Бруй В.В., Карлов С.В. - Linux-сервер - пошаговые инструкции - инсталляции и настройки (1077321), страница 97

Просмтор этого файла доступен только зарегистрированным пользователям. Но у нас супер быстрая регистрация: достаточно только электронной почты!

Текст из файла (страница 97)

Программное обеспечение для организации службы электронной почты[root@test /]# chown -R mail.root /var/drweb/Конфигурационный файл /etc/mail/exim.confШаг 1Добавьте в файл /etc/mail/exim.conf параметры транспорта для фильтра, руководствуясьниже приведенными рекомендациями:#######################################################################MAIN CONFIGURATION SETTINGS#######################################################################primary_hostname = test.bruy.infoacl_smtp_rcpt = check_recipientacl_smtp_data = check_messagedomainlist local_domains = @ : lsearch;/etc/mail/localdomainshostlist relay_hosts = lsearch;/etc/mail/relaydomainshostlist auth_relay_hosts = *log_selector = \+all_parents \+received_sender \+received_recipients \+smtp_confirmation \+smtp_syntax_errorallow_domain_literals = falsenever_users = root:daemon:bin:sync:namedhost_lookup = *trusted_users = mailtrusted_groups = mailgecos_pattern = ^([^,:]*)gecos_name = $1freeze_tell = postmasterauto_thaw = 1hignore_bounce_errors_after = 30mtimeout_frozen_after = 7dreceived_header_text = "Received: \${if def:sender_rcvhost {from ${sender_rcvhost}\n\t}\{${if def:sender_ident {from ${sender_ident} }}\${if def:sender_helo_name {(helo=${sender_helo_name})\n\t}}}}\by ${primary_hostname} \${if def:received_protocol {with ${received_protocol}}} \(Exim ${version_number} #${compile_number} )\n\t\id ${message_id}\${if def:received_for {\n\tfor <$received_for>}}"system_filter = /etc/mail/system-filtersystem_filter_pipe_transport = filter_pipesystem_filter_reply_transport = address_replymessage_body_visible = 5000message_size_limit = 10Msmtp_accept_max = 2048smtp_connect_backlog = 256queue_onlysplit_spool_directoryqueue_run_max = 1remote_max_parallel = 1rfc1413_hosts = *rfc1413_query_timeout = 0sГлава 30.

Doctor Web – антивирусное программное обеспечениеsmtp_banner = "Welcome on our mail server!\n\This system does not accept Unsolicited \Commercial Email\nand will blacklist \offenders via our spam processor.\nHave a \nice day!\n\n${primary_hostname} ESMTP Exim \${version_number} ${tod_full}"#######################################################################ACL CONFIGURATION##Specifies access control lists for incoming SMTP mail#######################################################################begin aclcheck_recipient:accept hosts = :denylocal_parts= ^.*[@%!/|]denysenders= *@dbm;/etc/mail/access.db : \dbm;/etc/mail/access.dbrequire verify= senderdeny= unrouteable address= !127.0.0.1/8:0.0.0.0/0= recipientacceptmessagehosts!verifydomainsendpassmessageverify= +local_domainsaccepthosts= +relay_hostsaccepthosts= +auth_relay_hostsendpassmessage= authentication requiredauthenticated = *denymessage= unknown user= recipient= relay not permittedcheck_message:accept#######################################################################ROUTERS CONFIGURATION##Specifies how addresses are handled########################################################################THE ORDER IN WHICH THE ROUTERS ARE DEFINED IS IMPORTANT!## An address is passed to each router in turn until it is accepted.

#######################################################################begin routersdnslookup:driver = dnslookupdomains = ! +local_domainstransport = remote_smtpignore_target_hosts = 0.0.0.0 : 127.0.0.0/8no_more433434Часть 7. Программное обеспечение для организации службы электронной почтыsystem_aliases:driver = redirectallow_failallow_deferdata = ${lookup{$local_part}lsearch{/etc/mail/aliases}}user = mailfile_transport = address_filepipe_transport = address_pipeuserforward:driver = redirectcheck_local_userfile = $home/.forwardno_verifyno_expncheck_ancestorallow_filtermodemask = 002file_transport = address_filepipe_transport = address_pipereply_transport = address_replylocaluser:driver = acceptcheck_local_usertransport = local_delivery#######################################################################TRANSPORTS CONFIGURATION########################################################################ORDER DOES NOT MATTER##Only one appropriate transport is called for each delivery.#######################################################################begin transportsremote_smtp:driver = smtplocal_delivery:driver = appendfilefile = /var/mail/$local_partdelivery_date_addenvelope_to_addreturn_path_addgroup = mailmode = 0600address_pipe:driver = pipereturn_outputaddress_file:driver = appendfiledelivery_date_addenvelope_to_addreturn_path_addaddress_reply:driver = autoreplyfilter_pipe:driver = pipeГлава 30.

Doctor Web – антивирусное программное обеспечение435user = mailgroup = mailreturn_fail_output#######################################################################RETRY CONFIGURATION#######################################################################begin retry# Domain# ------Error-----Retries-------**F,2h,15m; G,16h,1h,1.5; F,4d,6h#######################################################################REWRITE CONFIGURATION#######################################################################begin rewrite#######################################################################AUTHENTICATION CONFIGURATION#######################################################################begin authenticatorsВносимые изменения подробно описаны на русском и английском языках в файлах документации/var/tmp/drweb-exim/opt/drweb/doc/exim/conf_file.rus.txt/var/tmp/drwebиexim/opt/drweb/doc/exim/conf_file.rus.txt, соответственно.Конфигурационный файл /etc/drweb/drweb_exim.confШаг 1Руководствуясь ниже приведенными рекомендациями и вашими потребностями, отредактируйтефайл /etc/drweb/drweb_exim.conf:## Configuration file for DrWeb Filters########################### Communication section ##########################[DaemonCommunication]# Definition of daemons addresses separeted by "," and given# in a special form {FAMILY}:{ADDRESS}# where FAMILY one of:# inet - TCP/IP socket used, then {ADDRESS} is {PORT}@{HOST}# local - UNIX socket used, then {ADDRESS} is {SOCKETFILE}# pid - get daemon address from pidfile, then {ADDRESS} is {PIDFILE}# Examples:#Address = inet:3000@localhost#Address = local:/usr/local/drweb/run/drwebd.skt#Address = pid:/usr/local/drweb/run/drwebd.pid#Address = pid:/var/drweb/run/drwebd.pid,inet:3000@backup_server.example.comAddress = inet:3000@localhost# Enable/disable caching resolved daemon host# (useful only if daemon uses TCP/IP communications)Cache = yes# Timeout for whole scanning session (in seconds)Timeout = 120436Часть 7.

Программное обеспечение для организации службы электронной почты######################### Scan options section #########################[Scanning]# Enable or disable heuristic analizer in virus-finding engine (on/off)HeuristicAnalysis = on# Strip the smallest prefix containing StripPath leading slashes# NOTE: Option works same the -p parameter in patch utility# StripPath = 2# Path that prefixes scan paths. Applied to path processed by StripPath.# NOTE: PrefixPath MUST NOT ends by slash (/)# PrefixPath = /sandbox/mail# Include DrWeb report to notifications into $REPORT$# or as separete macros $DAEMON_REPORT$(yes/no)IncludeReport = yes# Include DrWeb extended codes to notifications into $REPORT$# or as separete macros $SCAN_STAT$ (yes/no)IncludeStats = yes# Max size of report that be created if IncludeReport is "yes",# Specify 0 to non-restrictable size`,' but it is bad idea - report cangrow# to Mbytes for nested archivesReportMaxSize = 8192# Enable or disable local scanning mode (see daemon documentation)(yes/no)# LocalScan has affect only on connection with first daemon in Addresslist# If enabled then spool directory must be readable (writeable for EVALkey)# for drwebd process (see drweb32.ini option User)LocalScan = yes# Enable or disable daemon rule filter (on/off)RuleFilter = on# Deny scanning if at least one of recipient or sender address# present in DenyList with "deny" option (yes/no), if "no" all# addresses in the message should present in DenyList with "deny"DenyOnOne = yes# List with rules for users or domains to block scanningDenyList = /etc/drweb/users.conf# Directory used for story temporary filesSpool = /var/drweb/spool# Permissions for created spool filesSpoolFilesMode = 0600#################### Actions section ####################[Actions]# NOTE: If you do not using quarantine action for some causes, pleasecheck# templates of notification for appropriate case - if need, remove textaboutГлава 30.

Характеристики

Список файлов книги