store | blogs | forums | twitter | facebook | wiki | downloads | support portal
Atomic Secure Linux
It is currently Sat Aug 17, 2019 1:26 pm

» Feed - Atomicorp

All times are UTC - 5 hours [ DST ]




Post new topic Reply to topic  [ 1 post ] 
Author Message
 Post subject: Things to Turn off in PLESK with using Qmail-Scanner
Unread postPosted: Sat Feb 07, 2015 2:34 pm 
Offline
Forum User
Forum User

Joined: Thu Jan 08, 2009 4:31 am
Posts: 35
Location: Fort Worth, TX
It occurred to me that it has never been said plainly -- and perhaps upon installation, it should be stated:

If you have installed qmail-scanner with spamassassin and clamd:

#1) Remove DrWeb or any other PLESK Anti-Virus.
#2) If PSA-Spamassassin is installed, turn off all options in Tools > Spam Filtering, then remove psa-spamassassin.
#3) Turn off SPF checking in PLESK and instead, edit local.cf and add rules like below:

score SPF_PASS 0.0
score SPF_FAIL 8.0
score SPF_SOFTFAIL 2.0

(I have issues with SPF Checking on PLESK 12.0.8 with Qmail-Scanner with soft fails -- so this is a WONDERFUL work around.)

If you have spamdyke installed:

#1) Turn off Greylisting from PLESK's Spam Filtering Settings (Tools > Spam Filtering)
#2) Remove RBLs from PLESK's Mail Settings, and place them in /etc/spamdyke.conf

This is what I have: --

#RBL BLOCKLISTS
dns-blacklist-entry=zen.spamhaus.org
dns-blacklist-entry=bl.spamcop.net
dns-blacklist-entry=dnsbl.sorbs.net
dns-blacklist-entry=dnsbl-1.uceprotect.net
dns-blacklist-entry=cbl.abuseat.org
dns-blacklist-entry=b.barracudacentral.org
dns-blacklist-entry=ix.dnsbl.manitu.net

-

I have found this a very helpful resource:
http://www.anti-abuse.org/multi-rbl-check-results/

-----------

And make sure that /etc/xinetd.d/smtp_psa always contains SpamDyke after Relaylock. Sometimes PLESK updates and edits to the mail configuration will remove it. Here's my configuration below:

Code:
server_args = -Rt0 /var/qmail/bin/relaylock /usr/bin/spamdyke -f /etc/spamdyke.conf  /var/qmail/bin/qmail-smtpd /var/qmail/bin/smtp_auth /var/qmail/bin/true /var/qmail/bin/cmd5checkpw /var/qmail/bin/true


If you are very lazy, you can type:

yum reinstall spamdyke

---

Final thing -- here is what works for me with /etc/spamdyke.conf

I turned off the database logging as I find it far more useful to have logging in maillog. I added 'reject-ip-in-cc-rdns' and commented out 'reject-unresolvable-rdns' because it is ASTOUNDING how many servers are incorrectly setup including aa.com (American Airlines) among others.

Code:
#Plesk-Addon
log-level=info
idle-timeout-secs=180
local-domains-file=/var/qmail/control/rcpthosts
tls-certificate-file=/var/qmail/control/servercert.pem

#AUTH FROM xinetd-conf
smtp-auth-command=/var/qmail/bin/smtp_auth /var/qmail/bin/true /var/qmail/bin/cmd5checkpw /bin/true
smtp-auth-level=ondemand-encrypted
graylist-level=always
graylist-dir=/var/qmail/spamdyke/greylist

#GREYLIST MINIMUM = 5 Min
graylist-min-secs=300

#GREYLIST MAX = 3 Months
graylist-max-secs=1814400
sender-blacklist-file=/var/qmail/spamdyke/blacklist_senders
recipient-blacklist-file=/var/qmail/spamdyke/blacklist_recipients
ip-in-rdns-keyword-blacklist-file=/var/qmail/spamdyke/blacklist_keywords
ip-blacklist-file=/var/qmail/spamdyke/blacklist_ip
rdns-whitelist-file=/var/qmail/spamdyke/whitelist_rdns
ip-whitelist-file=/var/qmail/spamdyke/whitelist_ip
sender-whitelist-file=/var/qmail/spamdyke/whitelist_senders
greeting-delay-secs=5

#RBL BLOCKLISTS
dns-blacklist-entry=zen.spamhaus.org
dns-blacklist-entry=bl.spamcop.net
dns-blacklist-entry=dnsbl.sorbs.net
dns-blacklist-entry=dnsbl-1.uceprotect.net
dns-blacklist-entry=cbl.abuseat.org
dns-blacklist-entry=b.barracudacentral.org
dns-blacklist-entry=ix.dnsbl.manitu.net

reject-missing-sender-mx
reject-empty-rdns
reject-ip-in-cc-rdns
#reject-unresolvable-rdns

#MySQL-Logging:
#config-mysql-database=spamdyke
#config-mysql-username=spamdyke
#config-mysql-password=spamdyke


---

If anyone would like to add anything - please do.


Top
 Profile  
Reply with quote  
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 1 post ] 

» Feed - Atomicorp

All times are UTC - 5 hours [ DST ]


Who is online

Users browsing this forum: No registered users and 2 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group