Page 1 of 1
step by step clamav qmail-scanner spamassassin
Posted: Tue Oct 25, 2005 3:52 pm
by mab
Hello,
Could you please explain step by step how to do the following installation? I have Plesk installed on Fedora Core 3
I want to do the installation from yum and these are my doubts:
1) before installing clamav qmail-scanner spamassassin shall I desactivate DrWeb? how? Do I have to just desactivate it from the plesk control panel or shall I do it from the console , if it is from the console, how shall I do it?
2) Do I have to ad some lines to the atomicrocketturtle to yum.conf. Which exactly?
3) then I have to do yum install qmail-scanner and then /usr/bin/qmail-scanner-reconfigure, and that´s all? will that way be installed the clamav and spamassassin or shallI do yum install with each of them?
All in all, could you tell me how to do it step by step?
thanks a lot,
Mario
What I did?
Posted: Tue Oct 25, 2005 7:39 pm
by fdomartin
In the past I changed yum.conf (Fedora Core 1 and Plesk 7.5.4)
Code: Select all
[main]
cachedir=/var/cache/yum
debuglevel=2
logfile=/var/log/yum.log
pkgpolicy=newest
distroverpkg=fedora-release
tolerant=1
exactarch=1
retries=20
[base]
name=Fedora Core $releasever - $basearch - Base
baseurl=http://download.fedora.redhat.com/pub/fedora/linux/core/$releasever/$basearch/os/
[updates-released]
name=Fedora Core $releasever - $basearch - Released Updates
baseurl=http://download.fedora.redhat.com/pub/fedora/linux/core/updates/$releasever/$basearch/
[atomic]
name=Atomic Rocket Turtle - $releasever - Atomic PSA-Compatible RPMS
baseurl=http://3es.atomicrocketturtle.com/atomic/art/$releasever/
baseurl=http://archive.atomicrocketturtle.com/atomic/art/$releasever/
baseurl=http://www.atomicrocketturtle.com/atomic/art/$releasever/
[psa-7.5]
name=Atomic Rocket Turtle - $releasever - SW-Soft PSA 7.5 RPMS
baseurl=http://3es.atomicrocketturtle.com/atomic/psa-7.5/$releasever/
baseurl=http://archive.atomicrocketturtle.com/atomic/psa-7.5/$releasever/
baseurl=http://www.atomicrocketturtle.com/atomic/psa-7.5/$releasever/
#[updates-testing]
#name=Fedora Core $releasever - $basearch - Unreleased Updates
#baseurl=http://download.fedora.redhat.com/pub/fedora/linux/core/updates/testing/$releasever/$basearch/
Then:
yum update
For install qmail-scanner
yum remove drweb
yum remove psa-spamassassin
yum install qmail-scanner
/usr/bin/qmail-scanner-reconfigure
All from the console by ssh.
I don't know more about this, sorry.
You can read about this on:
qmail-scanner
qmail
Posted: Tue Nov 01, 2005 9:20 am
by mab
Hi fdomartin
Thanks you for your answer.
I did everything you told me and it worked.
But I still getting both , the spam and the virus and I only found one mail with these headers:
X-Qmail-Scanner-1.25st: added fake MIME-Version header MIME-Version: 1.0 X-Qmail-Scanner-Message-ID: <
11308275019223314@cyberartes.com.ar> Bl0nde hott1e g1rl masturbates
M@ture euro brunette muffdived & sucks cock
Hot teen lesbians give anal massages
http://sweetsitesonline.info /n-family/?OZnN76
Only this mail between hundreds of virus mails and spam and it doesn´t say anywhere that it has been checked for
Should I install clamav and spammassim besides the qmail-scanner?
How can I do to know if clamav and spamassim are working?, thanks.
Posted: Tue Nov 01, 2005 9:33 pm
by jamesyeeoc
Do you already have the Plesk version of Spamassassin installed? It doesn't look like it from the headers. So, yes, install both spamassassin and clamd from ARTs yum channels:
yum install clamd spamassassin
Then run the qmail-scanner-reconfigure script after they are both installed, configured, and running.
Once qmail-scanner is reconfigured with the antivirus and antispam programs then the headers will show something more like this:
Received: from 15.21.1.1 by mail.mydomain.com (envelope-from <
commercemaster@somedomain.com>, uid 2020) with qmail-scanner-1.25st
(clamdscan: 0.86.2/1151. f-prot: 4.5.4/3.16.6. spamassassin: 3.0.3. perlscan: 1.25st.
Clear:RC:0(159.215.19.1):SA:0(1.0/6.0):.
Processed in 2.671961 secs); 01 Nov 2005 16:55:59 -0000
X-Spam-Status: No, hits=1.0 required=6.0
X-Spam-Level: +
(Note: I have clamav, f-prot, spamassassin, and perlscan installed, so your system won't show all of them)
Posted: Wed Nov 02, 2005 12:07 am
by fdomartin
You can check SA and Clamav is running:
Code: Select all
[root@servidor root]# ps -aux |grep spam
qmailq 21163 0.0 0.5 30484 2696 ? S Oct26 0:00 /usr/bin/spamd -d -u qmailq -c -H /var/qmail
qmailq 19842 0.1 5.1 35696 24780 ? S 00:58 0:21 spamd child
qmailq 21207 0.1 4.5 33176 21980 ? S 01:02 0:19 spamd child
qmailq 21327 0.1 5.1 35752 24828 ? S 01:02 0:21 spamd child
qmailq 21674 0.1 4.4 33032 21664 ? S 01:03 0:17 spamd child
qmailq 21752 0.1 5.1 35756 24752 ? S 01:04 0:20 spamd child
root 1374 0.0 0.1 5204 588 pts/0 S 04:59 0:00 grep spam
You can see actions by clamav:
Code: Select all
cat /var/spool/qmailscan/quarantine.log
You can see quarentined emails by clamav.
Note: If you don't have installed mutt, first: yum install mutt
Code: Select all
mutt -f /var/spool/qmailscan/quarantine
You can read more about this on
this post
Posted: Tue Nov 29, 2005 3:31 am
by santosh
I don't seem to have 'yum' installed on my plesk box. I'm running,
Red Hat Enterprise Linux ES release 3 (Taroon Update 5)
with Plesk 7.5.4
I tried a "locate yum" and it turns up nothing. I haven't done any modifications to the original Plesk confirmation except to update it regularly with the ''Updater" option.
Can someone point me on how I can install yum?
Thanks,
-- Santosh
Posted: Tue Nov 29, 2005 11:34 am
by fdomartin
yum is a Fedora Core package like apt-get, I don't know if is in ES3.
You can looking for yum rpm at rpmfind.net or freshrpms.net, and install it
rpm -Uvh package.rpm
also you can install all rpm by hand, download rpm from ART, rpmfind.net or freshrpms.net and do:
rpm -Uvh package.rpm
ART rpm are in
http://www.atomicrocketturtle.com/atomi ... /3ES/RPMS/
PD: I think if you have ES you have support directly from Red Hat, you can ask they about yum or another "package manager".
Posted: Tue Nov 29, 2005 2:30 pm
by scott
yeah 3ES doesn't ship with yum, what you need to use instead is up2date. The settings are documented on all the download pages at the bottem.