디지문닷넷 DigiMoon 맘대로 닦고 조이고 기름치는 재미가 있는 DigiMoon만의 기억 저장소

[root@localhost ~]# wget ftp://195.220.108.108/linux/epel/5/SRPMS/ripmime-1.4.0.9-2.el5.src.rpm
[root@localhost ~]# rpm -ivh ripmime-1.4.0.9-2.el5.src.rpm
[root@localhost ~]# cd /usr/src/redhat/SPECS
[root@localhost SPECS]# rpmbuild -ba ripmime.spec
[root@localhost SPECS]# cd /usr/src/redhat/RPMS/i386
[root@localhost i386]# rpm -Uvh ripmime*

[root@localhost ~]# rpm -Uvh http://apt.sw.be/redhat/el5/en/i386/rpmforge/RPMS/rpmforge-release-0.3.6-1.el5.rf.i386.rpm
[root@localhost ~]# yum -y install clamav clamav-devel clamav-db clamav-milter
[root@localhost ~]# yum -y install clamd
[root@localhost ~]# cp -arp /etc/clamd.conf /etc/clamd.conf.orig
[root@digimoon ~]# cat /etc/clamd.conf

LogFile /var/log/clamav/clamd.log
LogTime yes
LogSyslog yes
LogVerbose yes
PidFile /var/run/clamav/clamd.pid
TemporaryDirectory /var/tmp
DatabaseDirectory /var/clamav
LocalSocket /tmp/clamd.socket
FixStaleSocket yes
ScanMail yes

[root@localhost ~]# cp -arp /etc/freshclam.conf /etc/freshclam.conf.orig
[root@localhost ~]# cat /etc/freshclam.conf

DatabaseDirectory /var/clamav
UpdateLogFile /var/log/clamav/freshclam.log
LogSyslog yes
PidFile /var/run/freshclam.pid
DatabaseOwner clamav
DatabaseMirror db.kr.clamav.net
DatabaseMirror db.local.clamav.net
NotifyClamd /etc/clamd.conf

[root@localhost ~]# freshclam
[root@localhost ~]# /etc/init.d/clamd start

[root@localhost ~]# yum -y install spamassassin
[root@localhost ~]# sa-update -D
[root@localhost ~]# /etc/init.d/spamassassin start

SPAMDOPTIONS="-d -c -m5 -H" <- 이 부분을
SPAMDOPTIONS="-d -v -m10 -x -u vpopmail" <- 이렇게 고쳐준다

[root@localhost ~]# wget http://downloads.sourceforge.net/project/simscan/simscan/simscan-1.4.0/simscan-1.4.0.tar.gz?use_mirror=cdnetworks-kr-2
[root@localhost ~]# wget http://ejlabs.net/txt/patch/simscan-1.4.0.patch
[root@localhost ~]# tar xvfz simscan-1.4.0.tar.gz
[root@localhost ~]# cd simscan-1.4.0
[root@localhost simscan-1.4.0]# patch -p1 < ../simscan-1.4.0.patch
[root@localhost simscan-1.4.0]# useradd -r -g clamav -s /bin/false -c "Simscan - a qmail-queue substitute" simscan
[root@localhost simscan-1.4.0]# ./configure --prefix=/usr --sysconfdir=/etc --mandir=/usr/share/man --enable-user=simscan --enable-clamav=y --enable-attach=y --enable-dropmsg=y --enable-per-domain=y --enable-spam=y --enable-spamc-user=y --enable-spamc=/usr/bin/spamc --enable-spam-hits=30.0 --enable-qmaildir=/var/qmail --enable-workdir=/var/qmail/simscan --enable-controldir=/var/qmail/control --enable-quarantinedir=/var/qmail/quarantine --enable-qmail-queue=/var/qmail/bin/qmail-queue --enable-ripmime=/usr/bin/ripmime --enable-received=y --enable-spamassassin-path=/usr/bin/spamassassin --enable-clamavdb-path=/var/clamav --enable-clamdscan=/usr/bin/clamdscan --enable-sigtool-path=/usr/bin/sigtool --enable-spam-passthru=y
[root@localhost simscan-1.4.0]# make
[root@localhost simscan-1.4.0]# make install-strip
[root@localhost simscan-1.4.0]# mkdir /var/qmail/quarantine
[root@localhost simscan-1.4.0]# chown simscan:clamav /var/qmail/quarantine/
[root@localhost simscan-1.4.0]# chmod 770 /var/qmail/quarantine/
[root@localhost simscan-1.4.0]# cat /var/qmail/control/simcontrol

:clam=yes,spam=yes,attach=.scr:.bat:.com:.pif:.exe:.mp3:.avi:.mpeg:.wmv

[root@digimoon simscan-1.4.0]# /var/qmail/bin/simscanmk -g
simscan versions cdb file built. /var/qmail/control/simversions.cdb
[root@digimoon simscan-1.4.0]# /var/qmail/bin/simscanmk
simscan cdb file built. /var/qmail/control/simcontrol.cdb
[root@digimoon simscan-1.4.0]#

[root@localhost ~]# echo "hi~" > mailtest.txt
[root@localhost ~]# env QMAILQUEUE=/var/qmail/bin/simscan SIMSCAN_DEBUG=2 /var/qmail/bin/qmail-inject master@foobar.com < mailtest.txt
simscan: cdb looking up
simscan: cdb for  found clam=yes,spam=yes,attach=.scr:.bat:.com:.pif:.exe:.mp3:.avi:.mpeg:.wmv
simscan: pelookup clam = yes
simscan: pelookup spam = yes
simscan: pelookup attach = .scr:.bat:.com:.pif:.exe:.mp3:.avi:.mpeg:.wmv
simscan: attachment flag attach = .scr:.bat:.com:.pif:.exe:.mp3:.avi:.mpeg:.wmv
simscan: .scr is attachment number 0
simscan: .bat is attachment number 1
simscan: .com is attachment number 2
simscan: .pif is attachment number 3
simscan: .exe is attachment number 4
simscan: .mp3 is attachment number 5
simscan: .avi is attachment number 6
simscan: .mpeg is attachment number 7
simscan: .wmv is attachment number 8
simscan: starting: work dir: /var/qmail/simscan/1270400451.777157.17309
simscan: pelookup: called with master@foobar.com
simscan: pelookup: domain is digimoon.net
simscan: cdb looking up digimoon.net
simscan: pelookup: local part is root
simscan: cdb looking up master@foobar.com
simscan: pelookup: called with master@foobar.com
simscan: pelookup: domain is digimoon.net
simscan: cdb looking up digimoon.net
simscan: pelookup: local part is admin
simscan: cdb looking up master@foobar.com
simscan: cdb looking up version attach
simscan: calling clamdscan
simscan: cdb looking up version clamav
simscan: normal clamdscan return code: 0
simscan: calling spamc
simscan: calling /usr/bin/spamc  spamc -u master@foobar.com
simscan: cdb looking up version spam
simscan:[17308]:CLEAN (3.00/10.00):5.0506s::(null):root@foobar.com:master@foobar.com
simscan: done, execing qmail-queue
simscan: qmail-queue exited 0
[root@localhost ~]#

[root@localhost ~]# cat /var/qmail/supervise/qmail-smtpd/run

#!/bin/sh
QMAILQUEUE="/var/qmail/bin/simscan"
export QMAILQUEUE
Q_UID=`id -u vpopmail`
Q_GID=`id -g vpopmail`
exec /usr/local/bin/softlimit -m 20000000 \
/usr/local/bin/tcpserver -vRHl 0 -x /etc/tcp.smtp.cdb \
-u $Q_UID -g $Q_GID 0 25 \
/usr/local/bin/rblsmtpd -b -r bl.spamcop.net \
/var/qmail/bin/qmail-smtpd /home/vpopmail/bin/vchkpw /bin/true 2>&1
[root@localhost ~]#

Received: by simscan 1.4.0 ppid: 6201, pid: 6202, t: 5.0931s
         scanners: attach: 1.4.0 clamav: 0.96/m:52/d:10699 spam: 3.3.1
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on foobar.com