Надо проверить работу фильтра,
но никак у меня не выходит это дело.
Такое ощущение, что не ловит совсем.
Очень нужна помощь спеца.
Кто разобрался гляньте пожалуйста.
Если надо еще информации, все будет!
SpamAssassin 2.61
Postfix
FreeBSD 4.9
local.cf :
# How many hits before a message is considered spam.
required_hits 5.0
# Whether to change the subject of suspected spam
rewrite_subject 1
# Text to prepend to subject if rewrite_subject is used
subject_tag *****SPAM*****
# Encapsulate spam in an attachment
report_safe 1
# Use terse version of the spam report
use_terse_report 0
# Enable the Bayes system
use_bayes 0
# ***
# Enable Bayes auto-learning
auto_learn 0
#***
# Enable or disable network checks
skip_rbl_checks 1
#***
use_razor2 1
use_dcc 1
use_pyzor 1
# Mail using languages used in these country codes will not be marked
# as being possibly spam in a foreign language.
# - russian
# ok_languages ru
# Mail using locales used in these country codes will not be marked
# as being possibly spam in a foreign language.
#ok_locales ru
-----------------------------------
spamd.sh :
#!/bin/sh
#if ! PREFIX=$(expr $0 : "\(/.*\)/etc/rc\.d/$(basename $0)\$"); then
# echo "$0: Cannot determine the PREFIX" >&2
# exit 1
#fi
PREFIX=/usr/local
#
case "$1" in
start)
[ -x ${PREFIX}/bin/spamd ] && ${PREFIX}/bin/spamd -C /usr/local/etc/mail/spamassas
sin -u spam -a -c -d -m 50 -x && echo -n ' spamd'
;;
stop)
killall spamd
;;
*)
echo "Usage: `basename $0` {start|stop}" >&2
;;
esac
exit 0
--------------------------------------
master.cf
# DRWEB + SPAMASSESSIN
smtp inet n - n - - smtpd -o content_filter=avirspam:dummy
avirspam unix - n n - 32 pipe flags=R user=drweb
argv=/usr/local/libexec/antivir_spam_filter -f ${sender} -- ${recipient}
(на одной строке конечно)
---------------------------------------
antivir_spam_filter :
#!/bin/sh
(/usr/local/bin/spamc -u drweb -s 1024000 | /usr/local/drweb/drweb-postfix $@) <&0
----------------------------------------
посылаю вот енто письмо с консоли таким скриптом (как в доке)
#!/bin/sh
/usr/local/bin/spamc -u spam -e /usr/sbin/sendmail zorro <sample-spam.txt
Subject: Test spam mail (GTUBE)
Message-ID: <GTUBE1.1010101@example.net>
Date: Wed, 23 Jul 2003 23:30:00 +0200
From: Sender <sender@example.net>
To: Recipient <recipient@example.net>
Precedence: junk
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
This is the GTUBE, the
Generic
Test for
Unsolicited
Bulk
Email
If your spam filter supports it, the GTUBE provides a test by which you
can verify that the filter is installed correctly and is detecting incoming
spam. You can send yourself a test mail containing the following string of
characters (in upper case and with no white spaces and line breaks):
XJS*C4JDBQADN1.NSBN3*2IDNEN*GTUBE-STANDARD-ANTI-UBE-TEST-EMAIL*C.34X
You should send this test mail from an account outside of your network.
Получаем в логе (maillog) :
Mar 30 12:50:07 mail spamd[7538]: connection from localhost.avtoprime.spb.ru [127.0.0.1] at
port 1424
Mar 30 12:50:07 mail spamd[7553]: processing message <GTUBE1.1010101@example.net> for spam:
1004.
Mar 30 12:50:07 mail spamd[7553]: clean message (0.0/5.0) for spam:1004 in 0.1 seconds, 799
bytes.
Mar 30 12:50:07 mail postfix/pickup[7001]: DFE669FE70: uid=0 from=<root>
Mar 30 12:50:07 mail postfix/cleanup[7556]: DFE669FE70: message-id=<GTUBE1.1010101@example.
net>
Mar 30 12:50:07 mail postfix/qmgr[203]: DFE669FE70: from=<root@avtoprime.spb.ru>, size=1134
, nrcpt=1 (queue active)
Mar 30 12:50:07 mail postfix/local[7557]: DFE669FE70: to=<zorro@avtoprime.spb.ru>, orig_to=
<zorro>, relay=local, delay=0, status=sent (maildir)
-------------------------------------------
Вот само мыло, кот в ящик уже свалилось :
Return-Path: <root@avtoprime.spb.ru>
X-Original-To: zorro
Delivered-To: zorro@avtoprime.spb.ru
Received: by mail.avtoprime.spb.ru (Postfix, from userid 0)
id DFE669FE70; Tue, 30 Mar 2004 12:50:07 +0400 (MSD)
Subject: Test spam mail (GTUBE)
Message-ID: <GTUBE1.1010101@example.net>
Date: Wed, 23 Jul 2003 23:30:00 +0200
From: Sender <sender@example.net>
To: Recipient <recipient@example.net>
Precedence: junk
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Spam-Checker-Version: SpamAssassin 2.61 (1.212.2.1-2003-12-09-exp) on
mail.avtoprime.spb.ru
X-Spam-Level:
X-Spam-Status: No, hits=0.0 required=5.0 tests=none autolearn=no version=2.61
This is the GTUBE, the
Generic
Test for
Unsolicited
Bulk
Email
If your spam filter supports it, the GTUBE provides a test by which you
can verify that the filter is installed correctly and is detecting incoming
spam. You can send yourself a test mail containing the following string of
characters (in upper case and with no white spaces and line breaks):
XJS*C4JDBQADN1.NSBN3*2IDNEN*GTUBE-STANDARD-ANTI-UBE-TEST-EMAIL*C.34X
You should send this test mail from an account outside of your network.
-------------------------------------------
Я так понимаю хрен сработал тест.... ?
Ладно посылаю енту строчку самому себе :
XJS*C4JDBQADN1.NSBN3*2IDNEN*GTUBE-STANDARD-ANTI-UBE-TEST-EMAIL*C.34X
Mar 30 12:52:29 mail postfix/smtpd[7579]: connect from admin.avtoprime.spb.ru[192.168.0.2]
Mar 30 12:52:29 mail postfix/smtpd[7579]: 4AEC19FE6F: client=admin.avtoprime.spb.ru[192.168
.0.2]
Mar 30 12:52:29 mail postfix/cleanup[7581]: 4AEC19FE6F: message-id=<409265477.2004033012492
1@avtoprime.spb.ru>
Mar 30 12:52:29 mail postfix/qmgr[203]: 4AEC19FE6F: from=<zorro@avtoprime.spb.ru>, size=794
, nrcpt=1 (queue active)
Mar 30 12:52:29 mail postfix/smtpd[7579]: disconnect from admin.avtoprime.spb.ru[192.168.0.
2]
Mar 30 12:52:29 mail spamd[7538]: connection from localhost.avtoprime.spb.ru [127.0.0.1] at
port 1425
Mar 30 12:52:29 mail spamd[7587]: processing message <409265477.20040330124921@avtoprime.sp
b.ru> for drweb:1004.
Mar 30 12:52:29 mail spamd[7587]: clean message (0.0/5.0) for drweb:1004 in 0.5 seconds, 80
8 bytes.
Mar 30 12:52:30 mail drweb-postfix: dwlib[7586]: scan: the message(drweb.tmp.e7XCMf) sent b
y zorro@avtoprime.spb.ru to ZorrO@avtoprime.spb.ru is passed
Mar 30 12:52:30 mail postfix/pickup[7001]: 1D5A59FE72: uid=1002 from=<zorro@avtoprime.spb.r
u>
Mar 30 12:52:30 mail postfix/pipe[7582]: 4AEC19FE6F: to=<ZorrO@avtoprime.spb.ru>, relay=avi
rspam, delay=1, status=sent (dummy)
Mar 30 12:52:30 mail postfix/cleanup[7581]: 1D5A59FE72: message-id=<409265477.2004033012492
1@avtoprime.spb.ru>
Mar 30 12:52:30 mail postfix/qmgr[203]: 1D5A59FE72: from=<zorro@avtoprime.spb.ru>, size=110
6, nrcpt=1 (queue active)
Mar 30 12:52:30 mail postfix/local[7590]: 1D5A59FE72: to=<ZorrO@avtoprime.spb.ru>, relay=lo
cal, delay=0, status=sent (maildir)
----------------------------------------------
Походу опять мимо ...?
Вариант для распечатки
OpenNET: Виртуальная конференция (Public)
(??) on
30-Мрт-04, 13:01 (MSK)
