Dennis Peterson wrote:
Some new problems below:
Nigel Horne wrote:
Dennis Peterson wrote:
I've decided to explore clamav-milter. The objective is to have a
single server where all clamAV process run. Think of it as a virtual
AV appliance (Because that is what it is).
The lab environment is a mail server (Solaris 9, Sparc) running
sendmail and another server (Solaris 10, X86) that runs clamd and the
milter used to extract the attachments and submit them to ClamAV. I
have substituted clamav-milter for this function by adding clmilter
to sendmail.cf on the mail server. I built and have a running copy of
milter-clamav and tried the following command line to start it:
/usr/local/sbin/clamav-milter --external --server=127.0.0.1 \
--quiet --blacklist=60 --postmaster-only --local \
-outgoing inet:3311
I'm missing something, obviously. Perhaps this is not a valid
architecture?
dp
Solution to first problem: tcpwrappers. Thanks again, Nigel.
Second problem: adding the -I IPaddress option causes a core dump.
Fixed in CVS, thanks for the report.
Third problem: The --blacklist=60 does not work as I expected. I thought
it would track the client connecting to the MTA but in fact it is
tracking the IP of my MTA which is bad. I'm wondering again about the
validity of the architecture.
It is true that the --blacklist option will blacklist the IP address
connecting to clamav-milter, rather than the IP connecting to sendmail,
so in this scenario it wouldn't be a useful option to enable. I'll have
a look and see it is possible to change that.
Otherwise it's working fine.
dp
-Nigel
_______________________________________________
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://lurker.clamav.net/list/clamav-users.html
