Freebsd exim spamassassin

UNIX Consulting and Linux Server Consulting by LOD.com

Установка FreeBSD, Exim, DoveCot, SpamAssassin 1. Установка FreeBSD Выбор пал на FreeBSD 9.

3 TippingPoint 3COM TippingPoint HP TippingPoint TippingPoint Technologies TippingPoint SMS 3Com TippingPoint SMS HP TippingPoint SMS IBM Tivoli Storage Manager TDP for SQL Server Apache Tomcat (using Access Log Valve pattern) Apache Tomcat Alt Apache Tomcat Trend Micro Control Manager Trend Micro Control Manager 2014 Trend Micro Deep Security Trend Micro Trend Micro InterScan Messaging Security Suite (IMSS) eManager Trend Micro InterScan Web Security Suite Access Trend Micro IWSVA Trend Micro ScanMail For Exchange Trend Micro ServerProtect CSV Admin Trend Micro Interscan WebManager Trend Micro eManager Spam Filter Unicomp Guinevere Unicomp Guinevere Virus Sun Solaris Auth RedHat Linux Auth The Fedora Project Linux Cellopoint CelloOS IBM AIX Sun Solaris Daemon Syslog Messages RedHat RedHat Linux Daemon Syslog Messages The Fedora Project Fedora Linux Daemon Syslog Messages Cellopoint CelloOS Daemon Syslog Messages Open Source UNIX FTP UNIX sudo Open Source Unix Syslog Open Source Unix Syslog With Year Unreal Streaming Technologies Unreal Media Server Generex UPS WEB/SNMP Manager Microsoft URL-Scan (W3C) Microsoft URLScan Useful Utilities EZproxy Generic User Activity Tracking UTM Firewall UUDynamics SSL VPN University of Wisconsin UW-IMAP Vamsoft Open Relay Filter Enterprise Edition Vasco iKey Server VBrick EtherneTV Portal Server Vicomsoft Gateway Vicomsoft Internet Gateway Websense Vidius Combined Vidyo CDR Vircom Mail Server Visonys Airlock vsftpd Generic W3C Web Server WallWatcher Firewall Generic WAP Error Jarle Aase War FTP Daemon Jarle Aase War FTP Daemon (Alternate) Watchguard Firebox (Cluster Traffic) Watchguard Firebox Export Header Watchguard Firebox Export Header (dd/mm/yy dates) Watchguard Firebox Export Header (mm/dd/yy dates) Watchguard Firebox Export (m/d/y) Watchguard Firebox Export Watchguard Firebox v60 Watchguard Firebox V60 Syslog required Watchguard Firebox X Core e-Series Watchguard Firebox XTM Watchguard Historical Reports Export Watchguard Firebox Watchguard SOHO Watchguard WELF Watchguard WSEP Text Exports (Firebox II & III & X) Watchguard Firebox XML BEA Systems WebLogic 8+ Oracle BEA WebLogic 8+ Oracle WebLogic (W3C) Websense BEA Systems WebLogic (diagnostic) Oracle WebLogic (diagnostic) CCMedia Webnibbler IBM WebSEAL Audit IBM WebSEAL Authorization (XML) IBM WebSEAL CDAS IBM WebSEAL Error IBM WebSEAL Security Manager IBM WebSEAL Wand Audit IBM WebSEAL Warning Websense Websense Websense Server IBM WebSphere Message Broker Kerio WebSTAR FTP Kerio WebSTAR WebSTAR Proxy Kerio WebSTAR Proxy Kerio WebSTAR W3C Web Server Clearswift Technologies Websweeper Webtrends Extended Webtrends Syslog for Firewalls and VPNs Secure Computing WebWasher McAfee WebWasher Prrdeikes Welcome Webtrends WELF date/time extraction (no syslog header) WebTrends WELF Stand-alone (no syslog) Ipswitch Whatsup Syslog Sentman WhistleBlower Sentman WhistleBlower Performance Metrics Who’s Clicking Who Microsoft Windows Event Log (CSV export dd/mm/yyyy) Microsoft Windows (Server 2008/Vista) Event Log (CSV Export, m/d/yyyy dates) Microsoft DNS Server Microsoft Windows 2000/XP Event (export list-CSV) ddmmyyyy Microsoft Windows 2000/XP Event (save as-CSV) dd/mm/yyyy Microsoft Windows 2000/XP/2003 Eventlog via Syslog Microsoft Windows 7/2008 Eventlog via Syslog Microsoft Window Azure Microsoft Windows Event Log Microsoft Windows Event Log (CSV) Microsoft Windows Event (Comma Delimited, m/d/yyyy days, h:mm:ss AM/PM times) Microsoft Windows Event Log (Tab Delimited) Microsoft Windows Event (comma or tab delimited, no am/pm, 24h & ddmmyyyy) Microsoft Windows Event Log (dumpeventlogs. 1 3COM TippingPoint IPS 2. Exe Microsoft Windows Event (dumpevt. 9 DataEnter XWall Datagram SyslogServer Declude Spam Filter Declude Virus Filter DeepMail IMAP/POP3/SMTP Server Digital Insight Magnet D-link DI-804HV Router Infoblox DNSone DHCP IBM Domino Access Lotus Notes Domino Access IBM Domino Agent Lotus Notes Domino Agent IBM Domino Error Lotus Notes Domino Error IBM Domino Referrer Lotus Notes Domino Referrer Dorian Event Archiver Dovecot Secure IMAP server Unix du Disk Tracking Fiserv Easy Lender Login Audit (comma separated) Edgecast Networks Media server EDM Web Services Identity Qualcomm EIMS Error Qualcomm EIMS SMTP (12 hour) Qualcomm Internet Mail Server 3. 6] SonicWall Web Access SSL VPN [AAR plug-in 1. 2+ ISC DHCP Leases ISC DHCP Internet Security Systems Firewall Unknown Publisher IST Jataayu Carrier WAP Server Oracle Java Administration MBEAN Sun Microsystems Java Bean Application Serve Oracle Java Bean Application Serve JBoss (Red Hat) Application Server Atlassian JIRA Juniper SRX3400 Juniper SRX240 Juniper IDP Juniper Media Flow Controller (Access Logs) (W3C) Juniper Media Flow Controller Access (2_0_9_Apple_MFC variant, 2012-07-21) Juniper Media Flow Controller Access (Apple variant, 2012-07-21) Juniper Media Flow Controller (Access Logs) (NCSA) NetScreen Traffic Juniper Networks NetScreen Traffic Juniper Networks Secure Access 4000 Juniper Networks Secure Access 6000 Juniper SSL VPN Juniper SA-2500 Kaspersky Labs AVP Client (Spanish) Kaspersky Labs AVP Server (Spanish) Kaspersky Labs Mail Server for Linux Kaspersky Labs Mail Server KEIKO PLAN-N Access Control Software Kerio Mail Server Kerio Connect Kerio Control (Security) Kerio Network Monitor HTTP Kerio Network Monitor Kerio Winroute Firewall Kerio Control Firewall Kernun DNS Proxy Kernun HTTP Proxy Kernun Proxy Kernun SMTP Proxy Kingdon, Inc. 6] Symantec Backup Exec Veritas Backup Exec Barracuda Networks, Inc. 5+ NetApp NetCache BlueCoat NetCache NetContinuum Application Security Gateway Netegrity SiteMinder Access Netegrity SiteMinder Event NetForensics Syslog Netgear DG834G Netgear FR328S Netgear FVL328 (logging to syslog) NetGear FVL328 (logging to syslog)* Netgear FVS318 Netgear FVS318 With Syslog Netgear Firewall NETGEAR ProSecure Netgear Security Netgear Security (logging to syslog) AEP Netilla Netkey NCR Netkey Motorola Netopia 4553 Stairways NetPresenz Stairways NetPresenz (24-hour times, d/m/y dates) Stairways NetPresenz (d/m/y dates) Netscape Netscape Extended Netscape Messenger 4. Exe export) Microsoft Windows NT Scheduler Microsoft Windows NT Syslog Microsoft Windows NT4 Event (save as CSV) Microsoft Windows Performance Monitor Microsoft Windows Syslog Microsoft Windows XP Event Log (LogParser CSV Export) Qbik WinGate Proxy (no Traffic lines, dd/mm/yy dates) Qbik WinGate Proxy (no Traffic lines, mm/dd/yy dates) Qbik WinGate Proxy (with Traffic lines) Blue Coat Winproxy 5. Com Access Hewlett Packard Audit Log SDSU htdig SocketLabs Hurricane MTA Digital Arts i-FILTER Microsoft IAS Alternate Microsoft IAS Comma-Separated IBM HTTP Server Common IBM HTTP Server IBM Tivoli Access Manager IBM Tivoli Access Manager WebSEAL IBM Tivoli NetView IBM WebSEAL Request ICAP Internet Content Adaptation Protocol Xiph Foundation Icecast (Alternate) Xiph Foundation Icecast Icecast Playlist Microsoft IIS (ODBC log source) Microsoft IIS Advanced Logging Module Microsoft IIS Extended (W3C) Microsoft IIS (with syslog) Microsoft IIS Extended Microsoft IIS FTP Server Microsoft IIS Microsoft IIS (dd/mm/yy) Microsoft IIS (dd/mm/yyyy) Microsoft IIS (mm/dd/yyyy dates) Microsoft IIS (yy/mm/dd) Microsoft IIS SMTP (Comma Separated) Microsoft IIS SMTP Common Microsoft IIS SMTP W3C Ipswitch Imail Syslog Header Ipswitch IMail Server Ipswitch IMail Ipswitch Imail Server Alternate Imperva WAF InfiNet Firewall Ingate Firewall INN News INN News (Alternate) eSoft Instagate Firewall/VPN Instagate Sys* Intel NetStructure VPN Gateway Help/Systems InterMapper Chart Dartware InterMapper Event Dartware InterMapper Outages Dartware InterMapper Outages (ddmmyyyy 24 hr time) Dartware Intermapper Outages (mmmddyyyy, AM/PM) IBM Internet Security Systems Network Sensors InterSafe HTTP Content Filter TrendMicro Interscan E-mail TrendMicro Interscan Email VirusWall TrendMicro Interscan Messaging Security Suite (emanager) TrendMicro Interscan Messaging Security Suite (virus) TrendMicro Interscan Messaging Security Suite (Integrated) TrendMicro Interscan Messaging Security Suite TrendMicro Interscan Proxy (dd/mm/yyyy) TrendMicro Interscan Proxy (mm/dd/yyyy) InterScan VirusWall Trend Micro InterScan Viruswall Trend Micro Interscan VirusWall TrendMicro Interscan Web Security Suite Cisco IOS Debug IP Packet Detailed (Using Syslog Server) GNU IP Traffic LAN Statistics GNU ipchains IPCop IDS Snort (multiline) IPCop Syslog Server iPolicy Networks ipEnforcer FreeBSD IPFW Oracle iPlanet Error Oracle iPlanet Messaging Server Sun-Netscape iPlanet Messenger Server 5 iPlanet Netscape Directory Server Netscape iPlanet SolarWinds IPMon (Using Syslog Server) St. Spam Firewall 300 Barracuda Networks, Inc. 1 Cisco IronPort IronPort S-Series Traffic Monitor Logs v2008-08-22 for WSA v5. 5 JTC eSafe Sessions (with URL category) SafeNet eSafe Sessions (with URL category) Adiscon EventReporter (v. Bernard Software iPrism (with syslog) St. Mmm UTC times) SolarWinds Syslog (yyyy/m/d hh:mm, tab separated) Kiwi Syslog (yyyy/m/d hh:mm, tab separated) SolarWinds Syslog (Space-separated YYYY/MM/DD) Kiwi Syslog (Space-separated YYYY/MM/DD) SolarWinds Kiwi CatTools CatOS Port Usage Kiwi CatTools CatOS Port Usage Solarwinds Kiwi Syslog (ISO/Sawmill) Kiwi Syslog (ISO/Sawmill) Solarwinds Kiwi Syslog (ISO/Sawmill) for EventSentry Kiwi Syslog (ISO/Sawmill) for EventSentry Kiwi Syslog (Logged to Access MDB, then exported tab-separated)* SolarWinds Syslog (UTC) Kiwi Syslog (UTC) SolarWinds Syslog (YYYYMMDD Comma) Kiwi Syslog (YYYYMMDD Comma) Tinline Know-how KS-Soft Host Monitor Advanced Network Software Host monitor Lancom Systems Router Lava Soft Lava2 Firewall Limelight Networks Flash Media Server Limelight SHOUTcast Service Cisco Linksys Router Cisco LinkSys VPN Router L-Soft LISTSERV Sun Microsystems log4j (with your format string) LogSat Spam Filter Lotus Notes LRS VPSX Accounting L-Soft LSMTP Access L-Soft LSMTP Alcatel-Lucent Brick Firewall Alcatel-Lucent VPN Firewall Brick LUNA Insight Media Manager Service Lyris MailShield Apple MacOS X FTP MailEnable W3C Mail Server GNU Mailer Daemon GFI MailEssentials GNU Mailman Post GNU Mailman Subscribe Smartmax MailMax SE Mail SmartMax MailMax SE SMTP MailScanner Syslog Required MailScanner MailScanner Virus Eridani MailStripper Clearswift MAILsweeper (24 Hour) Clearswift MAILsweeper (AM/PM) Clearswift MAILSweeper (long) McAfee E1000 Mail Scanner McAfee Email Gateway IronMail IronMail (showevents export) McAfee Email Security Appliance McAfee IntruShield Alert McAfee Secure Messaging Gateway (SMG) VPN Firewall McAfee Web Gateway McAfee Webshield McAfee Webshield XML Alt-N Technologies MDaemon 7 (All) Alt-N Technologies MDaemon 7 Alt-N Technologies MDaemon 8+ Alt-N Technologies MDaemon Routing Merak POP/IMAP Server Merak SMTP Server Arm Research Labs Message Sniffer Metavante CEB Failed Logins FIS CEB Failed Logins Metavante FIS Metavante Microsoft Elogdmp (CSV) Microsoft Event Log Query Microsoft Exchange Internet Mail Microsoft Exchange Server (W3C) Microsoft Exchange Server 2000 (CSV) Microsoft Exchange Server 2000/2003 Microsoft Exchange Server 2000/2003 Microsoft Exchange Server 2007/2010 Microsoft Exchange Server 2013 Microsoft Exchange Server 2013 Connectivity Log Microsoft Exchange Server Microsoft Exchange 2007 (via syslog) Microsoft Forefront Threat Management Gateway Microsoft Forefront Threat Management Gateway (Tab-separated) Microsoft IAS (XML) Microsoft IAS/NPS Microsoft ICF (Internet Connection Firewall) Microsoft ISA 2004 CSV Microsoft ISA Server Microsoft ISA Server Packet Microsoft ISA WebProxy (ODBC log source) Microsoft ISA WebProxy (CSV) Microsoft Media Server Microsoft SharePoint Server Microsoft Port Reporter Microsoft Proxy Microsoft Proxy (Bytes Received Field Before Bytes Sent) Microsoft Proxy (d/m/yy) Microsoft Proxy (d/m/yyyy) Microsoft Proxy (m/d/yyyy) Microsoft Proxy Packet Filtering Microsoft Server NPS SQL (ODBC Log Source) Microsoft SQL Profiler 2005 Export with DB/Host Microsoft SQL Profiler Export Microsoft Windows DHCP Server Microsoft Windows DHCP Server Microsoft Windows Event Logs (Powershell ETVX to CSV) Microsoft Windows Event Log (XML) Microsoft Windows Firewall Microtech ImageMaker Microtech ImageMaker MikroTik Router MikroTik Web Proxy Clearswift MIMEsweeper FreeBSD Minirsyslogd Mirapoint SMTP Mirapoint Message Server Miva Merchant Access Miva Merchant Combined Access Generic MM/DD-HH:MM:SS Timestamp Syslog Server Apache Mod Gzip Adiscon MonitorWare Adiscon MonitorWare (Alternative) Microsoft MPS Microsoft Provisioning System Mitsubishi msieser HTTP Mitsubishi msieser SMTP Blue-Canoe MTS Professional N2H2 Novell Border Manager N2H2 N2H2 Sentian Nagios NcFTP (Alternate) NcFTP Xfer Server NEMX PowerTools for Exchange Juniper Networks Neoteris Netscreen Neoteris SSL Web Client Export Tenable Nessus Ulrich Callmeier Network log daemon NetApp Filers Audit NetApp NetCache 5. Vbs export) Microsoft Windows Event (24 hour times, d/m/yyyy dates) Microsoft Windows Event (ALTools export) Microsoft dumpel. Mmm UTC times) Kiwi (mmm/dd dates, hh:hh:ss. 2 DansGuardian Content Filter 2. Kingdon Firewall Solarwinds Kiwi Syslog (dd-mm-yyyy dates) Kiwi Syslog (dd-mm-yyyy dates) Solarwinds Kiwi (mm-dd-yy dates, with type and protocol) Kiwi (mm-dd-yy dates, with type and protocol) SolarWinds Syslog Daemon (mm-dd-yyyy dates) Kiwi Syslog Daemon (mm-dd-yyyy dates) SolarWinds (mmm/dd dates, hh:hh:ss. Spam Firewall 400 Barracuda Networks, Inc. 5+ BlueCoat NetCache 5. Bernard Software iPrism Monitor St. 5 Novell NetMail NPR Digital Services IceCast Reporting GNU General Public License NTsyslog BSD NVDCMS O’Reilly Web Access OCLC EZproxy Open WebMail OpenBSD Packet Filter Firewall (tcpdump -neqttr) Openfind Mail2000 Jive Software OpenFire IM OpenVPN technologies OpenVPN Header OpenVPN technologies OpenVPN Openwave Systems Intermail Optenet WebFilter Optima Transaction Log Oracle Application Server (Java Exceptions) Oracle Database Audit Oracle Express Authentication Oracle Failed Login Attempts Hyperion Essbase Oracle Essbase Oracle Listener OSSEC Alert Log OSSEC Checkpoint Packet Dynamics W3C Log Export Paloalto Firewall(CEF) Palo Alto Networks Firewall (Integrated Threat & Traffic) Palo Alto Networks Firewall (Threat) Palo Alto Networks Firewall (Traffic) GNU Passlogd Syslog (Full Messages) GNU Passlogd PeopleSoft AppServer Microsoft Performance Monitor PHP Error Piolink Network Loadbalance Cisco PIX Firewall Syslog Server Eutron Planet-Share InterFax Parallels Plesk Server Administrator Oracle Policy Directory Audit Oracle Policy Directory Security Audit Trail Evidian PortalXPert Psionic Technologies PortSentry Cisco PortSentry Tenon Intersystems Post Office Mail Server Postfix mail server Symantec Brightmail Gateway PostWorks IMAP Server PostWorks POP3 Server PostWorks SMTP Server FreeBSD praudit GNU Privoxy GNU ProFTP Sysgenic Group Proxy-Pro GateKeeper Fortech, Ltd Proxy Plus Microsoft PSLogList GNU PureFTP GNU PureFTP (Syslog) QBIK WinGate Qmail Scanner (Syslog Required) Qmail Scanner (TAI64N dates) Qmail Scanner Apple Quicktime Streaming Error Apple Quicktime/Darwin Streaming Server IBM RACF Security Livingston Radius Accounting Livingston Radius Accounting II Livingston Radius ACT Radware DefensePro Radware Linkproof OnDemand Switch Radware Load Balancing (Using Syslog Server) Raiden FTP Server Raiden MAILD Netgear RAIDiator Error Unknown Publisher Rapid Firewall Symantec Raptor Firewall Symantec Raptor (Exception Reporting) RealNetworks RealProxy RealNetworks RealServer Error RealNetworks RealServer RealNetworks RealServer Alternate Redcreek System Message Viewer RedHat syslogd (dd/mm/yyyy:hh:mm:ss prefix) RedHat syslogd Retrospect Microsoft 2012 R2 Server (CSV) RSA SecurID Audit Admin RSA SecurID Audit Runtime Ruby Maxum Development Rumpus FTP Maxum Development Rumpus HTTP Office Efficiencies SafeSquid (Extended Logging) Office Efficiencies SafeSquid Office Efficiencies SafeSquid (Orange) Office Efficiencies SafeSquid Standalone GNU Samba Sambar Server SAS Firewall Aurea Savvion BPM Flowerfire Sawmill Messages Flowerfire Sawmill Tagging Server Sawmill Task Log Sawmill Unified Media TrendMicro ScanMail for Exchange Generic Seconds since Jan 1 1970 Timestamp Syslog eEye Digital Security SecureIIS Sendmail No Syslog Sendmail For NT Sendmail (Syslog Required) Separ URL Filter Rhino Software Serv-U FTP Server Woodstone Servers Alive (Statistics) Woodstone Servers Alive Sharetech / Abocom Firewall Open Door Networks ShareWay IP GNU Shorewall Nullsoft SHOUTcast Media Server / DNAS (Distributed Network Audio Server) Nullsoft SHOUTcast Media Server / DNAS (Distributed Network Audio Server) (W3C) Fujitsu Si-R Secure Computing Corporation Secure Firewall (Sidewinder) Secure Computing Sidewinder Secure Computing Sidewinder Syslog JH Software Simple DNS Sun Microsystems SIMS (Sun Internet Mail Server) NuSpectra SiteCAM JP-Secure SiteGuard PROVISIO GmbH SiteKiosk Provisio SiteKiosk CA Technologies SiteMinder Apache WebAgent CA Technologies SiteMinder Policy Server CA Technologies SiteMinder Web Acccess Manager CA Technologies SiteMinder WebAgent Franz Krainer SL4NT (dd. 1 InterSect Alliance SNARE Epilog Collected Oracle Listener InterSect Alliance Snare for AIX Intersect Alliance Snare Generic SNMP Manager SnmpSoft Syslog Watcher Sourcefire Snort 2 (syslog required) Sourcefire Snort (standalone, mm/dd dates) Sourcefire Snort (standalone, mm/dd/yy dates) Sourcefire Snort (syslog required) Sourcefire SNORT Portscan Generic Socks 5 Software602 SolarWinds Syslog Server SonicWall Version 5 SonicWALL Aventail Client/server Access SonicWALL Aventail XML Report SonicWall NSA (Network Security Appliance) SonicWall SonicWall or 3COM Firewall SonicWall TZ 170 Firewall Sophos Antispam Message Sophos Antispam PMX Sophos Mail Monitor for SMTP Sophos UTM Web Application Firewall Sophos Web Appliance Sourcefire Defense Center Sourcefire IDS Apache SpamAssassin OpenBSD spamd (SpamAssassin Daemon) Squarespace SquareSpace Tomcat Tomsquare GNU Squid Common GNU Squid Common – Syslog Required GNU Squid Event SquidGuard Plugin for Squid Shalla Secure Services squidGuard Squid Proxy server Squid Web cache daemon GNU Squid With Full Headers GNU Squid with ncsa_auth Package Juniper Networks Steel Belted Radius ACT Stonesoft StoneGate Firewall O2 Micro Succendo SSL VPN Netscape Netscape Directory Server Sun Microsystems Sun ONE Directory Server Oracle Sun ONE Directory Server Sun Microsystems Sun ONE Directory Server Audit Oracle Sun ONE Directory Server Audit Sun Microsystems Sun ONE Directory Server Error Oracle Sun ONE Directory Server Error SuperLumin Networks Nemesis Sybase Error Log Symantec AntiVirus Corporate Edition Symantec AntiVirus Corporate Edition (VHIST Exporter) Symantec Antivirus Symantec Brightmail Gateway (via syslog) Symantec Enterprise Firewall 8 Symantec Enterprise Firewall Symantec Gateway Security 2 (CSV) Symantec Gateway Security 400 Series Symantec Gateway Security Symantec Gateway Security (via syslog) Symantec Mail Security Symantec Mail Security Syslog Symantec System Console Symantec Web Security CSV Symantec Web Security Syslog Syslog (yyyymmdd hhmmss) Balabit IT Security Syslog NG (tab separated) BalaBit IT Security Syslog-NG BalaBit IT Security Syslog-NG (No Year) BalaBit IT Security Syslog NG Log (no date in log data; yyyymmdd date in filename) BalaBit IT Security Syslog-NG (No Time Zone) BalaBit IT Security Syslog NG Messages SyrReset Mirc Cisco Systems TACACS+ Accounting BSD tcpdump BSD tcpdump (-tt) BSD tcpdump (-tt, with interface) BSD tcpdump (-tt, with interface) Alternate Tellique TerraPlay Accounting Microsoft TFS MailReport Extended MikroTik The Dude Generic Timestamp (mm dd hh:mm:ss) Tiny Software Personal Firewall Steven Young and Robert James Kaes tinyproxy TippingPoint Technologies TippingPoint IPS 2. 4) BPF BPFT4 (with interface) BroadVision Error BroadVision Observation BroadWeb BEMS* BroadWeb XKeeper* BroadWeb BandKeeper* BroadWeb NetKeeper* BroadWeb Eulen* BroadWeb NH6* BroadWeb UTM* Broadweb NetKeeper NK3128 Bulletproof FTP Server (dd/mm/yy, 24-hour) Gene6 G6 FTP Server (dd/mm/yy, 24-hour) Bulletproof FTP Server (dd/mm/yyyy) Gene6 G6 FTP Server (dd/mm/yyyy) Bulletproof FTP Server (dd/mm/yyyy, 24 hour) Gene6 G6 FTP Server (dd/mm/yyyy, 24 hour) Bulletproof FTP Server (mm/dd/yy) Gene6 G6 FTP Server (mm/dd/yy) Bulletproof FTP Server (mm/dd/yyyy) Gene6 G6 FTP Server (mm/dd/yyyy) Bulletproof FTP Server (yyyy/mm/dd) Gene6 G6 FTP Server (yyyy/mm/dd) Bulletproof FTP Sessions Gene6 G6 FTP Sessions Cell Technology IPS Cellopoint Email Firewalll Centricity FirstClass (mmddyyyy) Centricity FirstClass CFT Account Check Point SNMP Cisco Systems 3750 Switch Cisco Systems 827 Router (Kiwi, Full Dates, Tabs) Cisco Systems Access Control Server Cisco Systems Access Register Cisco Systems ACNS with SmartFilter Cisco Systems AS5300 Access Server Cisco Systems CE Common (Content Engine) Cisco Systems CE (Content Engine) Cisco eCDS Cisco Systems EMBLEM Cisco Systems IDS/NetRanger Cisco Systems IOS DHCP Server Cisco IPS IronPort Web Security Appliance (WSA S-Series) (CSV Export) Cisco IronPort Web Services Appliance (WSA S-Series) (pseudo-W3C with pattern header) Cisco IronPort Web Services Appliance (WSA S-Series) (W3C) Cisco Systems NetFlow Cisco Systems NetFlow (flow-export) Cisco Systems NetFlow (FlowTools ASCII Export) Cisco Systems NetFlow (nfdump -o long) Cisco Systems NetFlow (no dates) Cisco Systems NetFlow (version 1) Cisco Systems PIX/ASA Security Appliance Cisco Systems Router (No Syslog) Cisco Systems Router Cisco Systems SCA Cisco Systems Secure Server (RAS) Cisco Systems SOHO77 Cisco Systems Voice Router Cisco VPN Concentrator Cisco Systems VPN Concentrator (mmddyyyy) Cisco Systems VPN Concentrator (Comma delimited) Cisco Systems VPN Concentrator (Alt) Cisco Systems VPN Concentrator Date/Time Header Cisco WAAS TCP Proxy 4. 0 Juniper Networks NetScreen IDP Juniper Networks Netscreen-25 Juniper Networks NetScreen-204 Juniper NetScreen SSG Juniper Networks Netscreen SSL Gateway Juniper Networks NetScreen Traffic (get log traffic) Juniper Networks Netscreen Web Client Export Microsoft Netstat RedHat Netstat GNU/Linux Netstat HP Netstat Net-Wall Generic Network Syslog Neustar Webmetrics Nginx Nginx (using log_format) Nmap Security Scanner nnSoft nnBackup No Syslog Header (use today’s date, or use date/time from message) Nokia IP350/Checkpoint NG Norstar PRELUDE and CINPHONY ADC Nortel Contivity (VPN Router/Firewall) Nortel Meridian 1 Automatic Call Distribution (ACD) Nortel Networks Instant Internet Nortel SSL VPN Symantec Norton Personal Firewall 2003 Connection Novell Border Manager (W3C) Novell Border Manager 3. 2 HP TippingPoint IPS 2. 7) Adiscon EventReporter v. 0 Cisco WAAS TCP Proxy Cisco Systems Ciscoworks Syslog Server Citrix Firewall Manager Syslog Citrix NetScaler Sourcefire ClamAV Clavister SG Series (comma-separated) Clavister Firewall (CSV) Clavister Firewall (with syslog) Clavister SG Radvision Click to Meet Cognos PowerPlay Enterprise Server IBM Cognos PowerPlay Enterprise Server Cognos Ticket Server IBM Cognos Ticket Server Adobe ColdFusion Application Server Adobe ColdFusion Application Server (CSV) Adobe ColdFusion Web Server NCSA Combined Proxy NCSA Common Access Claranet Common Access 4D WebSTAR Common Access Kerio WebSTAR Common Access NCSA Common Access with full URLs NCSA Common Error NCSA Common Proxy NCSA Common Referrer CommuniGate Systems Communigate Mail Server CommuniGate Systems CommuniGate Pro Generic Complete Syslog Messages (report full syslog message in one field) Coradiant Object Tracking Coradiant TrueSight v2. Yyyy, commas without spaces) Franz Krainer SL4NT (dd/mm/yyyy) Netal SL4NT (yyyy mmm dd) Franz Krainer SL4NT Franz Krainer slnt4 SchedMD SLURM SmarterTools SmarterMail N2H2 SmartFilter (Bess Edition) Secure Computing SmartFilter (Bess Edition) SmartMax POP SmartMax SMTP GNU SmoothWall Smoothwall Network Guardian and Advanced Firewall SmoothWall SmoothGuardian 3. 6 GNU Event Log to Syslog Evostream Media Server Exim Internet Mailer 4 Exim Internet Mailer OCLC EZproxy Custom (Use with your LogFormat string) OCLC EZproxy F-Secure HTTP Access F5 Load Balancer F5 Networks Application Security Manager F5 SSL VPN FastHost HTTP Access FedEx Tracking FileMaker FileMaker 3 FileMaker FileMaker Access Log FileMaker Web Server FileZilla FTP Server FileZilla FTP Server (m/d/yyyy) FileZilla FTP Server (yyyy-mm-dd) WatchGuard Firebox F5 FirePass SSL VPN (with syslog) F5 FirePass 4100 SSL VPN Checkpoint Firewall-1 (fw log -ftn export) Checkpoint Firewall-1 (fw log export) Checkpoint Firewall-1 (logexport) Checkpoint Firewall-1 (loggrabber with syslog) Checkpoint Firewall-1 (loggrabber) Checkpoint Firewall-1 Log Viewer 4. 4 DansGuardian Content Filter 2. Com SMTP Mail Server Provos honeyd Hosting. Bernard Software iPrism-RT Ipswitch MOVEit DMZ Ipswitch MOVEit DMZ SSH Ipswitch WS_FTP (XML) Netfilter IPtables Configuration Netfilter IPtables GNU IPTraf GNU IPTraf TCP/UDP Services CiperTrust Ironmail AV (Sophos) Secure Computing Ironmail AV (Sophos) McAfee Ironmail AV (Sophos) CiperTrust Ironmail CSV Secure Computing Ironmail CSV McAfee Ironmail CSV CiperTrust Ironmail SMTP Proxy Secure Computing Ironmail SMTP Proxy McAfee Ironmail SMTP Proxy CiperTrust Ironmail SMTPO Secure Computing Ironmail SMTPO McAfee Ironmail SMTPO CiperTrust Ironmail Sophosq Secure Computing Ironmail Sophosq McAfee Ironmail Sophosq CiperTrust Ironmail Spam Secure Computing Ironmail Spam McAfee Ironmail Spam IronPort Bounce Cisco/IronPort Bounce IronPort C Series Secure Email Cisco/IronPort C Series Secure Email Cisco IronPort IronPort S-Series Access Logs HR Profile for Extended Squid Format Cisco IronPort IronPort S-Series Access Logs Sec Ops Profile for Extended Squid Format Cisco IronPort IronPort S-Series Traffic Monitor Logs v2008-04-03 for WSA v5. 0 Courier POP3/IMAP Mail Server CP Secure Content Security Gateway Critical Path Mail Server (POP/IMAP) Critical Path Mail Server (SMTP) RedHat Linux crond The Fedora Project Linux crond Cellopoint CelloOS crond Generic CSV (Comma-Separated Values) Canto Cumulus Digital Asset Management IWI CWAT CyberGuard Firewall Audit(non-WELF) CyberGuard Firewall (WELF) CyberGuard Firewall Dade Behring User Account (With Duration) Dade Behring User DansGuardian Content Filter 2. VPN Firewall Greatstone activePDF IBM AIX CPU Utilization Akamai HTTP Streaming (W3C) Akamai Web Server Log (W3C) Aladdin eSafe Gateway SafeNet eSafe Gateway Aladdin Mail Security Gateway eSafe Mail Security Gateway Aladdin eSafe Sessions (with URL category) SafeNet eSafe Sessions (with URL category) Aladdin eSafe Sessions SafeNet eSafe Sessions Aladdin eSafe Sessions v5/v6 NetSafe eSafe Sessions v5/v6 Amavis Mail Virus Scanner Amazon Cloudfront Download Amazon Cloudfront Streaming Amazon S3 Amazon Web Services Elasic Load Balancer Xylogics Annex Terminal Server Bay Networks Annex Terminal Server Nortel Annex Terminal Server ASSP Anti-spam SMTP Proxy Apache Custom (Use with your format string) Apache Error Apache Error (syslog required) Apache SSL Request Apache NCSA Combined (NetTracker) Apache NCSA Combined With Cookie Last Apache NCSA Combined With Cookie Last (with JSESSIONID) Apache NCSA Combined With Server Domain After Agent Apache NCSA Combined With Server Domain After Date Apache NCSA Combined With Server Domain After Host Apache NCSA Combined With Server Domain After Size Apache NCSA Combined With Server Domain Before Host Apache NCSA Combined With Visitor Cookie Apache NCSA Combined With WebTrends Cookie Apache NCSA Combined Apache NCSA Combined with Syslog NCSA Common Agent Apple File Service Apple AppleShare IP Manager Applied Identity WELF ARBOR Networks eSeries Broadband Traffic Management Computer Associates ARCserve NT ArGo Software Design Mail Server ArGo Software Design Mail Server (ddmmyyyy) Argsoft Mail Server Argus Firewall Array Networks Integrated Web Traffic Manager 500/1000 Array Networks APV Application Delivery Controller Array Networks SPX 3000 WELF/Squid combined Array Networks SPX 3000 VPN Aruba Networks Aruba Mobility Controllers Aruba Networks Aruba Wireless LAN Switch Ascend Communications Xtera AscenLink Persits Software AspEmail Astaro Security Gateway Astaro Mail Security Atlassian Confluence Atom Error Log ASDS AutoAdmin Autodesk Network License Manager (FlexLM) Autodesk Network License Manager (Ehanced Reports) Avaya Identify Engines Aventail SSL VPN SonicWall Aventail SSL VPN Aventail Web Access SSL VPN [AAR plug-in 1. Spam Firewall 600 Barracuda Spyware Filter Barracuda Web Application Firewall (Access) Barracuda Web Application Firewall (Access) (With Field Header) Barracuda Web Application Firewall (Access with extended info) Barracuda Web Application Firewall (Audit) Barracuda Web Application Firewall Barrier Group Firewall Biscom Delivery Server (BDS FTP) BEA Systems WebLogic non-extended Bea Systems WebLogic Application Server BEA WebLogic Oracle WebLogic Clickcadence Beatbox Hits Biodata BigFire Firewall Internet Systems Consortium BIND (Berkeley Internet Name Domain) ISC Bind9 Query DNS Server ISC Bind9 Query DNS Server (with timestamp) ISC Bind9 Update (with timestamp) ISC Bind Query DNS Server ISC Bind Query DNS Server (with timestamp) ISC Bind Response Checks ISC Bind Security BindView EMS Reporting BindView User Logins Bindview Windows Event Log Funkwerk Bintec VPN Access Bitblock Systems HTTP Access Bitvise WinSSHD BlackStratus LogStorm Syslog Bluecoat ProxySG (Custom) Bluecoat Instant Messenger Bluecoat ProxySG 810 Bluecoat ProxySG (Alt) Bluecoat RealMedia Bluecoat Squid Log / SGOS Format Bluecoat W3C (ELFF) Bluecoat Windows Media Bluesocket Wireless LAN Bomgar Box Borderware Security Device WatchGuard Borderware Security Device Borderware Runstats BPF BPFT Traflog BPF Traffic Daemon (BPFT v. Sawmill has plug-ins to support the following log formats: 3Com 3CRGPOE10075 WAP 3Com NBX 100 3Com OfficeConnect/WinSyslog 4ipnet WHG Marshal8e6 8e6 Web Filter M86 Security 8e6 Web filter A10 Networks AX Series Authentication A10 Networks AX Series ADC and Server Load Balancer AboCom Systems, Inc. 1 (yyyy-mm-dd dates) Blue Coat WinProxy Alternate Ositis Winproxy Common Ositis Winproxy Ositis Winproxy (2-digit years) Kerio WinRoute Connection Kerio WinRoute Mail Kerio WinRoute Web Bitvise Winsshd Adiscon WinSyslog Wipro Websecure Audit Wipro Websecure Auth (Alternate Dates) Wipro Websecure Auth Wipro Websecure Debug Ethereal Packet Analyzer Wireshark Packet Analyzer Wowza Media Systems Wowza Media Server Wowza Media Systems Wowza Streaming Engine Ipswitch WS_FTP Washington University WU-FTP Sawmill Analytics WU-FTP Washington University WU-FTP (yyyy-mm-dd Dates, Server Domain) 8e6 Technologies X-Stop M86 Security X-Stop GNU XMail SMTP Server GNU XMail Spam Forum Systems XWall Yamaha RTX Youngzsoft CCProxy Zentyal Linux Small Business Server Zentyal Unix Syslog Zeus Technologies Zeus Web Server Extended Zeus Technology Zeus Web Server (Alternate Dates) Zimbra Collaboration Mail Server Check Point Software Technologies Zone Alarm ZyXEL Communications Zyxel Communications Zyxel Firewall (Syslog Required) Zyxel Communications Zywall Firewall WELF. 8 Novell iChain (W3C Extended) Novell iChain (W3C) NovellNetMail 3. 2 Chenziyi Email Catcher Enterasys Networks Dragon IDS Equiinet Web Filter 5. 1 Checkpoint Firewall-1 NG Full Checkpoint Firewall-1 NG General (text export) Checkpoint Firewall-1 NG (text export) Checkpoint Firewall-1 (text export) Checkpoint Firewall-1 via Syslog Webtrends firewall SoftArc FirstClass server Open Text FirstClass server Fiserv Easy Lender Login Audit OpenSight Software FlashFXP Macromedia Flash Media Server Adobe Flash Media Server Macromedia Flex/JRun Fortinet Fortigate 300 Series Fortinet FortiGate Firewall (comma separated) Fortinet Fortigate Firewall Fortinet Fortigate Firewall (space separated) Fortinet Fortigate Traffic Fortinet FortiMail Fortinet FortiMail Fortinet Firewall (syslog required) Foundry Networks BigIron Switch Brocade BigIron Switch Foundry Networks ServerIron Switch Brocade ServerIron Switch GNU FreeRADIUS Logika FusionBot McAfee Gauntlet Firewall McAfee Gauntlet Firewall (yyyymmdd) Gene6 SARL FTP Server Gene6 SARL FTP Server (W3C) GFI MailSecurity Attachment & Content Filter GFI MailEssentials Spam Filter Globalscape EFT Gordano Messaging Suite POP Gordano Messaging System Post Gordano Messaging System SMTP Global Technology Associates GNAT Box (sylog required) Global Technology Associates GNAT Box Syslogger Google HTTP Access Novell GroupWise Internet Agent Accounting (2-digit years) Novell GroupWise Internet Agent Accounting (4-digit years) Novell GroupWise Post Office Agent Novell GroupWise Web Access (dd/mm/yy) Novell Groupwise Web Access (mm/dd/yy) GTA GB Firewall WELF (sylog required) GTA Gnatbox GB-Ware GTB Inspector HCTech Guardix Novell GW Guardian Antivirus Novell GW Guardian Anti-Spam Hand-Crafted Software FreeProxy Real Networks Helix Session Manager Real Networks Helix Server Style 5 Real Networks Helix Server hMailServer – www.

Use the update variant for openSuSE, add it to your installation as another repository using YaST or zypper and give it a higher priority (lower number) than the repository that delivers the official updates. As these packages have to go through QA, it usually takes some time for a new ClamAV source release to appear as an official RPM. RPMs of new ClamAV versions for existing SuSE products are provided through the respective online update channels. For those who want the newest version, packages are available from the security project in the openSuSE Build Service.

Live Reports & Graphs
Sawmill statistics are “live,” for unparalleled flexibility while viewing the statistics. Sawmill shows you a collection of interlinked web pages which allow rapid navigation of the entire range of your log statistics. Convenient links and menus right on the statistics pages let you zoom in, set up real-time filters, show and hide columns of the tables and other view elements, sort the data however you want, and much more.

Igor Nikonorov | LinkedIn

Commonly used software include, ASSP, Magic-SMTPd, DSpam, SpamAssassin, ClamAV, etc. Supported software include Exim, Postfix, Sendmail, Qmail, magic-smtpd, etc. Include CentOS, Red Hat, OpenSuse, Ubuntu, FreeBSD, Gentoo, Vyatta, Astrix, Endian.

2 thoughts on “ Filtering spam with Exim and Spamassassin (properly) ” Adam July 20, 2014 at 11:47. This is very nice concept. Thank you for this post.

True Real-time reporting
Sawmill can be configured to provide true real-time reporting–up-to-the-second reporting on the current contents of your log files. There is no need for explicit database refreshes, and no need to wait for the log data to finish loading into the database before viewing reports from the latest data.

Tracking multiple log files in real time in Linux console

Да 🙂 меняем в файле /usr/local/etc/authlib/authpgsqlrc строчку DEFAULT_DOMAIN          testim. Ua’; $quota=20; #============================================================= $dbh=DBI->connect(“DBI:Pg:dbname=$dbname”,”$dbuser”,”$dbpass”); print “Name :>”; $s=; chomp($s); $login=sprintf(“%[email protected]%s”,$s,$def_domain); $sth=$dbh->prepare(“select count(uid) from accounts where login=’$login'”); $sth->execute; my($a)=$sth->fetchrow_array(); $sth->finish(); if($a>0){print “name $login allready exist. Ua Замечание : директории для ящика НЕ создаются , пока не будет получено первое письмо, поэтому, после вставки нового юзера в БД, либо создайте директории , либо выполните команду mail -s hello_new_user [email protected] prepare(“select max(uid) from accounts”); $sth->execute(); ($uid)=$sth->fetchrow_array(); $sth->finish(); $uid++; $s2=sprintf(“%d,’%s’,’%s’,’%s%s/’,’%s%s/’,%s”, $uid,$login,$s1,$def_dir,$s,$def_dir,$s,$quota); print “=========================n UID =>$uidnEmail =>$loginnHome_dir=>$def_dir$snQuota =>$quotan =========================n”; $sth=$dbh->do(“insert into accounts values($s2)”); print “Created email $loginn”; @b=`mail -s Hello $login “; $s1=;chomp($s1); if($s1 eq “”){print “ERROR passwordn”;$dbh->disconnect();exit 0;} if($a>0){ $sth=$dbh->do(“update accounts set password=’$s1′ where login=’$login'”); print “Password changed.

Если будут # проблемы – уберёте проблемный пункт (у меня клиенты # имеют запись типа asdl-1233. Полезно для дальнейшей проверки на # вирусы warn decode = default # Можно очень быстро отсеять сообщения, просто запретив некоторые mime # вложения, чаще всего содержащие вирусы, хотя, конечно, это не панацея deny message = Blacklisted file extension detected condition = ${if match {${lc:$mime_filename}} {N(. В результате ему # приходится держать много открытых соединений. # Также из таблицы accounts извлекается данные о размере квоты, и # устанавливается порог в 75% от квоты, когда пользователю посылается указанное # предупреждение об подходе к порогу квоты local_delivery: driver = appendfile directory = ${lookup pgsql{select maildir from accounts where login = ‘[email protected]$domain’}{$value}fail} create_directory directory_mode = 0770 maildir_format delivery_date_add envelope_to_add return_path_add group = 26 user = 26 mode = 0660 no_mode_fail_narrower quota = ${lookup pgsql{select mailquota from accounts where login = ‘[email protected]$domain’}{$value}fail}M quota_warn_message = ” To: [email protected] From: [email protected] Forward} {yes} {no} } # Локальная доставка, если данный пользователь найдем в базе localuser: driver = accept condition = ${lookup pgsql {select uid from accounts where login = ‘[email protected]$domain’}{yes}{no}} transport = local_delivery cannot_route_message = Unknown user ###################################################################### # TRANSPORTS CONFIGURATION # ###################################################################### # ORDER DOES NOT MATTER # # Only one appropriate transport is called for each delivery. # # An address is passed to each router in turn until it is accepted. ” # Рубаем тех, кто в HELO пихает только цифры # (не бывает хостов ТОЛЬКО из цифр) deny condition = ${if match{$sender_helo_name} {N^d+$N}{yes}{no}} hosts =. Если включена директива allow_filter, то в. login: driver = plaintext public_name = LOGIN server_prompts = Username:: : Password:: server_condition = ${lookup pgsql {select login from accounts where login=” and password=”}{yes}{no}} server_set_id = # End of Exim configuration file. +local_domains local_parts = ^[. localhost : * message = “Это мой IP-адрес. Nl : # cbl. Org : # proxies. $found_extension” незапакованные вложения Для отправки запакуйте их. # # более сложный вариант, смотрите в статье по exim и # курьер имап. ” # Рубаем хосты типа *adsl*; *dialup*; *pool*;. 🙂 deny message = “Свободен. Это тебе не ОпенРелей. Кстати, это _обязательное_ условие, заданное # еще на этапе компиляции never_users = root # Настройки директории для очереди spool_directory = /var/spool/exim # Разделяем spool_directory на несколько более маленьких – аналог хеш таблицы, # ускоряет обработку spool’а split_spool_directory # Пытаемся сделать соответствие прямой и обратной зоны dns для каждого хоста. If you would n override this limit new mail would not be delivered to you. n This means, that your mailbox is 75% full. # accept local_parts = postmaster # domains = +local_domains # Запрещщаем, если невозможно проверить отправителя # (отсутствует в списке локальных пользователей) # У себя я это закоментил, по причине, что некоторые # железяки (принтеры, & etc) и программы (Касперский, DrWEB) # умеют слать почту, в случае проблем но не умеют ставить # нужного отправителя. Org : # bl. # Address or Domain Error Retries # —————– —– ——- * * F,2h,15m; G,16h,1h,1. deny message = “host in blacklist- $dnslist_domain n $dnslist_text” # dnslists = opm. Forward no_verify no_expn check_ancestor # allow_filter file_transport = address_file pipe_transport = address_pipe reply_transport = address_reply condition = ${if exists{$home/. # Несколько затратно, но весьма полезно host_lookup = * # Убираем проверку identd на клиентской стороне. Crt tls_privatekey = CONFIG_PREFIX/mailed. Your message was successfully trashed. # require verify = sender # Запрещщаем тех, кто не обменивается приветственными # сообщениями (HELO/EHLO) deny message = “HELO/EHLO обязано быть по SMTP RFC” condition = ${if eq{$sender_helo_name}{}{yes}{no}} # Принимаем сообщения от тех, кто аутентифицировался: # Вообще, большинство конфигов в рунете – это один и тот же # конфиг написанный Ginger, в котором этот пункт расположен # внизу. Но при таком расположении рубятся клиенты с adsl, # ppp, и прочие зарезанные на последующих проверках. domainlist local_domains =${lookup pgsql{SELECT domain FROM local_domain}} # Список хостов, почту на которые мы явно отвергаем hostlist host_reject = ${lookup pgsql{SELECT domain FROM hostreject}} #Список доменов куда разрешен прием domainlist relay_to_domains = ${lookup pgsql{SELECT hosts FROM relaytohosts}} # Список адресов, с которых разрешена передача почты во внешний мир hostlist relay_from_hosts =${lookup pgsql{SELECT hosts FROM relayfromhosts}} # Проверка получателя acl_smtp_rcpt = acl_check_rcpt # Проверка mime содержимого acl_smtp_mime = acl_check_mime # Проверка на спам и вирусы acl_smtp_data = acl_check_virus # Здесь мы описываем наш антивирус av_scanner = clamd:127. ” condition = ${if match{$sender_host_name} {adsl|dialup|pool|peer|dhcp} {yes}{no}} # Рубаем тех, кто в блэк-листах. Run Subject: Your maildir is going fulln This message is automaticaly gnerated by your mail server. 0 : 127. Из-за неправильно настроенных # firewall’ов это часто вызывает длительные тайм-ауты, кроме того, этот сервис # поднят не у многих rfc1413_query_timeout = 0s # Указываем кое-какие лимиты (их назначение ясно из названия) smtp_accept_max = 50 smtp_connect_backlog = 40 smtp_accept_max_per_host = 10 smtp_accept_queue = 22 smtp_accept_queue_per_connection = 10 recipients_max = 16 recipients_max_reject = true message_size_limit = 20M accept_8bitmime # Игнорируем сообщения, которые приходят нам же, # давность которых более 12-ти часов ignore_bounce_errors_after = 12h # Удаляем замороженные сообщения, давность которых больше 3 дней. Demime = bat:btm:cmd:com:cpl:dll:exe:lnk:msi:pif:prf:reg:scr:vbs:url # Если неподошло ни одно правило – чувак явно ищет # открытый релей. # Если не проходит, то проверяется следующий ACL, # и если непрошёл и там – deny accept domains = +local_domains endpass message = “В этом домене нет такого пользователя” verify = recipient # Проверяем получателя в релейных доменах # Опять-таки если не проходит -> следующий ACL, # и если непрошёл и там – deny accept domains = +relay_to_domains endpass message = “Моя сервера не знать маршрут на этот хост. Это – # основной источник спама с мой ящик). При этом владельцем является # группа и пользователь из accounts #(потому при вставлении записей в эту таблицу # надо начинать значения uid с достаточно большого числа, например, 2000 и # пересекаться с реальными пользователями оно должно только если реальному # пользователю нужен локальный доступ к maildir’у). Что # интересно, этот lookup работает даже для иерархических алиасов # Также определяются транспорты # для передачи почты в файл (>/path/to/file) и в pipe # (|/usr/local/libexec/slocal) system_aliases: driver = redirect allow_fail allow_defer data = ${lookup pgsql{select alias from aliases where mail =’[email protected]$domain’}{$value}fail} user = mailnull group = mail file_transport = address_file pipe_transport = address_pipe # Для локальных пользователей также создаем возможность перенаправления почты # через ~/. Учтите, если у вас было # `percent_hack_domains` то % надо убрать. Если не найден ни в одном # из списка – то почта пропускается. Учтите, # что сам /usr/local/etc/exim/configure должен иметь владельца root:wheel и # иметь права доступа 0600, что отличается от того, что принято по умолчанию # (0644) #hide pgsql_servers = host/database/db_user/password hide pgsql_servers = localhost/exim/exim/exim # Тут мы описываем списки доменов # Local_domains включает домены, считающиеся локальными, то есть те домены, для # которых exim делает локальную доставку, для остальных доменов почта # доставляется по MX записям в DNS. Su – я ADSL убрал. # А вот китайского спама это поубавит # 🙂 deny message = Sorry, noone speaks chinese here condition = ${if eq{$mime_charset}{gb2312}{1}{0}} accept # Проверка содержимого на вирусы и спам acl_check_virus: # Мы не запрещаем письма со спамом, а просто добавляем заголовок, # содержащий количество спамерских очков, а пользователь на своей # стороне уже просто настраивает свои фильтры. # Проверяются локальные домены deny message = “Недопустимые символы в адресе” domains = +local_domains local_parts = ^[. 1 3310 # И spamassasin spamd_address = 127. Серваки перебираются # сверху вниз, если не хост не найден на первом, то # запрашивается второй, и т. (это такой метод борьбы со спамом, # основанный на принципе его рассылки) На этом рубается # почти весь спам. Biz : # dynablock. Потому # я это правило расположил до проверок. +local_domains transport = remote_smtp ignore_target_hosts = 0. /|] # Проверяем недопустимые символы для # нелокальных получателей: deny message = “Недопустимые символы в адресе” domains =. timeout_frozen_after = 3d # Настройки TLS tls_certificate = CONFIG_PREFIX/mailed. LOGIN безопасен # только при установлении ssl соединения. n” quota_warn_threshold = 75% # Транспорт, осуществляющий доставку в pipe address_pipe: driver = pipe return_output # Транспорт, осуществляющий доставку прямо в файл address_file: driver = appendfile delivery_date_add envelope_to_add return_path_add # Этот транспорт используется для автоматического ответа на сообщения #об ошибках address_reply: driver = autoreply ###################################################################### # RETRY CONFIGURATION # ###################################################################### begin retry # Настройки по умолчанию, которые я не трогал, управляют интервала повторной # передачи сообщений # This single retry rule applies to all domains and all errors. hosts = * malware = * accept ###################################################################### # ROUTERS CONFIGURATION # # Specifies how addresses are handled # ###################################################################### # THE ORDER IN WHICH THE ROUTERS ARE DEFINED IS IMPORTANT. / # Принимаем почту для постмастеров локальных доменов без # проверки отправителя (я закомментировал, т. ” # Список доступа для проверки mime частей сообщения acl_check_mime: # Произодим декодирование mime сообщений. Но это # жа неправильно. # документацию на www. localhost:* message = “В HELO не могут быть тока цифры. deny message = Message rejected: virus found. Org : dnslist = : # Задержка. Этом мои пользователи из дома. Обратите внимание на lookup в pgsql базе. Разрешения на директорию 0770 для возможности # работы с данными директориями imap сервера. Так мы исключаем жалобы # со стороны пользователей о потерянных письмах warn message = X-Spam-Score: $spam_score ($spam_bar) spam = nobody:true # Добавляем заголовки, указывающие, что письма были проверены # spamasssasin’ом warn message = X-Spam-Scanned: Yes warn message = X-Spam-Scanner: SpamAssassin running # Вот что-что, а вирусы нам не нужны. Com)$N} {1}{0}} # Много ли у нас людей, знающих китайский. # но на офисе в сотню-две человек – шикарный метод. ” hosts = *:. ) deny message = “Не нравится мне Ваш хост. It specifies # retries every 15 minutes for 2 hours, then increasing retry intervals, # starting at 1 hour and increasing each time by a factor of 1. Там метод боле умный (просто правил # больше :), то можно и на более загруженные сервера ставить) warn # ставим дефолтовую задержку в 20 секунд set acl_m0 = 20s warn # ставим задержку в 0 секунд своим хостам и # дружественным сетям (соседняя контора :)) hosts = +relay_from_hosts set acl_m0 = 0s # Проверка получателя в локальных доменах. И наконец настраиваем конфиг exim (можно просто вставить этот конфиг) /usr/local/etc/exim/configure ###################################################################### # Runtime configuration file for Exim # ###################################################################### # Здесь мы определяем макросы, описывающие различные пути CONFIG_PREFIX=/usr/local/etc/exim # Здесь мы указываем, где находить наш postgresql сервер, соединение # осуществляется через локальный сокет, команда hide помогает спрятать эту # настройку при вызове exim -bP, когда exim выводит # все конфигурационные опции в # стандартный вывод. На рассмотрение этой темы уйдет слишком # много времени userforward: driver = redirect check_local_user file = $home/. # Путь к maildir хранится # опять же в таблице accounts. 0/8 no_more # Все останльные роутеры обслуживают доставку локальной почты # Драйвер алиасов пользователя. Net : # bl. Forward # файле можно использовать язык sieve фильтров. 5; F,4d,6h ###################################################################### # AUTHENTICATION CONFIGURATION # ###################################################################### # Описания аутентификации begin authenticators # CRAM-MD5 аутентификация, требует наличия пароля в открытом виде, имя # пользователя должно быть в формате [email protected], как оно хранится в таблице # accounts lookup_cram: driver = cram_md5 public_name = CRAM-MD5 server_secret = ${lookup pgsql {select password from accounts where login=”}{$value}fail} server_set_id = # LOGIN аутентификация – не требует хранения пароля в открытом виде, однако, по # сети пароль передается в открытом виде – требуется лишь выполнение условия # server_condition – – имя пользователя, а – пароль. # ###################################################################### begin transports # Драйвер для доставки через соединения с удаленными smtp серверами remote_smtp: driver = smtp # Этот транспорт доставляет почту в локальные maildir’ы. ” verify = recipient # Разрешаем почту от доменов в списке relay_from_hosts accept hosts = +relay_from_hosts deny hosts =. 1 783 # Настройки пользователя и группы по умолчанию exim_user = mailnull exim_group = mail # Никогда не осуществляем доставку под рутом – root должен быть алиасом на # другого локального пользователя. +relay_from_hosts # Реализация нашего бан-листа deny hosts = +host_reject message = You are banned. Единственно – метод неприменим на # реально загруженных MTA – т. 5, up to 16 # hours, then retries every 6 hours until 4 days have passed since the first # failed delivery. # еще боримся со спамом и вирусами deny message = Мы не принимает “. Key tls_advertise_hosts = * tls_verify_certificates = * # Следующая опция закомментирована, но весьма полезна, # позволяя авторизироваться # только через безопасный ssl канал #auth_advertise_hosts = ${if eq{$tls_cipher}{}{}{*}} ###################################################################### # ACL CONFIGURATION # # Specifies access control lists for incoming SMTP mail # ###################################################################### begin acl # Этот список доступа описывает проверки, осуществляемые при вызове любой RCPT # команды acl_check_rcpt: # принимать сообщения которые пришли с локалхоста, # не по TCP/IP accept hosts = : # Запрещаем письма содержащие в локальной части # символы @; %;. # Нормальные люди с таких не пишут. Такие письма эта проверка не пускает. # ###################################################################### begin routers # Роутер, осуществляющий поиск по MX записям в DNS dnslookup: driver = dnslookup domains =. accept authenticated = * # Рубаем нах, тех, кто подставляет свой IP в HELO deny message = “Не надо пихать свой IP в качестве HELO. +relay_from_hosts condition = ${if eq{$sender_helo_name} {$sender_host_address}{true}{false}} # Рубаем тех, кто в HELO пихает мой IP deny condition = ${if eq{$sender_helo_name} {$interface_address}{yes}{no}} hosts =.

В основу почтовых систем устанавливаю, в основном, Exim. Однако, исходя из того, что SpamAssassin написан на Perl, при большом .

Вроде бы можно даже не сносить обычным exim а доставить просто sa, но тогда конфиги не скопируются, возможны ещё.

Sawmill generates reports directly from the database, which is queried by clicking on reports associated with the database fields. This database can be incrementally updated as new log files arrive, and old data can be periodically expired from the database. Database Driven
Sawmill stores your statistics in an optimized database. This can be Sawmill’s own built-in high-performance database, or it can be a Microsoft SQL Server, Oracle, or MySQL database.

Andrey Rusinov | Professional Profile

12 thoughts on “Freebsd exim spamassassin

  1. Mishanya Post authorReply

    Nowadays, all you have to do is to download the ISO of the distribution, burn it to a CD or DVD, reboot the computer with the new CD, and follow the instructions. Installation of Linux has come a long way from the early 1990s, when I installed my first Linux system from a set of boot/root floppies (don’t ask). The Linux installers usually have their own ability to install beside an existing operating system like Windows (if you wish), or alternatively, replace the system entirely.

  2. JC_Denton Post authorReply

    Miikka Kiprusoff has the most wins by a goaltender in a Calgary Flames uniform. Nine people associated with the Flames have been inducted into the Hockey Hall of Fame. Individually, Jarome Iginla is the franchise leader in games played, goals, and points, and is a two-time winner of the Maurice Richard Trophy as the league’s leading goal scorer. The Flames have won two Presidents’ Trophies as the league’s top regular season team, and have claimed five division championships.

  3. jeff Post authorReply

    When Jim joined the company, he became enamored with how open source was disrupting the world of traditional proprietary software. Jim Whitehurst is the CEO of Red Hat, the largest open source software company in the world. Now, he’s an outspoken advocate for opening up nonproprietary data and technology of all kinds. In his time here, he has become more than just a believer in the power of open source software.

  4. 8-916-534-26-03 Post authorReply

    The content for the root disk comes either from an image stored within the Glance repository, which is copied to storage attached to the destination hypervisor, or from a persistent block storage volume through Cinder. Each instance requires at least one root disk containing the bootloader and core operating system files, and each instance might also have optional ephemeral disks that use the definition of the flavor selected at instance creation time.

  5. Maya Post authorReply

    The following image shows that the error was caused by an inability to resolve a name. Reviewing the Tasks & Events tab to get more detail on the error reveals exactly that. In the Tasks pane of the graphic, you might have noticed that Silo 105 and Silo 106 both completed the HA configuration successfully. This confirms the suspicion that the error is with DNS. This provides evidence that the problem is probably isolated to Silo 104.

  6. tMia Post authorReply

    Drop down terminals can make things a lot easier if you are trying to run a desktop enviroment with a non defualt window manager and something goes wrong drop down terminals can run the orginal window manager –replace to restore a previous option to make things much less painful. You can also install guake (GNOME), tilda (XFCE / LXDE/Mate) or yakuake (KDE) and have a terminal which appears and hides on shortcut key. This can be particularly useful if you use terminal a lot.

  7. inmen Post authorReply

    Cp is a Linux shell command to copy files and directories. Click on textbox to select code, then copy and paste it into terminal: .

  8. Hem-atom Post authorReply

    Info : Whois Record, Domain History, Name Servers, IP, Geolocation, Website Analysis for www.

  9. tiamat Post authorReply

    Cette commande est hyper-intéressante lorsque vous êtes confronté à un problème inexplicable : path erroné. D’autres infos hyper-intéressantes : lisez donc /var/log/messages. Encore mieux : voir les messages système en temps réel : tail -f /var/log/messages ( pour quitter). Pour ne voir que la fin (ce qui vous intéresse) : tail /var/log/messages.

  10. Warlock Post authorReply

    CS · [ Kosova] Cs 1. CS · zonaZerO | Gungame [TOP 1] | www. CS · [ESP] Espana-Romania. 6 SERVER [Public NEW 2015] (by [Es-Ro] ) Join, 0/32, 178. Com Join, 2/28, 37. 4 Join, 15/32, 87.

  11. Steel Post authorReply

    Hola alguien me podría decir la ip de algún server en el cs 1. 6 que casi nunca se use pero que esté activo.

  12. Flying_Steps Post authorReply

    En counter depende de que servicio de Internet use el servidor. Servers Venezolanos Counter Strike 1. Servers Venezolanos Counter Strike 1. Bueno Depende de el juego también. Si usa cantv el ping que tira es como de 150- 300 . 6 No Steam Servers Venezolanos Counter.

Leave a Reply

Your email address will not be published. Required fields are marked *