Amavis & Clamd Installation

-
                                                                    
                                            
        Install amavis
1. install perl*
[root@mail ~]#  yum install perl

2. install cpan
[root@mail ~]# perl -MCPAN -e shell

3. login cpan
[root@mail ~]# cpan ==> enter
example

[root@test ~]# cpan
Terminal does not support AddHistory.

cpan shell --CPAN exploration and modules installation (v1.7602)
ReadLine support available (try 'install Bundle::CPAN')

cpan> install Compress::Raw::Zlib

######## Modeuls ##############
Compress::Raw::Zlib
IO::Compress::Base
IO::Compress::Zlib
Compress::Zlib
IO::Zlib
Algorithm::Diff
Text::Diff
Archive::Tar
File::Which
Archive::Zip
BerkeleyDB
IO::stringy
MailTools
MIME::Base
MIME::tools
Convert::TNEF
Convert::BinHex
Convert::UUlib
Data::UUID
Digest::MD5
Net::Server
Time::HiRes
zlib
Unix::Syslog
Sys::Hostname::Long
Socket
IP::Country
Net::CIDR::Lite
Net_SSLeay.pm
IO::Socket::SSL
Net::Ident
Mail::SPF::Query
razor::agents
razor::agents::sdk
Mail::SpamAssassin
######################################
==> To install AMAVISD :
Commands (as root) -
[root@mail ~]# mkdir /var/amavis
[root@mail ~]# groupadd vscan
[root@mail ~]# useradd -g vscan -d /var/amavis  -s /bin/bash vscan
[root@mail ~]# chmod 750 /var/amavis
[root@mail ~]# mkdir /var/amavis/tmp

(Download amavisd)
URL :- ==> http://www.ijs.si/software/amavisd/amavisd-new-2.7.1.tar.gz

[root@mail ~]# tar -zxvf amavisd-new-2.7.1.tar.gz
[root@mail ~]# cd amavisd-new-2.7.1
[root@mail ~]# cp amavisd /usr/sbin
[root@mail ~]# chown root /usr/sbin/amavisd
[root@mail ~]# chmod 755 /usr/sbin/amavisd
[root@mail ~]# cp amavisd.conf /etc
[root@mail ~]# chown root /etc/amavisd.conf
[root@mail ~]# chmod 644 /etc/amavisd.conf
[root@mail ~]# mkdir /var/virusmails
[root@mail ~]# chmod 750 /var/virusmails/
[root@mail ~]# chown vscan /var/virusmails/
[root@mail ~]# mkdir /var/amavis/db
[root@mail ~]# chown -R vscan:vscan /var/amavis
Now edit /etc/amavisd.conf by command ->

[root@mail ~]# vi /etc/amavisd.conf
Edit the lines to become -
$mydomain = 'example.com';
$virus_admin      = "security\@$mydomain";
$mailfrom_notify_admin     = "security\@$mydomain";
$mailfrom_notify_recip     = "security\@$mydomain";
$mailfrom_notify_spamadmin = "security\@$mydomain";
and Uncomment the following (remove # in front & give /tmp/clamd.socket on
this line)-
['ClamAV-clamd',
   \&ask_daemon, ["CONTSCAN {}\n", " /tmp/clamd.socket "],
   qr/\bOK$/, qr/\bFOUND$/,
   qr/^.*?: (?!Infected Archive)(.*) FOUND$/ ],
save and quit
AMAVISD INSTALL OVER
=======> START CLAMAV INSTALLATION <==========
Commands (as root) -

[root@mail ~]# groupadd clamav
[root@mail ~]# useradd -g clamav -s /bin/false -c "Clam Antivirus" clamav

URL :- ===> http://downloads.sourceforge.net/project/clamav/clamav/0.97.4/clamav-0.97.4.tar.gz?r=http%3A%2F%2Fsourceforge.net%2Fprojects%2Fclamav%2Ffiles%2Fclamav%2F0.97.4%2F&ts=1337755989&use_mirror=nchc
(Download clamav) :  clamav-0.97.4.tar.gz

[root@mail ~]# tar -zxvf clamav-0.97.4.tar.gz
[root@mail ~]# cd clamav-0.97.4
[root@mail ~]# ./configure --sysconfdir=/etc
[root@mail ~]# make
[root@mail ~]# make install
[root@mail ~]#mkdir /var/lib/clamav
[root@mail ~]#chown – R clamav:clamav /var/lib/clamav

Now edit /etc/clamd.conf by command ->
[root@mail ~]# cd /etc
[root@mail ~]# cp clamd.conf clamd.conf_org
[root@mail ~]# vi clamd.conf
Edit the lines to become -
#Example       {Put # in fronf of Example line}
LogFile /tmp/clamd.log                    {Remove # in front of  line}
DatabaseDirectory /var/lib/clamav      {Remove # in front of line}
save and quit

Now edit  /etc/freshclam.conf by command ->
[root@mail ~]# cp freshclam.conf freshclam.conf_org

[root@mail ~]# vi freshclam.conf
Edit the lines to become -
#Example                     {Put # in fronf of Example line}
save and quit
[root@mail ~]# touch /var/log/clam-update.log
[root@mail ~]# chmod 600 /var/log/clam-update.log
[root@mail ~]# chown clamav /var/log/clam-update.log
[root@mail ~]# /usr/local/bin/freshclam --datadir=/var/lib/clamav -l
/var/log/clam-update.log

Edit crontab by command ->
[root@mail ~]# crontab -e
Add line ->
06 08 * * * /usr/local/bin/freshclam --quiet -l /var/log/clam-update.log
save and quit
CLAM AV INSTALLATION OVER
Test CLAMAV by command
[root@mail ~]# /usr/local/sbin/clamd
(Should not give error)
Test AMAVISD by command -
/usr/sbin/amavisd
(Should not give error)

[root@mail~]# sa-upbate


Edit this file to autostart antivirus
[root@mail ~]# vi /etc/rc.d/rc.local
Edit  in the last :
/usr/local/sbin/clamd
/usr/sbin/amavisd
[root@mail ~]# cd /etc/postfix
To add Amavisd and Clam to Postix, edit master.cf and add the following lines
[root@mail ~]# cp master.cf master.cf_org

[root@mail ~]# vi master.cf
smtp-amavis unix -      -       n       -       2  lmtp
    -o lmtp_data_done_timeout=1200
    -o lmtp_send_xforward_command=yes
127.0.0.1:10025 inet n  -       n       -       -  smtpd
    -o content_filter=
    -o local_recipient_maps=
    -o relay_recipient_maps=
    -o smtpd_restriction_classes=
    -o smtpd_client_restrictions=
    -o smtpd_helo_restrictions=
    -o smtpd_sender_restrictions=
    -o smtpd_recipient_restrictions=permit_mynetworks,reject
    -o mynetworks=127.0.0.0/8
    -o strict_rfc821_envelopes=yes
    -o smtpd_error_sleep_time=0
    -o smtpd_soft_error_limit=1001
    -o smtpd_hard_error_limit=1000
save and quit

Edit main.cf and add -
[root@mail ~]# vim /etc/postfix/main.cf
content_filter=smtp-amavis:[127.0.0.1]:10024
save and quit

[root@mail~]# /etc/init.d/postfix restart

To check if anti-virus is running
[root@mail~]# ps -ef  | grep clamd
[root@mail~]# ps -ef | grep amavisd

[root@mail~]# telnet localhost 10024
rying 127.0.0.1...
Connected to localhost.localdomain (127.0.0.1).
Escape character is '^]'.
220 [127.0.0.1] ESMTP amavisd-new service ready

[root@mail~]# telnet localhost 10025
Trying 127.0.0.1...
Connected to localhost.localdomain (127.0.0.1).
Escape character is '^]'.
220 a.raju.com ESMTP Postfix



Comments

Post a Comment

Popular posts from this blog

How to install and configure node js and PM2 in rhel7

-
OS RHEL7.6 Minimal Install Download :  libuv-1.7.5-3.el7.x86_64.rpm , nodejs-4.7.2-1.el7.x86_64.rpm [root@node1 ~]# rpm -ivh nodejs-4.7.2-1.el7.x86_64.rpm warning: nodejs-4.7.2-1.el7.x86_64.rpm: Header V3 RSA/SHA256 Signature, key ID fd431d51: NOKEY error: Failed dependencies: libuv >= 1:1.7.5 is needed by nodejs-4.7.2-1.el7.x86_64 libuv.so.1()(64bit) is needed by nodejs-4.7.2-1.el7.x86_64 [root@node1 ~]# rpm -ivh libuv-1.7.5-3.el7.x86_64.rpm warning: libuv-1.7.5-3.el7.x86_64.rpm: Header V3 RSA/SHA256 Signature, key ID fd431d51: NOKEY Preparing...                          ################################# [100%] Updating / installing...    1:libuv-1:1.7.5-3.el7              ################################# [100%] [root@node1 ~]# rpm -ivh nodejs-4.7.2-1.el7.x86_64.rpm warning: nodejs-4.7.2-1.el7.x86_64.rpm: Header V3 RSA/SHA256 Signature, key ID fd431d51: NOKEY Preparing...                          ################################# [100%] Updating / installing.
Read more

PCS Corosync Pacemaker Cluster Mariadb using NFS

-
              PCS Corosync Pacemaker Cluster Mariadb using NFS I have use 2 node cluster with nfsserver  (NODE1,NODE2 and nfsserver )  OS RHEL7.6 Minimal Install IP 192.168.122.50 node1.example.com node1 IP 192.168.122.51 node2.example.com node2 IP 192.168.122.49 nfsserver.example.com nfsserver [root@node1 ~]# vi /etc/hosts  ( edit in NODE1,NODE2 and nfsserver ) 127.0.0.1   localhost localhost.localdomain localhost4 localhost4.localdomain4 ::1         localhost localhost.localdomain localhost6 localhost6.localdomain6 192.168.122.49 nfsserver.example.com nfsserver 192.168.122.50 node1.example.com node1 192.168.122.51 node2.example.com node2 #####  Stop Firewall in NODE1,NODE2 and nfsserver  ####### [root@node1 ~]# iptables -F [root@node1 ~]# iptables -F -t nat [root@node1 ~]# systemctl stop firewalld [root@node1 ~]# systemctl disable firewalld [root@node1 ~]# systemctl stop NetworkManager [root@node1 ~]# systemctl disable NetworkManager [root@node1 ~]# vi /etc/sy
Read more

How to Create or Configure iSCSI Server and Clinet

-
Server: server.example.com IP Address: 192.168.122.246 OS: CentOS 7.9 Client: client.example.com IP Address: 192.168.122.245 Server: [root@server ~]# pvcreate /dev/vdb [root@server ~]# vgcreate newvg /dev/vdb [root@server ~]#  lvcreate -L 10G -n iscsi newvg [root@server ~]# yum install targetcli -y [root@server ~]# targetcli > cd /backstores/block /backstores/block> create iscsi_disk1 /dev/newvg/iscsi Created block storage object iscsi_disk1 using /dev/newvg/iscsi. /backstores/block> cd /iscsi /iscsi> create iqn.2016-02.local.cass2.server:disk1 Created target iqn.2016-02.local.cass2.server:disk1. Created TPG 1. Global pref auto_add_default_portal=true Created default portal listening on all IPs (0.0.0.0), port 3260. /iscsi> cd /iscsi/iqn.2016-02.local.cass2.server:disk1/tpg1/acls  /iscsi/iqn.20...sk1/tpg1/acls> create iqn.2016-02.local.cass2.server:cass1 Created Node ACL for iqn.2016-02.local.cass2.server:cass1 /iscsi/iqn.20...sk1/tpg1/acls> cd /iscsi/iqn.2016-02.
Read more