hey @all,
after my AD sync, i have to provide a virusscan on the scalix server.
if followed the guide, but i only find the install/config for suse!
in my case, the server os is debian etch.
• Install the newest version of clamav on the server
a. add to /etc/apt/source.list
"deb http://volatile.debian.org/debian-volatile etch/volatile main contrib non-free"
b. # aptitude update
c. # aptitude install clamam clamav-deamon clamav-dbg
• create the /var/opt/scalix/~/rules/ALL_ROUTES.VIR
a. # touch ALL_ROUTES.VIR
b. edit the Virus-Scanning Ruleset, add the following text:
>> VIRUS-UNCLEANED=1 ACTION=REJECT NDN-INFO=ndninfo.txt
>> VIRUS-UNCLEANED=0 VIRUS-FOUND=1 ACTION=ALLOW NOTIFY="A virus was
>> fuond in your message. It was successfully cleaned and sent to the
>> recipient. However we highly recommend that you install or update
>> your virus protection software and scan your computer for viruses."
• Create a textfile with the message if a virus was found
a. # Touch ndninfo.txt:
b. edit the ndninfo.txt: , add the following text:
>> Text = A virus was detected in your message and could not be cleaned,
>> therefore it was not delivered. We highly recommend that you install or update
>> you virus proection software.
• restart the Scalix Service Router
a. Stop: # omoff -s sr / --> Disabling 1 subsystem(s).
b. Start: # omon -s sr / --> Enabling 1 subsystem(s).
• Copy the omvscan.map in ~/rules
a. # cp /opt/scalix/examples/general/omvscan.map /var/opt/scalix/sx/s/rules
b. set the security option on the *.map file
# chown root omvscan.map
# chmod 555 omvscan.map
• Add the Clamav user into the scalix group
• check and edit the clamav configuration file ~/sys/omvscan.cfg
>>[ClamAV]
>>CLAMAV_ENGINE=/usr/bin/clamscan
• add a proxy in /etc/clamav/ freshclam.conf
>> HTTPProxyServer 10.1.1.55
>> HTTPProxyPort 8080
• test of the virusscan
a. Turn up audit logging for the service router.
# omconfaud router 13
b. Turn up debug logging for the service router.
# omconflvl router 15
c. Stop/restart the service router
# omoff -d 0 rtr
# omon rtr
View the logs and nothing happend!!
mails with an attachment eith a eicar test virus, achieve there aim without any warnings or error messages.
where is my error???