MS+SA+CLAMAV on FreeBSD

Stephen Swaney steve.swaney at FSL.COM
Tue Jul 13 19:38:24 IST 2004 

> -----Original Message-----
> From: MailScanner mailing list [mailto:MAILSCANNER at JISCMAIL.AC.UK] On
> Behalf Of Matthew K Bowman
> Sent: Tuesday, July 13, 2004 2:17 PM
> To: MAILSCANNER at JISCMAIL.AC.UK
> Subject: MS+SA+CLAMAV on FreeBSD
>
> Hi,
>
> I'm currently using 4 Redhat Boxes for MS, SA and F-prot. However we
> have found RH9 to be an unreliable OS, as a result we are looking at
> FreeBSD as an alternative OS.  I downloaded the source for  MS, Clamav
> and SA onto the FreeBSD and followed the instructions.
>
> FreeBSD 5.2.1
> MS installed fine with --ignore-perl (4.31-6)
> ClamAv installed fine  (0.74)
> SA installed fine (2.63)
>

Better (and easier) to use the MailScanner port for FreeBSD. See:

        http://www.sng.ecs.soton.ac.uk/mailscanner/FreeBSD.html

Also there are ports available for ClamAV (.73) and Pyzor. I believe the SA
port is old so you'll have to install that from source or CPAN. As I
remember I only had to use source for SA, Razor and DCC on a recent FreeBSD
install.

Al a FreeBSD starter Bayes database is available at:

        http://www.fsl.com/support/index.html

Hope this helps,

Steve
Stephen Swaney
President
Fortress Systems Ltd.
Steve.Swaney at FSL.com

> When MS starts up, it doesn't report its found messages in the queue, it
> appears that MS just hangs and sendmails just carries on and passes the
> mail through. It doesn't seem MS is actually do either spam or virus
> checks (maillog does not indicate so)
>
> Output of spamassassin -D --lint
>
> debug: Score set 0 chosen.
> debug: running in taint mode? yes
> debug: Running in taint mode, removing unsafe env vars, and resetting PATH
> debug: PATH included '/sbin', keeping.
> debug: PATH included '/bin', keeping.
> debug: PATH included '/usr/sbin', keeping.
> debug: PATH included '/usr/bin', keeping.
> debug: PATH included '/usr/games', keeping.
> debug: PATH included '/usr/local/sbin', keeping.
> debug: PATH included '/usr/local/bin', keeping.
> debug: PATH included '/usr/X11R6/bin', keeping.
> debug: PATH included '/root/bin', which doesn't exist, dropping.
> debug: Final PATH set to:
> /sbin:/bin:/usr/sbin:/usr/bin:/usr/games:/usr/local/sb
> in:/usr/local/bin:/usr/X11R6/bin
> debug: ignore: using a test message to lint rules
> debug: using "/usr/local/share/spamassassin" for default rules dir
> debug: using "/etc/mail/spamassassin" for site rules dir
> debug: using "/root/.spamassassin" for user state dir
> debug: using "/root/.spamassassin/user_prefs" for user prefs file
> debug: using "/root/.spamassassin" for user state dir
> debug: bayes: 4203 tie-ing to DB file R/O /root/.spamassassin/bayes_toks
> debug: bayes: 4203 tie-ing to DB file R/O /root/.spamassassin/bayes_seen
> debug: bayes: found bayes db version 2
> debug: bayes: Not available for scanning, only 1 spam(s) in Bayes DB < 200
> debug: bayes: 4203 untie-ing
> debug: bayes: 4203 untie-ing db_toks
> debug: bayes: 4203 untie-ing db_seen
> debug: Score set 1 chosen.
> debug: Initialising learner
> debug: using "/root/.spamassassin" for user state dir
> debug: bayes: 4203 tie-ing to DB file R/O /root/.spamassassin/bayes_toks
> debug: bayes: 4203 tie-ing to DB file R/O /root/.spamassassin/bayes_seen
> debug: bayes: found bayes db version 2
> debug: bayes: Not available for scanning, only 1 spam(s) in Bayes DB < 200
> debug: bayes: 4203 untie-ing
> debug: bayes: 4203 untie-ing db_toks
> debug: bayes: 4203 untie-ing db_seen
> debug: is Net::DNS::Resolver available? yes
> debug: trying (3) microsoft.com...
> debug: looking up MX for 'microsoft.com'
> debug: MX for 'microsoft.com' exists? 1
> debug: MX lookup of microsoft.com succeeded => Dns available (set
> dns_available
> to hardcode)
> debug: is DNS available? 1
> debug: all '*From' addrs: ignore at compiling.spamassassin.taint.org
> debug: running header regexp tests; score so far=0
> debug: running body-text per-line regexp tests; score so far=1.27
> debug: Razor2 is not available
> debug: running raw-body-text per-line regexp tests; score so far=1.27
> debug: running uri tests; score so far=1.27
> debug: uri tests: Done uriRE
> debug: running full-text regexp tests; score so far=1.27
> debug: Razor2 is not available
> debug: Current PATH is:
> /sbin:/bin:/usr/sbin:/usr/bin:/usr/games:/usr/local/sbin
> :/usr/local/bin:/usr/X11R6/bin
> debug: Pyzor is not available: pyzor not found
> debug: DCCifd is not available: no r/w dccifd socket found.
> debug: DCC is not available: no executable dccproc found.
> debug: all '*To' addrs:
> debug: RBL: success for 1 of 1 queries
> debug: running meta tests; score so far=1.27
> debug: is spam? score=1.27 required=5 tests=DATE_MISSING,NO_REAL_NAME
>
> Debug from MS:
>
> In Debugging mode, not forking...
> debug: Score set 0 chosen.
> debug: running in taint mode? no
> SA bayes lock is /root/.spamassassin/bayes.lock
> Bayes lock is at /root/.spamassassin/bayes.lock
> debug: ignore: test message to precompile patterns and load modules
> debug: using "/usr/local/share/spamassassin" for default rules dir
> debug: using "/etc/mail/spamassassin" for site rules dir
> debug: using "/etc/MailScanner/spam.assassin.prefs.conf" for user prefs
> file
> debug: bayes: 4322 tie-ing to DB file R/O /root/.spamassassin/bayes_toks
> debug: bayes: 4322 tie-ing to DB file R/O /root/.spamassassin/bayes_seen
> debug: bayes: found bayes db version 2
> debug: bayes: Not available for scanning, only 1 spam(s) in Bayes DB < 200
> debug: bayes: 4322 untie-ing
> debug: bayes: 4322 untie-ing db_toks
> debug: bayes: 4322 untie-ing db_seen
> debug: Score set 1 chosen.
> debug: Initialising learner
> debug: bayes: 4322 tie-ing to DB file R/O /root/.spamassassin/bayes_toks
> debug: bayes: 4322 tie-ing to DB file R/O /root/.spamassassin/bayes_seen
> debug: bayes: found bayes db version 2
> debug: bayes: Not available for scanning, only 1 spam(s) in Bayes DB < 200
> debug: bayes: 4322 untie-ing
> debug: bayes: 4322 untie-ing db_toks
> debug: bayes: 4322 untie-ing db_seen
> debug: is Net::DNS::Resolver available? yes
> debug: trying (3) google.de...
> debug: looking up MX for 'google.de'
> debug: MX for 'google.de' exists? 1
> debug: MX lookup of google.de succeeded => Dns available (set
> dns_available to hardcode)
> debug: is DNS available? 1
> debug: all '*From' addrs: ignore at compiling.spamassassin.taint.org
> debug: running header regexp tests; score so far=0
> debug: running body-text per-line regexp tests; score so far=1.27
> debug: Razor2 is not available
> debug: running raw-body-text per-line regexp tests; score so far=1.27
> debug: running uri tests; score so far=1.27
> debug: uri tests: Done uriRE
> debug: running full-text regexp tests; score so far=1.27
> debug: Razor2 is not available
> debug: Current PATH is: /sbin:/bin:/usr/sbin:/usr/bin
> debug: Pyzor is not available: pyzor not found
> debug: all '*To' addrs:
> debug: RBL: success for 1 of 1 queries
> debug: running meta tests; score so far=1.27
> debug: is spam? score=1.27 required=5 tests=DATE_MISSING,NO_REAL_NAME
>
>
> Can anyone point me in the right direction here please.
>
> Thank you
>
> Matthew
>
> -------------------------- MailScanner list ----------------------
> To leave, send    leave mailscanner    to jiscmail at jiscmail.ac.uk
> Before posting, please see the Most Asked Questions at
> http://www.mailscanner.biz/maq/     and the archives at
> http://www.jiscmail.ac.uk/lists/mailscanner.html
>
> --
> This message has been scanned for viruses and
> dangerous content by MailScanner, and is
> believed to be clean.
>
> Fortress Systems Ltd.
> www.fsl.com
>



--
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.

Fortress Systems Ltd.
www.fsl.com

-------------------------- MailScanner list ----------------------
To leave, send    leave mailscanner    to jiscmail at jiscmail.ac.uk
Before posting, please see the Most Asked Questions at
http://www.mailscanner.biz/maq/     and the archives at
http://www.jiscmail.ac.uk/lists/mailscanner.html

More information about the MailScanner mailing list