`confSMTP_LOGIN_MSG',`Antispam-MTA; "Non-authorized relaying DENIED." $b')

MAIL_FILTER(`clmilter',`S=local:/var/run/clamav/clmilter.sock, F=,T=S:4m;R:4m')dnl
define(`confINPUT_MAIL_FILTERS', `clmilter')

MAILER(local)
MAILER(smtp)

Feb  2 14:20:52 test sm-mta[13611]: j125KoRK013611: Milter (clmilter): error connecting to filter: Connection refused by /var/run/clamav/clmilter.sock
Feb  2 14:20:52 test sm-mta[13611]: j125KoRK013611: Milter (clmilter): to error state

Пробывал и
INPUT_MAIL_FILTER(`clmilter',`S=local:/var/run/clamav/clmilter.sock,F=, T=S:4m;R:4m')dnl
define(`confINPUT_MAIL_FILTERS',`clmilter')

Не помогает

  Рекомендовать в FAQ | Cообщить модератору | Наверх

 Оглавление

Индекс форумов | Темы | Пред. тема | След. тема
Сообщения по теме

1. "Проблема Sendmail 8.13.3+ClamAV 0.81+FreeBSD 5.3-p5"
Сообщение от lavr emailИскать по авторуВ закладки on 02-Фев-05, 11:58  (MSK)
>Собирал все из портов
>вот права
>ll /var/run/
>drwx------  2 clamav  clamav     512 Feb
> 2 12:50 clamav
>
>ll /var/run/clamav/
>-rw-rw----  1 clamav  clamav  4 Feb  2 12:50
>clamav-milter.pid
>srwxrwxrwx  1 clamav  clamav  0 Feb  2 12:50
>clamd
>-rw-rw----  1 clamav  clamav  3 Feb  2 12:50
>clamd.pid
>srwxr-xr-x  1 clamav  clamav  0 Feb  2 12:50
>clmilter.sock
>
>Конфиг Sendmaila
> divert(-1)
> divert(0)
> include(`../m4/cf.m4')
> VERSIONID(`$FreeBSD: src/etc/sendmail/freebsd.mc,v 1.10.2.11 2001/07/14 18:07:27 gshapiro Exp $')
> OSTYPE(freebsd5)
> DOMAIN(generic)
>
> FEATURE(`no_default_msa')
> DAEMON_OPTIONS(`Port=smtp, Name=MTA')
>
> define(`confMAX_HOP',`20')dnl
> define(`confQUEUE_LA',`64')dnl
> define(`confREFUSE_LA',`128')dnl
> define(`confMAX_DAEMON_CHILDREN',`25')dnl
> define(`confCONNECTION_RATE_THROTTLE',`5')dnl
> define(`confDEF_CHAR_SET',`koi8-r')dnl
> define(`confNO_RCPT_ACTION',`add-apparently-to')dnl
> define(`confMAX_RCPTS_PER_MESSAGE',`25')dnl
> define(`confSMTP_MAILER',`esmtp')dnl
> define(`confDONT_BLAME_SENDMAIL',`forwardfileingroupwritabledirpath')dnl
>
> FEATURE(access_db, `hash -o -T<TMPF> /etc/mail/access')
> FEATURE(blacklist_recipients)
> FEATURE(local_lmtp)
> FEATURE(mailertable, `hash -o /etc/mail/mailertable')
> FEATURE(relay_based_on_MX)
> FEATURE(virtusertable, `hash -o /etc/mail/virtusertable')
>
> dnl Realtime Blocking List - AntiSpam Control
> dnl FEATURE(dnsbl)
> dnl FEATURE(dnsbl, `relays.osirusoft.com', `Mail rejected - see http://relays.osirusoft.com/')
> FEATURE(dnsbl,`relays.ordb.org',`Mail rejected - see http://ordb.org/')
> FEATURE(dnsbl,`blackholes.easynet.nl',`Mail rejected - see http://blackholes.easynet.nl/')
> dnl FEATURE(dnsbl,`inputs.orbz.org', `Mail rejected - see http://orbz.org/')
> dnl FEATURE(dnsbl,`relays.visi.com', `Mail rejected - see http://relays.visi.com/')
> dnl FEATURE(dnsbl, `ex.dnsbl.org', `Mail rejected - see http://www.dnsbl.org/')
> dnl FEATURE(dnsbl,`blackholes.mail-abuse.org',`Mail rejected - see http://mail-abuse.org/')
> dnl FEATURE(dnsbl,`relays.mail-abuse.org',`Mail rejected - see http://work-rss.mail-abuse.org/')
> dnl FEATURE(dnsbl,`dialups.mail-abuse.org',`Mail rejected; see http://mail-abuse.org/dul/enduser.htm')
> dnl Russian DialUp Blocking List
> FEATURE(`dnsbl',`dul.ru',`Mail rejected - your are spammer')
>
> dnl Uncomment the first line to change the location of the
>default
> dnl /etc/mail/local-host-names and comment out the second line.
> dnl define(`confCW_FILE', `-o /etc/mail/sendmail.cw')
> define(`confCW_FILE', `-o /etc/mail/local-host-names')
>
> define(`confMAX_MIME_HEADER_LENGTH', `256/128')
> define(`confMAX_MESSAGE_SIZE',`10000000')dnl
>
> define(`confNO_RCPT_ACTION', `add-to-undisclosed')
> define(`confPRIVACY_FLAGS',
> `authwarnings,noexpn,novrfy,noetrn,nobodyreturn,goaway,restrictmailq,restrictqrun')
> define(`confSMTP_LOGIN_MSG',`Antispam-MTA; "Non-authorized relaying DENIED." $b')
>
> MAIL_FILTER(`clmilter',`S=local:/var/run/clamav/clmilter.sock, F=,T=S:4m;R:4m')dnl
> define(`confINPUT_MAIL_FILTERS', `clmilter')
>
> MAILER(local)
> MAILER(smtp)
>
>Feb  2 14:20:52 test sm-mta[13611]: j125KoRK013611: Milter (clmilter): error connecting to
>filter: Connection refused by /var/run/clamav/clmilter.sock
>Feb  2 14:20:52 test sm-mta[13611]: j125KoRK013611: Milter (clmilter): to error state
>
>
>Пробывал и
>INPUT_MAIL_FILTER(`clmilter',`S=local:/var/run/clamav/clmilter.sock,F=, T=S:4m;R:4m')dnl
>define(`confINPUT_MAIL_FILTERS',`clmilter')
>
>Не помогает

clamd.conf? и как запускается clamav-milter?

  Рекомендовать в FAQ | Cообщить модератору | Наверх

2. "Проблема Sendmail 8.13.3+ClamAV 0.81+FreeBSD 5.3-p5"
Сообщение от alexpn Искать по авторуВ закладки(ok) on 03-Фев-05, 10:36  (MSK)
>>Собирал все из портов
>>вот права
>>ll /var/run/
>>drwx------  2 clamav  clamav     512 Feb
>> 2 12:50 clamav
>>
>>ll /var/run/clamav/
>>-rw-rw----  1 clamav  clamav  4 Feb  2 12:50
>>clamav-milter.pid
>>srwxrwxrwx  1 clamav  clamav  0 Feb  2 12:50
>>clamd
>>-rw-rw----  1 clamav  clamav  3 Feb  2 12:50
>>clamd.pid
>>srwxr-xr-x  1 clamav  clamav  0 Feb  2 12:50
>>clmilter.sock
>>
>>Конфиг Sendmaila
>> divert(-1)
>> divert(0)
>> include(`../m4/cf.m4')
>> VERSIONID(`$FreeBSD: src/etc/sendmail/freebsd.mc,v 1.10.2.11 2001/07/14 18:07:27 gshapiro Exp $')
>> OSTYPE(freebsd5)
>> DOMAIN(generic)
>>
>> FEATURE(`no_default_msa')
>> DAEMON_OPTIONS(`Port=smtp, Name=MTA')
>>
>> define(`confMAX_HOP',`20')dnl
>> define(`confQUEUE_LA',`64')dnl
>> define(`confREFUSE_LA',`128')dnl
>> define(`confMAX_DAEMON_CHILDREN',`25')dnl
>> define(`confCONNECTION_RATE_THROTTLE',`5')dnl
>> define(`confDEF_CHAR_SET',`koi8-r')dnl
>> define(`confNO_RCPT_ACTION',`add-apparently-to')dnl
>> define(`confMAX_RCPTS_PER_MESSAGE',`25')dnl
>> define(`confSMTP_MAILER',`esmtp')dnl
>> define(`confDONT_BLAME_SENDMAIL',`forwardfileingroupwritabledirpath')dnl
>>
>> FEATURE(access_db, `hash -o -T<TMPF> /etc/mail/access')
>> FEATURE(blacklist_recipients)
>> FEATURE(local_lmtp)
>> FEATURE(mailertable, `hash -o /etc/mail/mailertable')
>> FEATURE(relay_based_on_MX)
>> FEATURE(virtusertable, `hash -o /etc/mail/virtusertable')
>>
>> dnl Realtime Blocking List - AntiSpam Control
>> dnl FEATURE(dnsbl)
>> dnl FEATURE(dnsbl, `relays.osirusoft.com', `Mail rejected - see http://relays.osirusoft.com/')
>> FEATURE(dnsbl,`relays.ordb.org',`Mail rejected - see http://ordb.org/')
>> FEATURE(dnsbl,`blackholes.easynet.nl',`Mail rejected - see http://blackholes.easynet.nl/')
>> dnl FEATURE(dnsbl,`inputs.orbz.org', `Mail rejected - see http://orbz.org/')
>> dnl FEATURE(dnsbl,`relays.visi.com', `Mail rejected - see http://relays.visi.com/')
>> dnl FEATURE(dnsbl, `ex.dnsbl.org', `Mail rejected - see http://www.dnsbl.org/')
>> dnl FEATURE(dnsbl,`blackholes.mail-abuse.org',`Mail rejected - see http://mail-abuse.org/')
>> dnl FEATURE(dnsbl,`relays.mail-abuse.org',`Mail rejected - see http://work-rss.mail-abuse.org/')
>> dnl FEATURE(dnsbl,`dialups.mail-abuse.org',`Mail rejected; see http://mail-abuse.org/dul/enduser.htm')
>> dnl Russian DialUp Blocking List
>> FEATURE(`dnsbl',`dul.ru',`Mail rejected - your are spammer')
>>
>> dnl Uncomment the first line to change the location of the
>>default
>> dnl /etc/mail/local-host-names and comment out the second line.
>> dnl define(`confCW_FILE', `-o /etc/mail/sendmail.cw')
>> define(`confCW_FILE', `-o /etc/mail/local-host-names')
>>
>> define(`confMAX_MIME_HEADER_LENGTH', `256/128')
>> define(`confMAX_MESSAGE_SIZE',`10000000')dnl
>>
>> define(`confNO_RCPT_ACTION', `add-to-undisclosed')
>> define(`confPRIVACY_FLAGS',
>> `authwarnings,noexpn,novrfy,noetrn,nobodyreturn,goaway,restrictmailq,restrictqrun')
>> define(`confSMTP_LOGIN_MSG',`Antispam-MTA; "Non-authorized relaying DENIED." $b')
>>
>> MAIL_FILTER(`clmilter',`S=local:/var/run/clamav/clmilter.sock, F=,T=S:4m;R:4m')dnl
>> define(`confINPUT_MAIL_FILTERS', `clmilter')
>>
>> MAILER(local)
>> MAILER(smtp)
>>
>>Feb  2 14:20:52 test sm-mta[13611]: j125KoRK013611: Milter (clmilter): error connecting to
>>filter: Connection refused by /var/run/clamav/clmilter.sock
>>Feb  2 14:20:52 test sm-mta[13611]: j125KoRK013611: Milter (clmilter): to error state
>>
>>
>>Пробывал и
>>INPUT_MAIL_FILTER(`clmilter',`S=local:/var/run/clamav/clmilter.sock,F=, T=S:4m;R:4m')dnl
>>define(`confINPUT_MAIL_FILTERS',`clmilter')
>>
>>Не помогает
>
>clamd.conf? и как запускается clamav-milter?
##
## Example config file for the Clam AV daemon
## Please read the clamd.conf(5) manual before editing this file.
##


# Comment or remove the line below.
#Example

# Uncomment this option to enable logging.
# LogFile must be writable for the user running daemon.
# A full path is required.
# Default: disabled
LogFile /var/log/clamav/clamd.log

# By default the log file is locked for writing - the lock protects against
# running clamd multiple times (if want to run another clamd, please
# copy the configuration file, change the LogFile variable, and run
# the daemon with --config-file option).
# This option disables log file locking.
# Default: disabled
#LogFileUnlock

# Maximal size of the log file.
# Value of 0 disables the limit.
# You may use 'M' or 'm' for megabytes (1M = 1m = 1048576 bytes)
# and 'K' or 'k' for kilobytes (1K = 1k = 1024 bytes). To specify the size
# in bytes just don't use modifiers.
# Default: 1M
#LogFileMaxSize 2M

# Log time with each message.
# Default: disabled
#LogTime

# Also log clean files. Useful in debugging but drastically increases the
# log size.
# Default: disabled
#LogClean

# Use system logger (can work together with LogFile).
# Default: disabled
#LogSyslog

# Specify the type of syslog messages - please refer to 'man syslog'
# for facility names.
# Default: LOG_LOCAL6
#LogFacility LOG_MAIL

# Enable verbose logging.
# Default: disabled
#LogVerbose

# This option allows you to save a process identifier of the listening
# daemon (main thread).
# Default: disabled
PidFile /var/run/clamav/clamd.pid

# Optional path to the global temporary directory.
# Default: system specific (usually /tmp or /var/tmp).
#TemporaryDirectory /var/tmp

# Path to the database directory.
# Default: hardcoded (depends on installation options)
DatabaseDirectory /var/db/clamav

# The daemon works in a local OR a network mode. Due to security reasons we
# recommend the local mode.

# Path to a local socket file the daemon will listen on.
# Default: disabled
LocalSocket /var/run/clamav/clamd

# Remove stale socket after unclean shutdown.
# Default: disabled
FixStaleSocket

# TCP port address.
# Default: disabled
#TCPSocket 3310

# TCP address.
# By default we bind to INADDR_ANY, probably not wise.
# Enable the following to provide some degree of protection
# from the outside world.
# Default: disabled
#TCPAddr 127.0.0.1

# Maximum length the queue of pending connections may grow to.
# Default: 15
#MaxConnectionQueueLength 30

# Close the connection if this limit is exceeded.
# Default: 10M
#StreamMaxLength 20M

# Maximal number of threads running at the same time.
# Default: 10
#MaxThreads 20

# Waiting for data from a client socket will timeout after this time (seconds).
# Value of 0 disables the timeout.
# Default: 120
#ReadTimeout 300

# Waiting for a new job will timeout after this time (seconds).
# Default: 30
#IdleTimeout 60

# Maximal depth directories are scanned at.
# Default: 15
#MaxDirectoryRecursion 20

# Follow directory symlinks.
# Default: disabled
#FollowDirectorySymlinks

# Follow regular file symlinks.
# Default: disabled
#FollowFileSymlinks

# Perform internal sanity check (database integrity and freshness).
# Default: 1800 (30 min)
#SelfCheck 600

# Execute a command when virus is found. In the command string %v will
# be replaced by a virus name.
# Default: disabled
#VirusEvent /usr/local/bin/send_sms 123456789 "VIRUS ALERT: %v"

# Run as a selected user (clamd must be started by root).
# Default: disabled
User clamav

# Initialize supplementary group access (clamd must be started by root).
# Default: disabled
AllowSupplementaryGroups

# Don't fork into background.
# Default: disabled
#Foreground

# Enable debug messages in libclamav.
# Default: disabled
#Debug

# Do not remove temporary files (for debug purposes).
# Default: disabled
#LeaveTemporaryFiles


# By default clamd uses scan options recommended by libclamav. This option
# disables recommended options and allows you to enable selected ones below.
# DO NOT TOUCH IT unless you know what you are doing.
# Default: disabled
#DisableDefaultScanOptions

##
## Executable files
##

# PE stands for Portable Executable - it's an executable file format used
# in all 32-bit versions of Windows operating systems. This option allows
# ClamAV to perform a deeper analysis of executable files and it's also
# required for decompression of popular executable packers such as UPX, FSG,
# and Petite.
# Default: enabled
#ScanPE

# With this option clamav will try to detect broken executables and mark
# them as Broken.Executable
# Default: disabled
#DetectBrokenExecutables


##
## Documents
##

# This option enables scanning of Microsoft Office document macros.
# Default: enabled
#ScanOLE2

##
## Mail files
##

# Enable internal e-mail scanner.
# Default: enabled
ScanMail

# If an email contains URLs ClamAV can download and scan them.
# WARNING: This option may open your system to a DoS attack.
#    Never use it on loaded servers.
# Default: disabled
#MailFollowURLs


##
## HTML
##

# Perform HTML normalisation and decryption of MS Script Encoder code.
# Default: enabled
#ScanHTML


##
## Archives
##

# ClamAV can scan within archives and compressed files.
# Default: enabled
#ScanArchive

# Due to license issues libclamav does not support RAR 3.0 archives (only the
# old 2.0 format is supported). Because some users report stability problems
# with unrarlib it's disabled by default and you must uncomment the directive
# below to enable RAR 2.0 support.
# Default: disabled
#ScanRAR

# The options below protect your system against Denial of Service attacks
# using archive bombs.

# Files in archives larger than this limit won't be scanned.
# Value of 0 disables the limit.
# Default: 10M
#ArchiveMaxFileSize 15M

# Nested archives are scanned recursively, e.g. if a Zip archive contains a RAR
# file, all files within it will also be scanned. This options specifies how
# deep the process should be continued.
# Value of 0 disables the limit.
# Default: 5
#ArchiveMaxRecursion 8

# Number of files to be scanned within an archive.
# Value of 0 disables the limit.
# Default: 1000
#ArchiveMaxFiles 1500

# If a file in an archive is compressed more than ArchiveMaxCompressionRatio
# times it will be marked as a virus (Oversized.ArchiveType, e.g. Oversized.Zip)
# Value of 0 disables the limit.
# Default: 250
#ArchiveMaxCompressionRatio 300

# Use slower but memory efficient decompression algorithm.
# only affects the bzip2 decompressor.
# Default: disabled
#ArchiveLimitMemoryUsage

# Mark encrypted archives as viruses (Encrypted.Zip, Encrypted.RAR).
# Default: disabled
#ArchiveBlockEncrypted

# Mark archives as viruses if ArchiveMaxFiles, ArchiveMaxFileSize, or
# ArchiveMaxRecursion limit is reached.
# Default: disabled
#ArchiveBlockMax


##
## Clamuko settings
## WARNING: This is experimental software. It is very likely it will hang
##     up your system!!!
##

# Enable Clamuko. Dazuko (/dev/dazuko) must be configured and running.
# Default: disabled
#ClamukoScanOnAccess

# Set access mask for Clamuko.
# Default: disabled
#ClamukoScanOnOpen
#ClamukoScanOnClose
#ClamukoScanOnExec

# Set the include paths (all files in them will be scanned). You can have
# multiple ClamukoIncludePath directives but each directory must be added
# in a seperate line.
# Default: disabled
#ClamukoIncludePath /home
#ClamukoIncludePath /students

# Set the exclude paths. All subdirectories are also excluded.
# Default: disabled
#ClamukoExcludePath /home/guru

# Don't scan files larger than ClamukoMaxFileSize
# Value of 0 disables the limit.
# Default: 5M
#ClamukoMaxFileSize 10M

Запускается стандартно clamav_milter_enable="YES" в /etc/rc.conf
/usr/local/sbin/clamav-milter --pidfile /var/run/clamav/clamav-milter.pid --postmaster-only --local --outgoing --max-children=50 /var/run/clamav/clmilter.sock

  Рекомендовать в FAQ | Cообщить модератору | Наверх

3. "Проблема Sendmail 8.13.3+ClamAV 0.81+FreeBSD 5.3-p5"
Сообщение от lavr emailИскать по авторуВ закладки on 03-Фев-05, 11:02  (MSK)
>>>Собирал все из портов
>>>вот права
>>>ll /var/run/
>>>drwx------  2 clamav  clamav     512 Feb
>>> 2 12:50 clamav
>>>
>>>ll /var/run/clamav/
>>>-rw-rw----  1 clamav  clamav  4 Feb  2 12:50
>>>clamav-milter.pid
>>>srwxrwxrwx  1 clamav  clamav  0 Feb  2 12:50
>>>clamd
>>>-rw-rw----  1 clamav  clamav  3 Feb  2 12:50
>>>clamd.pid
>>>srwxr-xr-x  1 clamav  clamav  0 Feb  2 12:50
>>>clmilter.sock
>>>
>>>Конфиг Sendmaila
>>> divert(-1)
>>> divert(0)
>>> include(`../m4/cf.m4')
>>> VERSIONID(`$FreeBSD: src/etc/sendmail/freebsd.mc,v 1.10.2.11 2001/07/14 18:07:27 gshapiro Exp $')
>>> OSTYPE(freebsd5)
>>> DOMAIN(generic)
>>>
>>> FEATURE(`no_default_msa')
>>> DAEMON_OPTIONS(`Port=smtp, Name=MTA')
>>>
>>> define(`confMAX_HOP',`20')dnl
>>> define(`confQUEUE_LA',`64')dnl
>>> define(`confREFUSE_LA',`128')dnl
>>> define(`confMAX_DAEMON_CHILDREN',`25')dnl
>>> define(`confCONNECTION_RATE_THROTTLE',`5')dnl
>>> define(`confDEF_CHAR_SET',`koi8-r')dnl
>>> define(`confNO_RCPT_ACTION',`add-apparently-to')dnl
>>> define(`confMAX_RCPTS_PER_MESSAGE',`25')dnl
>>> define(`confSMTP_MAILER',`esmtp')dnl
>>> define(`confDONT_BLAME_SENDMAIL',`forwardfileingroupwritabledirpath')dnl
>>>
>>> FEATURE(access_db, `hash -o -T<TMPF> /etc/mail/access')
>>> FEATURE(blacklist_recipients)
>>> FEATURE(local_lmtp)
>>> FEATURE(mailertable, `hash -o /etc/mail/mailertable')
>>> FEATURE(relay_based_on_MX)
>>> FEATURE(virtusertable, `hash -o /etc/mail/virtusertable')
>>>
>>> dnl Realtime Blocking List - AntiSpam Control
>>> dnl FEATURE(dnsbl)
>>> dnl FEATURE(dnsbl, `relays.osirusoft.com', `Mail rejected - see http://relays.osirusoft.com/')
>>> FEATURE(dnsbl,`relays.ordb.org',`Mail rejected - see http://ordb.org/')
>>> FEATURE(dnsbl,`blackholes.easynet.nl',`Mail rejected - see http://blackholes.easynet.nl/')
>>> dnl FEATURE(dnsbl,`inputs.orbz.org', `Mail rejected - see http://orbz.org/')
>>> dnl FEATURE(dnsbl,`relays.visi.com', `Mail rejected - see http://relays.visi.com/')
>>> dnl FEATURE(dnsbl, `ex.dnsbl.org', `Mail rejected - see http://www.dnsbl.org/')
>>> dnl FEATURE(dnsbl,`blackholes.mail-abuse.org',`Mail rejected - see http://mail-abuse.org/')
>>> dnl FEATURE(dnsbl,`relays.mail-abuse.org',`Mail rejected - see http://work-rss.mail-abuse.org/')
>>> dnl FEATURE(dnsbl,`dialups.mail-abuse.org',`Mail rejected; see http://mail-abuse.org/dul/enduser.htm')
>>> dnl Russian DialUp Blocking List
>>> FEATURE(`dnsbl',`dul.ru',`Mail rejected - your are spammer')
>>>
>>> dnl Uncomment the first line to change the location of the
>>>default
>>> dnl /etc/mail/local-host-names and comment out the second line.
>>> dnl define(`confCW_FILE', `-o /etc/mail/sendmail.cw')
>>> define(`confCW_FILE', `-o /etc/mail/local-host-names')
>>>
>>> define(`confMAX_MIME_HEADER_LENGTH', `256/128')
>>> define(`confMAX_MESSAGE_SIZE',`10000000')dnl
>>>
>>> define(`confNO_RCPT_ACTION', `add-to-undisclosed')
>>> define(`confPRIVACY_FLAGS',
>>> `authwarnings,noexpn,novrfy,noetrn,nobodyreturn,goaway,restrictmailq,restrictqrun')
>>> define(`confSMTP_LOGIN_MSG',`Antispam-MTA; "Non-authorized relaying DENIED." $b')
>>>
>>> MAIL_FILTER(`clmilter',`S=local:/var/run/clamav/clmilter.sock, F=,T=S:4m;R:4m')dnl
>>> define(`confINPUT_MAIL_FILTERS', `clmilter')
>>>
>>> MAILER(local)
>>> MAILER(smtp)
>>>
>>>Feb  2 14:20:52 test sm-mta[13611]: j125KoRK013611: Milter (clmilter): error connecting to
>>>filter: Connection refused by /var/run/clamav/clmilter.sock
>>>Feb  2 14:20:52 test sm-mta[13611]: j125KoRK013611: Milter (clmilter): to error state
>>>
>>>
>>>Пробывал и
>>>INPUT_MAIL_FILTER(`clmilter',`S=local:/var/run/clamav/clmilter.sock,F=, T=S:4m;R:4m')dnl
>>>define(`confINPUT_MAIL_FILTERS',`clmilter')
>>>
>>>Не помогает
>>
>>clamd.conf? и как запускается clamav-milter?
>##
>## Example config file for the Clam AV daemon
>## Please read the clamd.conf(5) manual before editing this file.
>##
>
>
># Comment or remove the line below.
>#Example
>
># Uncomment this option to enable logging.
># LogFile must be writable for the user running daemon.
># A full path is required.
># Default: disabled
>LogFile /var/log/clamav/clamd.log
>
># By default the log file is locked for writing - the
>lock protects against
># running clamd multiple times (if want to run another clamd, please
>
># copy the configuration file, change the LogFile variable, and run
># the daemon with --config-file option).
># This option disables log file locking.
># Default: disabled
>#LogFileUnlock
>
># Maximal size of the log file.
># Value of 0 disables the limit.
># You may use 'M' or 'm' for megabytes (1M = 1m
>= 1048576 bytes)
># and 'K' or 'k' for kilobytes (1K = 1k = 1024
>bytes). To specify the size
># in bytes just don't use modifiers.
># Default: 1M
>#LogFileMaxSize 2M
>
># Log time with each message.
># Default: disabled
>#LogTime
>
># Also log clean files. Useful in debugging but drastically increases the
>
># log size.
># Default: disabled
>#LogClean
>
># Use system logger (can work together with LogFile).
># Default: disabled
>#LogSyslog
>
># Specify the type of syslog messages - please refer to 'man
>syslog'
># for facility names.
># Default: LOG_LOCAL6
>#LogFacility LOG_MAIL
>
># Enable verbose logging.
># Default: disabled
>#LogVerbose
>
># This option allows you to save a process identifier of the
>listening
># daemon (main thread).
># Default: disabled
>PidFile /var/run/clamav/clamd.pid
>
># Optional path to the global temporary directory.
># Default: system specific (usually /tmp or /var/tmp).
>#TemporaryDirectory /var/tmp
>
># Path to the database directory.
># Default: hardcoded (depends on installation options)
>DatabaseDirectory /var/db/clamav
>
># The daemon works in a local OR a network mode. Due
>to security reasons we
># recommend the local mode.
>
># Path to a local socket file the daemon will listen on.
>
># Default: disabled
>LocalSocket /var/run/clamav/clamd
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^- это дядя писал?

см.выше в своем sendmail.mc:
MAIL_FILTER(`clmilter',`S=local:/var/run/clamav/clmilter.sock, F=,T=S:4m;R:4m')dnl

S=local:/var/run/clamav/clmilter.sock

остальное даже смотреть и проверять не буду

man clamd
man clamav-milter
man clamd.conf

меня одно удивляет - неужели так трудно положить демоны и запустить
руками в соответствии со своей конфигураций и руками задать ключи -
тот же clamav-milter с указанием сокета из логов sendmail

по шагам:

# cd /etc/mail
# make stop
положили sendmail
# /usr/local/etc/rc.d/clamav-milter.sh stop
# /usr/local/etc/rc.d/clamd.sh stop
правим конфиги
стартуем в обратном порядке (желательно чтобы антивирусные демоны и
milter-фильтры стартовали до запуска sendmail):
# /usr/local/etc/rc.d/clamd.sh start
# /usr/local/etc/rc.d/clamav-milter.sh start
# cd /etc/mail
# make start

># Remove stale socket after unclean shutdown.
># Default: disabled
>FixStaleSocket
>
># TCP port address.
># Default: disabled
>#TCPSocket 3310
>
># TCP address.
># By default we bind to INADDR_ANY, probably not wise.
># Enable the following to provide some degree of protection
># from the outside world.
># Default: disabled
>#TCPAddr 127.0.0.1
>
># Maximum length the queue of pending connections may grow to.
># Default: 15
>#MaxConnectionQueueLength 30
>
># Close the connection if this limit is exceeded.
># Default: 10M
>#StreamMaxLength 20M
>
># Maximal number of threads running at the same time.
># Default: 10
>#MaxThreads 20
>
># Waiting for data from a client socket will timeout after this
>time (seconds).
># Value of 0 disables the timeout.
># Default: 120
>#ReadTimeout 300
>
># Waiting for a new job will timeout after this time (seconds).
>
># Default: 30
>#IdleTimeout 60
>
># Maximal depth directories are scanned at.
># Default: 15
>#MaxDirectoryRecursion 20
>
># Follow directory symlinks.
># Default: disabled
>#FollowDirectorySymlinks
>
># Follow regular file symlinks.
># Default: disabled
>#FollowFileSymlinks
>
># Perform internal sanity check (database integrity and freshness).
># Default: 1800 (30 min)
>#SelfCheck 600
>
># Execute a command when virus is found. In the command string
>%v will
># be replaced by a virus name.
># Default: disabled
>#VirusEvent /usr/local/bin/send_sms 123456789 "VIRUS ALERT: %v"
>
># Run as a selected user (clamd must be started by root).
>
># Default: disabled
>User clamav
>
># Initialize supplementary group access (clamd must be started by root).
># Default: disabled
>AllowSupplementaryGroups
>
># Don't fork into background.
># Default: disabled
>#Foreground
>
># Enable debug messages in libclamav.
># Default: disabled
>#Debug
>
># Do not remove temporary files (for debug purposes).
># Default: disabled
>#LeaveTemporaryFiles
>
>
># By default clamd uses scan options recommended by libclamav. This option
>
># disables recommended options and allows you to enable selected ones below.
>
># DO NOT TOUCH IT unless you know what you are doing.
>
># Default: disabled
>#DisableDefaultScanOptions
>
>##
>## Executable files
>##
>
># PE stands for Portable Executable - it's an executable file format
>used
># in all 32-bit versions of Windows operating systems. This option allows
>
># ClamAV to perform a deeper analysis of executable files and it's
>also
># required for decompression of popular executable packers such as UPX, FSG,
>
># and Petite.
># Default: enabled
>#ScanPE
>
># With this option clamav will try to detect broken executables and
>mark
># them as Broken.Executable
># Default: disabled
>#DetectBrokenExecutables
>
>
>##
>## Documents
>##
>
># This option enables scanning of Microsoft Office document macros.
># Default: enabled
>#ScanOLE2
>
>##
>## Mail files
>##
>
># Enable internal e-mail scanner.
># Default: enabled
>ScanMail
>
># If an email contains URLs ClamAV can download and scan them.
>
># WARNING: This option may open your system to a DoS attack.
>
>#    Never use it on loaded servers.
># Default: disabled
>#MailFollowURLs
>
>
>##
>## HTML
>##
>
># Perform HTML normalisation and decryption of MS Script Encoder code.
># Default: enabled
>#ScanHTML
>
>
>##
>## Archives
>##
>
># ClamAV can scan within archives and compressed files.
># Default: enabled
>#ScanArchive
>
># Due to license issues libclamav does not support RAR 3.0 archives
>(only the
># old 2.0 format is supported). Because some users report stability problems
>
># with unrarlib it's disabled by default and you must uncomment the
>directive
># below to enable RAR 2.0 support.
># Default: disabled
>#ScanRAR
>
># The options below protect your system against Denial of Service attacks
>
># using archive bombs.
>
># Files in archives larger than this limit won't be scanned.
># Value of 0 disables the limit.
># Default: 10M
>#ArchiveMaxFileSize 15M
>
># Nested archives are scanned recursively, e.g. if a Zip archive contains
>a RAR
># file, all files within it will also be scanned. This options
>specifies how
># deep the process should be continued.
># Value of 0 disables the limit.
># Default: 5
>#ArchiveMaxRecursion 8
>
># Number of files to be scanned within an archive.
># Value of 0 disables the limit.
># Default: 1000
>#ArchiveMaxFiles 1500
>
># If a file in an archive is compressed more than ArchiveMaxCompressionRatio
>
># times it will be marked as a virus (Oversized.ArchiveType, e.g. Oversized.Zip)
>
># Value of 0 disables the limit.
># Default: 250
>#ArchiveMaxCompressionRatio 300
>
># Use slower but memory efficient decompression algorithm.
># only affects the bzip2 decompressor.
># Default: disabled
>#ArchiveLimitMemoryUsage
>
># Mark encrypted archives as viruses (Encrypted.Zip, Encrypted.RAR).
># Default: disabled
>#ArchiveBlockEncrypted
>
># Mark archives as viruses if ArchiveMaxFiles, ArchiveMaxFileSize, or
># ArchiveMaxRecursion limit is reached.
># Default: disabled
>#ArchiveBlockMax
>
>
>##
>## Clamuko settings
>## WARNING: This is experimental software. It is very likely it will
>hang
>##     up your system!!!
>##
>
># Enable Clamuko. Dazuko (/dev/dazuko) must be configured and running.
># Default: disabled
>#ClamukoScanOnAccess
>
># Set access mask for Clamuko.
># Default: disabled
>#ClamukoScanOnOpen
>#ClamukoScanOnClose
>#ClamukoScanOnExec
>
># Set the include paths (all files in them will be scanned).
>You can have
># multiple ClamukoIncludePath directives but each directory must be added
># in a seperate line.
># Default: disabled
>#ClamukoIncludePath /home
>#ClamukoIncludePath /students
>
># Set the exclude paths. All subdirectories are also excluded.
># Default: disabled
>#ClamukoExcludePath /home/guru
>
># Don't scan files larger than ClamukoMaxFileSize
># Value of 0 disables the limit.
># Default: 5M
>#ClamukoMaxFileSize 10M
>
>Запускается стандартно clamav_milter_enable="YES" в /etc/rc.conf
>/usr/local/sbin/clamav-milter --pidfile /var/run/clamav/clamav-milter.pid --postmaster-only --local --outgoing --max-children=50 /var/run/clamav/clmilter.sock


  Рекомендовать в FAQ | Cообщить модератору | Наверх

4. "Проблема Sendmail 8.13.3+ClamAV 0.81+FreeBSD 5.3-p5"
Сообщение от 88 Искать по авторуВ закладки on 03-Фев-05, 11:20  (MSK)
>>>>Собирал все из портов
>>>>вот права
>>>>ll /var/run/
>>>>drwx------  2 clamav  clamav     512 Feb
>>>> 2 12:50 clamav
>>>>
>>>>ll /var/run/clamav/
>>>>-rw-rw----  1 clamav  clamav  4 Feb  2 12:50
>>>>clamav-milter.pid
>>>>srwxrwxrwx  1 clamav  clamav  0 Feb  2 12:50
>>>>clamd
>>>>-rw-rw----  1 clamav  clamav  3 Feb  2 12:50
>>>>clamd.pid
>>>>srwxr-xr-x  1 clamav  clamav  0 Feb  2 12:50
>>>>clmilter.sock
>>>>
>>>>Конфиг Sendmaila
>>>> divert(-1)
>>>> divert(0)
>>>> include(`../m4/cf.m4')
>>>> VERSIONID(`$FreeBSD: src/etc/sendmail/freebsd.mc,v 1.10.2.11 2001/07/14 18:07:27 gshapiro Exp $')
>>>> OSTYPE(freebsd5)
>>>> DOMAIN(generic)
>>>>
>>>> FEATURE(`no_default_msa')
>>>> DAEMON_OPTIONS(`Port=smtp, Name=MTA')
>>>>
>>>> define(`confMAX_HOP',`20')dnl
>>>> define(`confQUEUE_LA',`64')dnl
>>>> define(`confREFUSE_LA',`128')dnl
>>>> define(`confMAX_DAEMON_CHILDREN',`25')dnl
>>>> define(`confCONNECTION_RATE_THROTTLE',`5')dnl
>>>> define(`confDEF_CHAR_SET',`koi8-r')dnl
>>>> define(`confNO_RCPT_ACTION',`add-apparently-to')dnl
>>>> define(`confMAX_RCPTS_PER_MESSAGE',`25')dnl
>>>> define(`confSMTP_MAILER',`esmtp')dnl
>>>> define(`confDONT_BLAME_SENDMAIL',`forwardfileingroupwritabledirpath')dnl
>>>>
>>>> FEATURE(access_db, `hash -o -T<TMPF> /etc/mail/access')
>>>> FEATURE(blacklist_recipients)
>>>> FEATURE(local_lmtp)
>>>> FEATURE(mailertable, `hash -o /etc/mail/mailertable')
>>>> FEATURE(relay_based_on_MX)
>>>> FEATURE(virtusertable, `hash -o /etc/mail/virtusertable')
>>>>
>>>> dnl Realtime Blocking List - AntiSpam Control
>>>> dnl FEATURE(dnsbl)
>>>> dnl FEATURE(dnsbl, `relays.osirusoft.com', `Mail rejected - see http://relays.osirusoft.com/')
>>>> FEATURE(dnsbl,`relays.ordb.org',`Mail rejected - see http://ordb.org/')
>>>> FEATURE(dnsbl,`blackholes.easynet.nl',`Mail rejected - see http://blackholes.easynet.nl/')
>>>> dnl FEATURE(dnsbl,`inputs.orbz.org', `Mail rejected - see http://orbz.org/')
>>>> dnl FEATURE(dnsbl,`relays.visi.com', `Mail rejected - see http://relays.visi.com/')
>>>> dnl FEATURE(dnsbl, `ex.dnsbl.org', `Mail rejected - see http://www.dnsbl.org/')
>>>> dnl FEATURE(dnsbl,`blackholes.mail-abuse.org',`Mail rejected - see http://mail-abuse.org/')
>>>> dnl FEATURE(dnsbl,`relays.mail-abuse.org',`Mail rejected - see http://work-rss.mail-abuse.org/')
>>>> dnl FEATURE(dnsbl,`dialups.mail-abuse.org',`Mail rejected; see http://mail-abuse.org/dul/enduser.htm')
>>>> dnl Russian DialUp Blocking List
>>>> FEATURE(`dnsbl',`dul.ru',`Mail rejected - your are spammer')
>>>>
>>>> dnl Uncomment the first line to change the location of the
>>>>default
>>>> dnl /etc/mail/local-host-names and comment out the second line.
>>>> dnl define(`confCW_FILE', `-o /etc/mail/sendmail.cw')
>>>> define(`confCW_FILE', `-o /etc/mail/local-host-names')
>>>>
>>>> define(`confMAX_MIME_HEADER_LENGTH', `256/128')
>>>> define(`confMAX_MESSAGE_SIZE',`10000000')dnl
>>>>
>>>> define(`confNO_RCPT_ACTION', `add-to-undisclosed')
>>>> define(`confPRIVACY_FLAGS',
>>>> `authwarnings,noexpn,novrfy,noetrn,nobodyreturn,goaway,restrictmailq,restrictqrun')
>>>> define(`confSMTP_LOGIN_MSG',`Antispam-MTA; "Non-authorized relaying DENIED." $b')
>>>>
>>>> MAIL_FILTER(`clmilter',`S=local:/var/run/clamav/clmilter.sock, F=,T=S:4m;R:4m')dnl
>>>> define(`confINPUT_MAIL_FILTERS', `clmilter')
>>>>
>>>> MAILER(local)
>>>> MAILER(smtp)
>>>>
>>>>Feb  2 14:20:52 test sm-mta[13611]: j125KoRK013611: Milter (clmilter): error connecting to
>>>>filter: Connection refused by /var/run/clamav/clmilter.sock
>>>>Feb  2 14:20:52 test sm-mta[13611]: j125KoRK013611: Milter (clmilter): to error state
>>>>
>>>>
>>>>Пробывал и
>>>>INPUT_MAIL_FILTER(`clmilter',`S=local:/var/run/clamav/clmilter.sock,F=, T=S:4m;R:4m')dnl
>>>>define(`confINPUT_MAIL_FILTERS',`clmilter')
>>>>
>>>>Не помогает
>>>
>>>clamd.conf? и как запускается clamav-milter?
>>##
>>## Example config file for the Clam AV daemon
>>## Please read the clamd.conf(5) manual before editing this file.
>>##
>>
>>
>># Comment or remove the line below.
>>#Example
>>
>># Uncomment this option to enable logging.
>># LogFile must be writable for the user running daemon.
>># A full path is required.
>># Default: disabled
>>LogFile /var/log/clamav/clamd.log
>>
>># By default the log file is locked for writing - the
>>lock protects against
>># running clamd multiple times (if want to run another clamd, please
>>
>># copy the configuration file, change the LogFile variable, and run
>># the daemon with --config-file option).
>># This option disables log file locking.
>># Default: disabled
>>#LogFileUnlock
>>
>># Maximal size of the log file.
>># Value of 0 disables the limit.
>># You may use 'M' or 'm' for megabytes (1M = 1m
>>= 1048576 bytes)
>># and 'K' or 'k' for kilobytes (1K = 1k = 1024
>>bytes). To specify the size
>># in bytes just don't use modifiers.
>># Default: 1M
>>#LogFileMaxSize 2M
>>
>># Log time with each message.
>># Default: disabled
>>#LogTime
>>
>># Also log clean files. Useful in debugging but drastically increases the
>>
>># log size.
>># Default: disabled
>>#LogClean
>>
>># Use system logger (can work together with LogFile).
>># Default: disabled
>>#LogSyslog
>>
>># Specify the type of syslog messages - please refer to 'man
>>syslog'
>># for facility names.
>># Default: LOG_LOCAL6
>>#LogFacility LOG_MAIL
>>
>># Enable verbose logging.
>># Default: disabled
>>#LogVerbose
>>
>># This option allows you to save a process identifier of the
>>listening
>># daemon (main thread).
>># Default: disabled
>>PidFile /var/run/clamav/clamd.pid
>>
>># Optional path to the global temporary directory.
>># Default: system specific (usually /tmp or /var/tmp).
>>#TemporaryDirectory /var/tmp
>>
>># Path to the database directory.
>># Default: hardcoded (depends on installation options)
>>DatabaseDirectory /var/db/clamav
>>
>># The daemon works in a local OR a network mode. Due
>>to security reasons we
>># recommend the local mode.
>>
>># Path to a local socket file the daemon will listen on.
>>
>># Default: disabled
>>LocalSocket /var/run/clamav/clamd
>^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^- это дядя писал?
>
>см.выше в своем sendmail.mc:
>MAIL_FILTER(`clmilter',`S=local:/var/run/clamav/clmilter.sock, F=,T=S:4m;R:4m')dnl
>
>S=local:/var/run/clamav/clmilter.sock
>
>остальное даже смотреть и проверять не буду
>
>man clamd
>man clamav-milter
>man clamd.conf
>
>меня одно удивляет - неужели так трудно положить демоны и запустить
>руками в соответствии со своей конфигураций и руками задать ключи -
>тот же clamav-milter с указанием сокета из логов sendmail
>
>по шагам:
>
># cd /etc/mail
># make stop
>положили sendmail
># /usr/local/etc/rc.d/clamav-milter.sh stop
># /usr/local/etc/rc.d/clamd.sh stop
>правим конфиги
>стартуем в обратном порядке (желательно чтобы антивирусные демоны и
>milter-фильтры стартовали до запуска sendmail):
># /usr/local/etc/rc.d/clamd.sh start
># /usr/local/etc/rc.d/clamav-milter.sh start
># cd /etc/mail
># make start
>
>># Remove stale socket after unclean shutdown.
>># Default: disabled
>>FixStaleSocket
>>
>># TCP port address.
>># Default: disabled
>>#TCPSocket 3310
>>
>># TCP address.
>># By default we bind to INADDR_ANY, probably not wise.
>># Enable the following to provide some degree of protection
>># from the outside world.
>># Default: disabled
>>#TCPAddr 127.0.0.1
>>
>># Maximum length the queue of pending connections may grow to.
>># Default: 15
>>#MaxConnectionQueueLength 30
>>
>># Close the connection if this limit is exceeded.
>># Default: 10M
>>#StreamMaxLength 20M
>>
>># Maximal number of threads running at the same time.
>># Default: 10
>>#MaxThreads 20
>>
>># Waiting for data from a client socket will timeout after this
>>time (seconds).
>># Value of 0 disables the timeout.
>># Default: 120
>>#ReadTimeout 300
>>
>># Waiting for a new job will timeout after this time (seconds).
>>
>># Default: 30
>>#IdleTimeout 60
>>
>># Maximal depth directories are scanned at.
>># Default: 15
>>#MaxDirectoryRecursion 20
>>
>># Follow directory symlinks.
>># Default: disabled
>>#FollowDirectorySymlinks
>>
>># Follow regular file symlinks.
>># Default: disabled
>>#FollowFileSymlinks
>>
>># Perform internal sanity check (database integrity and freshness).
>># Default: 1800 (30 min)
>>#SelfCheck 600
>>
>># Execute a command when virus is found. In the command string
>>%v will
>># be replaced by a virus name.
>># Default: disabled
>>#VirusEvent /usr/local/bin/send_sms 123456789 "VIRUS ALERT: %v"
>>
>># Run as a selected user (clamd must be started by root).
>>
>># Default: disabled
>>User clamav
>>
>># Initialize supplementary group access (clamd must be started by root).
>># Default: disabled
>>AllowSupplementaryGroups
>>
>># Don't fork into background.
>># Default: disabled
>>#Foreground
>>
>># Enable debug messages in libclamav.
>># Default: disabled
>>#Debug
>>
>># Do not remove temporary files (for debug purposes).
>># Default: disabled
>>#LeaveTemporaryFiles
>>
>>
>># By default clamd uses scan options recommended by libclamav. This option
>>
>># disables recommended options and allows you to enable selected ones below.
>>
>># DO NOT TOUCH IT unless you know what you are doing.
>>
>># Default: disabled
>>#DisableDefaultScanOptions
>>
>>##
>>## Executable files
>>##
>>
>># PE stands for Portable Executable - it's an executable file format
>>used
>># in all 32-bit versions of Windows operating systems. This option allows
>>
>># ClamAV to perform a deeper analysis of executable files and it's
>>also
>># required for decompression of popular executable packers such as UPX, FSG,
>>
>># and Petite.
>># Default: enabled
>>#ScanPE
>>
>># With this option clamav will try to detect broken executables and
>>mark
>># them as Broken.Executable
>># Default: disabled
>>#DetectBrokenExecutables
>>
>>
>>##
>>## Documents
>>##
>>
>># This option enables scanning of Microsoft Office document macros.
>># Default: enabled
>>#ScanOLE2
>>
>>##
>>## Mail files
>>##
>>
>># Enable internal e-mail scanner.
>># Default: enabled
>>ScanMail
>>
>># If an email contains URLs ClamAV can download and scan them.
>>
>># WARNING: This option may open your system to a DoS attack.
>>
>>#    Never use it on loaded servers.
>># Default: disabled
>>#MailFollowURLs
>>
>>
>>##
>>## HTML
>>##
>>
>># Perform HTML normalisation and decryption of MS Script Encoder code.
>># Default: enabled
>>#ScanHTML
>>
>>
>>##
>>## Archives
>>##
>>
>># ClamAV can scan within archives and compressed files.
>># Default: enabled
>>#ScanArchive
>>
>># Due to license issues libclamav does not support RAR 3.0 archives
>>(only the
>># old 2.0 format is supported). Because some users report stability problems
>>
>># with unrarlib it's disabled by default and you must uncomment the
>>directive
>># below to enable RAR 2.0 support.
>># Default: disabled
>>#ScanRAR
>>
>># The options below protect your system against Denial of Service attacks
>>
>># using archive bombs.
>>
>># Files in archives larger than this limit won't be scanned.
>># Value of 0 disables the limit.
>># Default: 10M
>>#ArchiveMaxFileSize 15M
>>
>># Nested archives are scanned recursively, e.g. if a Zip archive contains
>>a RAR
>># file, all files within it will also be scanned. This options
>>specifies how
>># deep the process should be continued.
>># Value of 0 disables the limit.
>># Default: 5
>>#ArchiveMaxRecursion 8
>>
>># Number of files to be scanned within an archive.
>># Value of 0 disables the limit.
>># Default: 1000
>>#ArchiveMaxFiles 1500
>>
>># If a file in an archive is compressed more than ArchiveMaxCompressionRatio
>>
>># times it will be marked as a virus (Oversized.ArchiveType, e.g. Oversized.Zip)
>>
>># Value of 0 disables the limit.
>># Default: 250
>>#ArchiveMaxCompressionRatio 300
>>
>># Use slower but memory efficient decompression algorithm.
>># only affects the bzip2 decompressor.
>># Default: disabled
>>#ArchiveLimitMemoryUsage
>>
>># Mark encrypted archives as viruses (Encrypted.Zip, Encrypted.RAR).
>># Default: disabled
>>#ArchiveBlockEncrypted
>>
>># Mark archives as viruses if ArchiveMaxFiles, ArchiveMaxFileSize, or
>># ArchiveMaxRecursion limit is reached.
>># Default: disabled
>>#ArchiveBlockMax
>>
>>
>>##
>>## Clamuko settings
>>## WARNING: This is experimental software. It is very likely it will
>>hang
>>##     up your system!!!
>>##
>>
>># Enable Clamuko. Dazuko (/dev/dazuko) must be configured and running.
>># Default: disabled
>>#ClamukoScanOnAccess
>>
>># Set access mask for Clamuko.
>># Default: disabled
>>#ClamukoScanOnOpen
>>#ClamukoScanOnClose
>>#ClamukoScanOnExec
>>
>># Set the include paths (all files in them will be scanned).
>>You can have
>># multiple ClamukoIncludePath directives but each directory must be added
>># in a seperate line.
>># Default: disabled
>>#ClamukoIncludePath /home
>>#ClamukoIncludePath /students
>>
>># Set the exclude paths. All subdirectories are also excluded.
>># Default: disabled
>>#ClamukoExcludePath /home/guru
>>
>># Don't scan files larger than ClamukoMaxFileSize
>># Value of 0 disables the limit.
>># Default: 5M
>>#ClamukoMaxFileSize 10M
>>
>>Запускается стандартно clamav_milter_enable="YES" в /etc/rc.conf
>>/usr/local/sbin/clamav-milter --pidfile /var/run/clamav/clamav-milter.pid --postmaster-only --local --outgoing --max-children=50 /var/run/clamav/clmilter.sock


парни, я всё понимаю. токо вопрос:
а нельзя ли сраные >> >> >> >> >> >> >> >> убирать из ответов?
или ваще лень???
задрало килограммами одно и тоже фуфло таскать с инета.

  Рекомендовать в FAQ | Cообщить модератору | Наверх

5. "Проблема Sendmail 8.13.3+ClamAV 0.81+FreeBSD 5.3-p5"
Сообщение от Дениска Искать по авторуВ закладки(??) on 03-Фев-05, 11:24  (MSK)
>задрало килограммами одно и тоже фуфло таскать с инета.
:) а сам че не убрал в своем посте :)

  Рекомендовать в FAQ | Cообщить модератору | Наверх

6. "Проблема Sendmail 8.13.3+ClamAV 0.81+FreeBSD 5.3-p5"
Сообщение от alexpn Искать по авторуВ закладки(ok) on 04-Фев-05, 08:14  (MSK)
>>задрало килограммами одно и тоже фуфло таскать с инета.
>:) а сам че не убрал в своем посте :)


Пробывал один Х...
А в конфиге просто опечатка
Пробывал все из исходников собрать .... такаяже ерунда
Читал и пробывал
http://www.onlamp.com/pub/a/bsd/2004/04/01/Big_Scary_Daemons.html
Без разници.Вот !!!

  Рекомендовать в FAQ | Cообщить модератору | Наверх

7. "Проблема Sendmail 8.13.3+ClamAV 0.81+FreeBSD 5.3-p5"
Сообщение от lavr emailИскать по авторуВ закладки on 04-Фев-05, 10:35  (MSK)
>>>задрало килограммами одно и тоже фуфло таскать с инета.
>>:) а сам че не убрал в своем посте :)
>
>
>Пробывал один Х...
>А в конфиге просто опечатка
>Пробывал все из исходников собрать .... такаяже ерунда
>Читал и пробывал
>http://www.onlamp.com/pub/a/bsd/2004/04/01/Big_Scary_Daemons.html
>Без разници.Вот !!!

с подобными ляпами разумеется будет без разницы, можно что угодно читать,
но делать нужно порпуская через свои мозги, sorry, ничего личного.

  Рекомендовать в FAQ | Cообщить модератору | Наверх

8. "Проблема Sendmail 8.13.3+ClamAV 0.81+FreeBSD 5.3-p5"
Сообщение от alexpn Искать по авторуВ закладки(ok) on 05-Фев-05, 06:50  (MSK)
Я указал в начале
ll /var/run/clamav/
-rw-rw----  1 clamav  clamav  4 Feb  2 12:50 clamav-milter.pid
srwxrwxrwx  1 clamav  clamav  0 Feb  2 12:50 clamd
-rw-rw----  1 clamav  clamav  3 Feb  2 12:50 clamd.pid
srwxr-xr-x  1 clamav  clamav  0 Feb  2 12:50 clmilter.sock

Все есть ... я понимаю ошибка простая но где копать ?
Пришлите кто инфу с pkg_info у кого такая-же история

  Рекомендовать в FAQ | Cообщить модератору | Наверх

9. "Проблема Sendmail 8.13.3+ClamAV 0.81+FreeBSD 5.3-p5"
Сообщение от Walter emailИскать по авторуВ закладки(??) on 06-Фев-05, 21:41  (MSK)
У меня та же самая картина.
Правда система
uname -r
4.11-RELEASE

и Sendmail у меня 8.13.1

Сутки провоевал с этой проблемой. Ответа не нашёл.
В инете вопросы есть на данную тему, но ответов ни у кого нету.

  Рекомендовать в FAQ | Cообщить модератору | Наверх

10. "Проблема Sendmail 8.13.3+ClamAV 0.81+FreeBSD 5.3-p5"
Сообщение от alexpn Искать по авторуВ закладки(ok) on 07-Фев-05, 05:16  (MSK)
Ядро стандартное или сам собрал ??? систему пересобирал или нет ???


  Рекомендовать в FAQ | Cообщить модератору | Наверх

11. "Проблема Sendmail 8.13.3+ClamAV 0.81+FreeBSD 5.3-p5"
Сообщение от Walter emailИскать по авторуВ закладки(??) on 07-Фев-05, 11:03  (MSK)
>Ядро стандартное или сам собрал ??? систему пересобирал или нет ???
Систему НЕ пересобирал.
Недавно сделал binary upgrade с 4.10-RELEASE.
Ядро пересобрал конечно.
  Рекомендовать в FAQ | Cообщить модератору | Наверх

12. "Проблема Sendmail 8.13.3+ClamAV 0.81+FreeBSD 5.3-p5"
Сообщение от Muke Искать по авторуВ закладки on 07-Фев-05, 13:19  (MSK)
>Собирал все из портов
>вот права
>ll /var/run/
>drwx------  2 clamav  clamav     512 Feb
> 2 12:50 clamav
>
>ll /var/run/clamav/
>-rw-rw----  1 clamav  clamav  4 Feb  2 12:50
>clamav-milter.pid
>srwxrwxrwx  1 clamav  clamav  0 Feb  2 12:50
>clamd
>-rw-rw----  1 clamav  clamav  3 Feb  2 12:50
>clamd.pid
>srwxr-xr-x  1 clamav  clamav  0 Feb  2 12:50
>clmilter.sock

а clamav-milter точно запущен?-)
ps -Af | grep clamav
и по ману его надо пускать с local:/var/run/clamav/clmilter.sock

  Рекомендовать в FAQ | Cообщить модератору | Наверх

13. "Проблема Sendmail 8.13.3+ClamAV 0.81+FreeBSD 5.3-p5"
Сообщение от Walter emailИскать по авторуВ закладки(??) on 07-Фев-05, 16:58  (MSK)
>а clamav-milter точно запущен?-)
>ps -Af | grep clamav
>и по ману его надо пускать с local:/var/run/clamav/clmilter.sock

У меня точно.
ps -auxww | grep clamav
clamav  4311  0,0  1,3  9284 8504  ??  Ss   15:53     0:00,00 /usr/local/sbin/clamav-milter --pidfile /var/run/clamav/clamav-milter.pid --postmaster-only --local --outgoing --max-children=50 local:/var/run/clamav/clmilter.sock
clamav   367  0,0  0,1  1864  800  ??  Is   20:23     0:00,00 /usr/local/bin/freshclam --daemon
clamav   360  0,0  1,2  9084 8016  ??  Is   20:23     0:00,00 /usr/local/sbin/clamd

И всё равно в логе сендмейла
Feb  7 15:55:51 mars sm-mta[4339]: j17Dtps7004339: Milter (clmilter): error connecting to filter: Connection refused by /var/run/clamav/clmilter.sock
Feb  7 15:55:51 mars sm-mta[4339]: j17Dtps7004339: Milter (clmilter): to error state

  Рекомендовать в FAQ | Cообщить модератору | Наверх

14. "Проблема Sendmail 8.13.3+ClamAV 0.81+FreeBSD 5.3-p5"
Сообщение от Walter emailИскать по авторуВ закладки(??) on 11-Фев-05, 13:35  (MSK)
После нескольких дней войны - нашёл таки причину.
Скорее всего у тебя в sysctl.conf стоит
kern.ipc.somaxconn=32768
при таком значениии перестают нормально работать unix-sockets
и в результате ты наблюдаешь
Milter (clmilter): error connecting to filter: Connection refused by /var/run/clamav/clmilter.sock

Я уменьшил это значение до kern.ipc.somaxconn=16384
И всё заработало.

Не знаю, прочитаешь ты это сообщение. Я так вижу все уже забили на эту ветку.

  Рекомендовать в FAQ | Cообщить модератору | Наверх


Удалить

Индекс форумов | Темы | Пред. тема | След. тема
Пожалуйста, прежде чем написать сообщение, ознакомьтесь с данными рекомендациями.




Спонсоры:
PostgresPro
Inferno Solutions
Hosting by Hoster.ru
Хостинг:

Закладки на сайте
Проследить за страницей
Created 1996-2023 by Maxim Chirkov
Добавить, Поддержать, Вебмастеру