Spam Queue UNIX and ROUTER

Discuss the Scalix Server software
braingames
Posts: 12
Joined: Fri Mar 18, 2016 7:36 am

Spam Queue UNIX and ROUTER

Postby braingames » Wed Apr 20, 2016 3:59 am

Hi, I do not know much English . I have a problem. A lot of spam .

omqdump

Option?s
QUEUE Messages Active Ever Load [1min,5min,15min]
ARCHERR 0 0 0 0.00 0.00 0.00
ARCHIVE 0 0 0 0.00 0.00 0.00
BB 0 0 0 0.00 0.00 0.00
DIRSYNC 0 0 0 0.00 0.00 0.00
DMM 0 0 0 0.00 0.00 0.00
DUMP 0 0 0 0.00 0.00 0.00
ERRMGR 0 0 0 0.00 0.00 0.00
ERROR 0 0 0 0.00 0.00 0.00
LICENSE 0 0 0 0.00 0.00 0.00
LOCAL 0 0 19 0.06 0.06 0.05
PRINT 0 0 0 0.00 0.00 0.00
REQ 0 0 0 0.00 0.00 0.00
RESOLVE 0 0 0 0.00 0.00 0.00
ROUTER 66212 2 61 66213.90 66212.15 63309.01
SMERR 0 0 0 0.00 0.00 0.00
SMINTFC 0 0 0 0.00 0.00 0.00
TEST 0 0 0 0.00 0.00 0.00
UNIX 113889 1 12620 113876.57 114382.49 111133.04

how to remove spam?

ScalixSupport
Scalix
Scalix
Posts: 5492
Joined: Thu Mar 25, 2004 8:15 pm

Re: Spam Queue UNIX and ROUTER

Postby ScalixSupport » Wed Apr 20, 2016 6:17 am

Hello,

(NOTE: Be careful when running this command. Improper use cause permanent loss of emails).

[root@mail ~]# omqdump

WARNING: This is a diagnostic tool for use by Scalix trained personnel.
Improper use can cause serious damage.
If you do not wish to continue, hit return now.

Please select an option:
s: Show summary of queues o: Output opened msg to files
l: List (browse) msgs on queue i: Input a msg from files
m: Move opened msg between queues g: Get (serial open) next msg
M: Move msgs between queues G: Get (serial open) nth+1 msg
d: Delete opened msg from queue r: Read (browse) opened msg
D: Delete msgs from queue c: Close opened msg
v: View status of queue f: Find (priority open) next msg
a: Access opened msgs info p: Put opened msg on a queue
O: Open message file t: Text dump
L: list configured queues. C: Copy msgs
T: List queue throughput averages Z: Zap (forcefully delete) msg.
b: Toggle short browse mode. I: Get message by id
q: Quit

Option? v
Queue() UNIX

Here is a snapshot of the list generated. It contained thousands of emails such as below:

...
45654177 ERR N PLEASE CALL MR. COLE NOW +4 01.27.16
45654181 ERR N PLEASE CALL MR. COLE NOW +4 01.27.16
45654185 ERR N PLEASE CALL MR. COLE NOW +4 01.27.16
45654189 ERR N PLEASE CALL MR. COLE NOW +4 01.27.16
45654865 ERR N PLEASE CALL MR. COLE NOW +4 01.27.16
45654869 ERR N PLEASE CALL MR. COLE NOW +4 01.27.16
45654873 ERR N PLEASE CALL MR. COLE NOW +4 01.27.16
45654877 ERR N PLEASE CALL MR. COLE NOW +4 01.27.16
45656545 ERR N PLEASE CALL MR. COLE NOW +4 01.27.16
45656549 ERR N PLEASE CALL MR. COLE NOW +4 01.27.16
45656553 ERR N PLEASE CALL MR. COLE NOW +4 01.27.16
45656557 ERR N PLEASE CALL MR. COLE NOW +4 01.27.16
45656609 ERR N PLEASE CALL MR. COLE NOW +4 01.27.16
45656613 ERR N PLEASE CALL MR. COLE NOW +4 01.27.16
45656617 ERR N PLEASE CALL MR. COLE NOW +4 01.27.16
45656621 ERR N PLEASE CALL MR. COLE NOW +4 01.27.16
45657729 ERR N PLEASE CALL MR. COLE NOW +4 01.27.16
45657733 ERR N PLEASE CALL MR. COLE NOW +4 01.27.16
45657737 ERR N PLEASE CALL MR. COLE NOW +4 01.27.16
...
In order to remove only the spam from the queue type the following:

omstat -q unix | grep "PLEASE CALL MR. COLE NOW" | awk '{print $1}' > /tmp/spam.txt
while read tempfile; do echo $tempfile; omstat -q unix -Rj -m $tempfile; done < "/tmp/spam.txt"
The first command grabs the message IDs of all the emails with the subject containing "PLEASE CALL MR. COLE NOW" and dumps them in the temporary file /tmp/spam.txt

[root@mail tmp]# tail spam.txt
46777705
46777709
46777761
46777765
46777769
46777773
46777809
46777813
46777817
46777821
[root@mail tmp]#
The latter command grabs each message ID and removes it from the queue while retaining the legit emails

By running the command watch -n0.1 "omstat -s" you will see the number of emails in the queue decrease

You may apply same scenario for router queue

Thanks !

Regards,
Scalix Support Team

braingames
Posts: 12
Joined: Fri Mar 18, 2016 7:36 am

Re: Spam Queue UNIX and ROUTER

Postby braingames » Thu Apr 21, 2016 3:41 am

Thank you!

But today, the spam has come again, only for another user. How can I avoid this

braingames
Posts: 12
Joined: Fri Mar 18, 2016 7:36 am

Re: Spam Queue UNIX and ROUTER

Postby braingames » Thu Apr 21, 2016 4:57 am

spam again. How to disable the user to send and receive

ScalixSupport
Scalix
Scalix
Posts: 5492
Joined: Thu Mar 25, 2004 8:15 pm

Re: Spam Queue UNIX and ROUTER

Postby ScalixSupport » Thu Apr 21, 2016 5:55 am

Hello,

You may use Scalix AntiSpam and ZeroHour AntiVirus solutions to protect server from viruses and spams.

Regards,
Scalix Support Team

braingames
Posts: 12
Joined: Fri Mar 18, 2016 7:36 am

Re: Spam Queue UNIX and ROUTER

Postby braingames » Fri Apr 29, 2016 4:53 am

How to connect sendmail and clamav? What to write in a sendmail.mc

Now installed spamassassin

INPUT_MAIL_FILTER('spamassassin', 'S=local:/var/run/spamass-milter/spamass-milter.sock, F=, T=C:15m;S:4m;R:4m;E:10мъ)dnl

ScalixSupport
Scalix
Scalix
Posts: 5492
Joined: Thu Mar 25, 2004 8:15 pm

Re: Spam Queue UNIX and ROUTER

Postby ScalixSupport » Mon May 02, 2016 7:09 am

Hello,

Please refer to configure clamav http://www.scalix.com/wiki/index.php?title=HowTos/ClamAV

Regards,
Scalix Support Team

braingames
Posts: 12
Joined: Fri Mar 18, 2016 7:36 am

Re: Spam Queue UNIX and ROUTER

Postby braingames » Fri May 06, 2016 3:40 am

https://www.victorangelier.com/centos7-sendmail-spamassassin-and-clamav-howto/

All right?

braingames
Posts: 12
Joined: Fri Mar 18, 2016 7:36 am

Re: Spam Queue UNIX and ROUTER

Postby braingames » Fri May 06, 2016 4:49 am

[root@mailserver]# clamdscan /var/opt/scalix/sp/s/data/0000001/*
/var/opt/scalix/sp/s/data/0000001/000010g: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/000010i: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/000010j: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/000010k: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/000010l: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/000010m: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/000010n: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/000010o: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/000010p: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/000010q: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/0000120: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/0000122: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/0000123: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/0000126: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/0000127: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/0000128: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/0002m8p: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/0002m8s: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/004lk0u: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/004lk0v: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/004lk12: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/004lk13: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/004lk16: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/004lk17: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/004lk1a: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/004lk1b: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/004lk1e: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/004lk1f: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/004lk1i: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/004lk1j: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/004lk1m: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/004lk1n: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/004lk1q: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/004lk1r: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/004lk1v: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/004lk20: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/004lk23: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/004lk24: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/004lk27: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/004lk28: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/004lk2b: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/004lk2c: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/004lk2f: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/004lk2g: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/004lk2j: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/004lk2k: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/004lk2n: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/004lk2o: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/004lk2r: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/004lk2s: lstat() failed: Permission denied. ERROR
/var/opt/scalix/sp/s/data/0000001/items.db: lstat() failed: Permission denied. ERROR

----------- SCAN SUMMARY -----------
Infected files: 0
Total errors: 51
Time: 0.044 sec (0 m 0 s)

What is Permission denied. ERROR?

ScalixSupport
Scalix
Scalix
Posts: 5492
Joined: Thu Mar 25, 2004 8:15 pm

Re: Spam Queue UNIX and ROUTER

Postby ScalixSupport » Wed May 11, 2016 6:52 am

Hello,

Please check, selinux should be disabled
Permissive or enabled selinux can cause this problem.

Regards,
Scalix Support Team.

braingames
Posts: 12
Joined: Fri Mar 18, 2016 7:36 am

Re: Spam Queue UNIX and ROUTER

Postby braingames » Wed May 11, 2016 11:26 am

# /usr/sbin/getenforce
Disabled

# tail -f -n -100 /var/log/maillog
***********
May 11 18:05:00 smtp sendmail[10461]: u4BF50Te010461: Milter (clmilter): error connecting to filter: Connection refused by /var/run/clamav-milter/clamav-milter.socket
May 11 18:05:00 smtp sendmail[10461]: u4BF50Te010461: Milter (clmilter): to error state
**************

What could it be?

ScalixSupport
Scalix
Scalix
Posts: 5492
Joined: Thu Mar 25, 2004 8:15 pm

Re: Spam Queue UNIX and ROUTER

Postby ScalixSupport » Fri May 20, 2016 10:44 am

Hello,

Could you please try to use clamscan command instead of clamdscan
( # clamdscan /var/opt/scalix/sp/s/data/0000001/*)

It's seems wrongly configured socket location please refer http://pantestmb.blogspot.in/2013/10/fedora-19-systemctl-sendmail-clamav.html to configure clamav,
(# tail -f -n -100 /var/log/maillog
***********
May 11 18:05:00 smtp sendmail[10461]: u4BF50Te010461: Milter (clmilter): error connecting to filter: Connection refused by /var/run/clamav-milter/clamav-milter.socket
May 11 18:05:00 smtp sendmail[10461]: u4BF50Te010461: Milter (clmilter): to error state)

Regards,
Scalix Support Team


Return to “Scalix Server”



Who is online

Users browsing this forum: Google [Bot] and 1 guest

cron