postfix with bitdefender-scanner

-
In this post i'll describe to you, how to scan emails using postfix and BitDefender-scanner.

This will help you scan and clean all incoming email traffic to your server for viruses.

Nevertheless, this sollution is not a fast one(and it will scan only the incoming mail), because for each and every mail, the procmail filter will send the eml to the bitdefender-scanner.

In order to increase speed, i recommand to use BitDefender for mail servers
, and integrate it with postfix or other favorite mta.

Bitdefender-scanner it is very easy to install.The package will cam as, rpm, deb and tar.
Just type in your console sh -x BitDefender-scanner.rpm/deb/tar.run and follow the install procedure.

After the install, I recommend to update your scanner.To do this, go to /opt/BitDefender-scanner/bin, and type ./bdscan --update

If you LDA in postfix is procmail, then you don't need to make any modifications to your main.cf file.If not just add this line in /etc/postfix/main.cf

mailbox_command = /usr/bin/procmail -a "$EXTENSION"

In order to delivery emails in ~/Maildir add this line in main.cf

home_mailbox = Maildir/



After this, restart postfix server.

In your home directory, edit .procmailrc file (if is not there, echo > .procmailrc).Offcourse you can enable procmailrc system wide (write this file in /etc)

Add the following lines in .procmailrc

$ cat .procmailrc
PATH=/usr/local/bin:/usr/bin:/bin
MAILDIR=$HOME/Maildir/
DEFAULT=$MAILDIR
LOGFILE=$MAILDIR/procmail.log
FILE=`mktemp`

:0 fw
|cat > $FILE; if bdscan $FILE &>/dev/null; then formail -a "X-BDScan:
clean" <$FILE; else formail -a "X-BDScan: infected" <$FILE; fi; rm -f $FILE

Offcourse, you must modify MAILDIR variable and bdscan must be in your path.

This will add in your email, a header that contain X-BDScan:infected/clean acording to the bdscan result.

If you want the infected mail to be deleted just add in .procmailrc the following line

:0
* ^X-BDScan: infected
/dev/null

Or else, if you want to move infected files to an local directory add in .procmailrc

:0
* ^X-BDScan: infected
Maildir/infected


If your postfix server is using another LDA, but it is using .forward files, a sollutins per user, not system wide is to add a .forward file in your home dir just like this

$ cat .forward
|/usr/bin/procmail

Well, this is it :)

Enjoy a free virus email.

Thanks to the BitDefender team for making this possible

Comments

Post a Comment

Popular posts from this blog

Why sometimes oracle 10g XE sucks big time

-
A few days ago, one of my web application that use as backend oracle (i'm running oracle-xe-10.2.0.1-0.1) hangs and refuse to work. I was very surprised of this, because i was more than sure that i did not made any modifications on my web server. First thing i look into it was the apache web server.I try to restart the web server, check the php lib file to see if it is corrupted or missing, check the ORA_HOME enviroment, check it the DMZ server where the oracle 10XE is running respond to my pings and telnets in 1521.Every thing was working as espected, except my web application.I was very frustrated and disappointed. After a while, it hit me, why not check the sqlplus client from ORA_HOME path. Tannnnaaaa...this was the problem.The sqlclient refuse to work or connect to the oracle server. This is the output of the strace that i did on sqlplus \0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0"..., 256) = 256 13100 lseek(6, 512, SEEK_SET) = 512 13100 read(6, "\337y \0\0\0\0\0\0\0\0\0\0\
Read more

Review of Yashica ML 50mm F2

-
Image
Yashica ML 50mm/2 lens at F/2, full manual focus   * The purchase - I got this lens from ebay, it is cheap :)  - It's working on my Canon camera with   this   adapter.   * What I like:  - Metal case, built to last forever, quality of the lens seems good . - Aperture ring feels smooth, I like the "click click" sound . - It's very sharp at F/2, this was a big surprise for me, because I was using the Canon EF 50mm F1.8, which is sharp maybe at F8, and is feels(and sounds) like broken mcdonald's toy. - The bokeh is very nice, interesting "spinning" effect. - Colors are saturated.   * What I don't like:  - At F/11->F/16, pictures are strange, colors shades, details are missing. - Aperture ring is too close to the body, this is a a little bit annoying, but this is by design, I have to get used to it.   Sample images - The ground level point of view Sample images - Miracle
Read more

NAT in opensolaris

-
Firt, you must enable ip forwarding in your opensolaris box. Let's suppose thet we have two network adapters, one is elxl0(80.xxx.xxx.xxx), this is connect to the internet, and the second one is e1000g0 connected to the intranet (172.16.16.1) ipnat.conf file can be located anyware on the system, in /etc/ipnat.rules, /usr/local/etc/ipnat.rules, or /etc/opt/ipf/ipnat.rules In opensolaris, /network/ipv4-forwarding service is using /etc/ipf/ipnat.conf file cd /etc/ipf echo >> ipnat.conf (if it's missing) Insert in ipnat.conf file this line map elxl0 172.16.16.0/24 -> 0/32 The easiest way to load a NAT rule set is: ipnat -CF -f /etc/ipnat.conf To test if the rules from ipnat.rules are loaded, type from root account: ipnat -l The output look like this root@freya:/etc/ipf# ipnat -l List of active MAP/Redirect filters: map elxl0 172.16.16.0/24 -> 0.0.0.0/32 [...] List of active sessions: MAP 172.16.16.2 12769 <- -> 80.xxx.xxx.xxx 12769 [86.xxx.21.xxx 53
Read more