> -----Original Message-----
> From: Brian Snipes [mailto:[EMAIL PROTECTED]]
> Sent: Thursday, May 16, 2002 9:15 AM
> To: [EMAIL PROTECTED]
> Subject: [SAtalk] SpamAssassin on firewall or relay box
>
>
> Are there any step-by-step FAQs or HowTos on implementing
> SpamAssassin on a
> relay server and does anyone currently have this implemented?
> Which would be
> the easiest to setup/manage with SpamAssassin as a relay box
> - Exim, Postfix,
> Sendmail, Qmail, ...?
>
I do this using the following apps:
- qmail (mta)
- qmailscanner (queue scanner)
- spamassassin (spam)
- f-prot (virus)
- other minor patches and programs needed to make it all fly.
Just set up your relays in /var/qmail/control/smtproute and run spamassassin+virus
protection through qmail-scanner.
-----------
Here is my quick HOWTO:
1. Patch Qmail with QMAILQUEU patch, then install qmail-1.03 - Following
www.lifewithqmail.org is probably best.
- qmailqueue patch can be found at http://qmail.goof.com/qmailqueue-patch
# cd qmail-1.03
# patch -p1 < qmailqueue-patch
2. configure smtproute file.
example lines in smtproute -
# domain:ip:port where port is optional, defaults to 25
mydomain.com:192.168.1.2:2525
mydomain2.com:80.1.1.2:
First line says to forward any mail for mydomain.com to the server 192.168.1.2
listening on port 2525. what we do is open a non-standard port on the firewall, have
stmproute forward to that port, and then the firewall forwards the mail to the
internal exchange server on port 25.
3. Install SpamAssassin. Start spamd daemon with # spamd -F0 -d
4. Install virus protection. F-Prot is easy and free.
# tar zxfv fp-linux_beta.tar.gz -C /usr/local
# mv /usr/local/fp-linux_311b_beta /usr/local/fprot
5. Update virus protection. Script I use for f-prot is
#!/bin/bash
cd /usr/local/f-prot
ncftpget ftp://updates.f-prot.com/pub/macrdef2.zip
ncftpget ftp://updates.f-prot.com/pub/fp-def.zip
unzip -o fp-def.zip
unzip -o macrdef2.zip
I prefer to use ncftpget because it will only pull the file if the file changes. That
way you can put this script in crontab every hour, and not piss anyone off by
downloading the updates to often.
6. Qmail-Scanner prereq: Perl Modules Time::HiRes, DB_File, Sys::Syslog - download
from search.cpan.org
- how to install a perl module..
# perl Makefile.pl
# make & make install
7. Qmail-Scanner prereq: Install tnef unpacket (wget
http://world.std.com/~damned/tnef-1.1.1.tar.gz)
# ./configure
# make & make install
8. Qmail-Scanner prereq: Install maildrop (wget
http://download.sourceforge.net/courier/maildrop-1.3.9.tar.gz)
# ./configure
# make & make install
9. Install qmail-scanner (http://qmail-scanner.sourceforge.net)
# ./configure --admin root --domain mydomain.com --add-dscr-hdrs yes --unzip
no --install
It should detect spamd and fprot installed.
10. update your supervise script that launches your stmpd to add
QMAILQUEUE="/var/qmail/bin/qmail-scanner-queue.pl"
export QMAILQUEUE
11. Change your MX record for mydomain.com to point to the IP address of your mail
gateway.
-----------
Done... now your mail is scanned for virus+spam before it is delivered to your
internal mail server.
Good Luck,
----
Dallas Engelken
Network Consultant / Mail Administrator
Network Management Group, Inc.
http://www.nmgi.com
[EMAIL PROTECTED]
_______________________________________________________________
Have big pipes? SourceForge.net is looking for download mirrors. We supply
the hardware. You get the recognition. Email Us: [EMAIL PROTECTED]
_______________________________________________
Spamassassin-talk mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/spamassassin-talk
