Things to Turn off in PLESK with using Qmail-Scanner

Forum for getting help with Project Gamera, Spamassassin, Clamav, qmail-scanner and other anti-spam tools.
AntiochInteractive
Forum User
Forum User
Posts: 35
Joined: Thu Jan 08, 2009 4:31 am
Location: Fort Worth, TX
Contact:

Things to Turn off in PLESK with using Qmail-Scanner

Unread post by AntiochInteractive »

It occurred to me that it has never been said plainly -- and perhaps upon installation, it should be stated:

If you have installed qmail-scanner with spamassassin and clamd:

#1) Remove DrWeb or any other PLESK Anti-Virus.
#2) If PSA-Spamassassin is installed, turn off all options in Tools > Spam Filtering, then remove psa-spamassassin.
#3) Turn off SPF checking in PLESK and instead, edit local.cf and add rules like below:

score SPF_PASS 0.0
score SPF_FAIL 8.0
score SPF_SOFTFAIL 2.0

(I have issues with SPF Checking on PLESK 12.0.8 with Qmail-Scanner with soft fails -- so this is a WONDERFUL work around.)

If you have spamdyke installed:

#1) Turn off Greylisting from PLESK's Spam Filtering Settings (Tools > Spam Filtering)
#2) Remove RBLs from PLESK's Mail Settings, and place them in /etc/spamdyke.conf

This is what I have: --

#RBL BLOCKLISTS
dns-blacklist-entry=zen.spamhaus.org
dns-blacklist-entry=bl.spamcop.net
dns-blacklist-entry=dnsbl.sorbs.net
dns-blacklist-entry=dnsbl-1.uceprotect.net
dns-blacklist-entry=cbl.abuseat.org
dns-blacklist-entry=b.barracudacentral.org
dns-blacklist-entry=ix.dnsbl.manitu.net

-

I have found this a very helpful resource:
http://www.anti-abuse.org/multi-rbl-check-results/

-----------

And make sure that /etc/xinetd.d/smtp_psa always contains SpamDyke after Relaylock. Sometimes PLESK updates and edits to the mail configuration will remove it. Here's my configuration below:

Code: Select all

server_args = -Rt0 /var/qmail/bin/relaylock /usr/bin/spamdyke -f /etc/spamdyke.conf  /var/qmail/bin/qmail-smtpd /var/qmail/bin/smtp_auth /var/qmail/bin/true /var/qmail/bin/cmd5checkpw /var/qmail/bin/true
If you are very lazy, you can type:

yum reinstall spamdyke

---

Final thing -- here is what works for me with /etc/spamdyke.conf

I turned off the database logging as I find it far more useful to have logging in maillog. I added 'reject-ip-in-cc-rdns' and commented out 'reject-unresolvable-rdns' because it is ASTOUNDING how many servers are incorrectly setup including aa.com (American Airlines) among others.

Code: Select all

#Plesk-Addon
log-level=info
idle-timeout-secs=180
local-domains-file=/var/qmail/control/rcpthosts
tls-certificate-file=/var/qmail/control/servercert.pem

#AUTH FROM xinetd-conf
smtp-auth-command=/var/qmail/bin/smtp_auth /var/qmail/bin/true /var/qmail/bin/cmd5checkpw /bin/true
smtp-auth-level=ondemand-encrypted
graylist-level=always
graylist-dir=/var/qmail/spamdyke/greylist

#GREYLIST MINIMUM = 5 Min
graylist-min-secs=300

#GREYLIST MAX = 3 Months
graylist-max-secs=1814400
sender-blacklist-file=/var/qmail/spamdyke/blacklist_senders
recipient-blacklist-file=/var/qmail/spamdyke/blacklist_recipients
ip-in-rdns-keyword-blacklist-file=/var/qmail/spamdyke/blacklist_keywords
ip-blacklist-file=/var/qmail/spamdyke/blacklist_ip
rdns-whitelist-file=/var/qmail/spamdyke/whitelist_rdns
ip-whitelist-file=/var/qmail/spamdyke/whitelist_ip
sender-whitelist-file=/var/qmail/spamdyke/whitelist_senders
greeting-delay-secs=5

#RBL BLOCKLISTS
dns-blacklist-entry=zen.spamhaus.org
dns-blacklist-entry=bl.spamcop.net
dns-blacklist-entry=dnsbl.sorbs.net
dns-blacklist-entry=dnsbl-1.uceprotect.net
dns-blacklist-entry=cbl.abuseat.org
dns-blacklist-entry=b.barracudacentral.org
dns-blacklist-entry=ix.dnsbl.manitu.net

reject-missing-sender-mx
reject-empty-rdns
reject-ip-in-cc-rdns
#reject-unresolvable-rdns

#MySQL-Logging:
#config-mysql-database=spamdyke
#config-mysql-username=spamdyke
#config-mysql-password=spamdyke
---

If anyone would like to add anything - please do.
Post Reply