scanning rules

Wed Nov 14 22:51:38 GMT 2007

 Glenn Steen <glenn.steen at gmail.com> wrote:
> 

> It should function exactly as it says "on the tin".... Could we see
> some example log entries (all relevant entries, from connect to the
> MTA, through MS and on to final delivery), and perhaps an example
> message (with headers) as well?
> 

The server was isolated then all mailer daemons restarted so the only msg was my test one, and it clearly shows its spam tests and virus tests, however the unscanned message log entry also has me fuzzled, does mailscanner just log everything if if its set to bypass as well? This makes debugging a PITA, I hope we don't have to move back to MIMEDefang

The log appears out of order this is most likely due to the "dont immediately write to log" syslog setting

Thanks
Edward

Nov 15 08:19:31 exorcist sendmail[31712]: lAEMJVNt031712: from=<X at optusnet.com.a
u>, size=448, class=0, nrcpts=1, msgid=<4.64.0711150817210.22424 at blacksabeth>, proto=ESMTP, daemon=MTA, relay=[10.0.1.19] [10.0.1.19]
Nov 15 08:19:32 exorcist MailScanner[31693]: New Batch: Scanning 1 messages, 909 bytes
Nov 15 08:19:33 exorcist MailScanner[31693]: Spam Checks: Starting
Nov 15 08:19:33 exorcist MailScanner[31693]: Unscanned: Delivered 1 messages
Nov 15 08:19:33 exorcist MailScanner[31693]: Virus and Content Scanning: Starting
Nov 15 08:19:33 exorcist sendmail[31721]: lAEMJXqj031721: from=<housenoreply at localhost>, size=868, class=0, nrcpts=1, msgid=<house-11152007081933.31720.1 at exorcist>, proto=ESMTP, daemon=MTA, relay= [10.0.1.6] [10.0.1.6]
Nov 15 08:19:33 exorcist sendmail[31718]: lAEMJVNt031712: to="|/opt/house", ctladdr=<X at optusnet.com.au> (8/0), delay=00:00:02, xdelay=00:00:00, mailer=prog, pri=120448, dsn=2.0.0, stat=Sent
Nov 15 08:19:34 exorcist MailScanner[31693]: New Batch: Scanning 1 messages, 1337 bytes
Nov 15 08:19:34 exorcist MailScanner[31693]: Spam Checks: Starting
Nov 15 08:19:34 exorcist sendmail[31732]: lAEMJXqj031721: to=X at optusnet.com.au, delay=00:00:01, xdelay=00:00:00, mailer=esmtp, pri=120868, relay=[10.0.1.19] [10.0.1.19], dsn=2.0.0, stat=Sent (lAEMJYbf022431 Message accepted for delivery)
Nov 15 08:19:34 exorcist MailScanner[31693]: Unscanned: Delivered 1 messages
Nov 15 08:19:35 exorcist MailScanner[31693]: Virus and Content Scanning: Starting

And a message from me to me not going via that script, does not have headers added but does have all the log entries as well.

Nov 15 08:44:37 exorcist sendmail[3538]: lAEMiaYp003538: from=<X at optusnet.com.au>, size=443, class=0, nrcpts=1, msgid=<4.64.0711150843470.22685 at blacksabeth>, proto=ESMTP, daemon=MTA, relay=[10.0.1.19] [10.0.1.19]
Nov 15 08:44:38 exorcist MailScanner[3524]: New Batch: Scanning 1 messages, 892 bytes
Nov 15 08:44:39 exorcist MailScanner[3524]: Spam Checks: Starting
Nov 15 08:44:39 exorcist sendmail[3544]: lAEMiaYp003538: to=X at optusnet.com.au, ctladdr=<X at optusnet.com.au> (1009/100), delay=00:00:02, xdelay=00:00:00, mailer=esmtp, pri=120443, relay=[10.0.1.19] [10.0.1.19], dsn=2.0.0, stat=Sent (lAEMicrY022692 Message accepted for delivery)
Nov 15 08:44:39 exorcist MailScanner[3524]: Unscanned: Delivered 1 messages
Nov 15 08:44:39 exorcist MailScanner[3524]: Virus and Content Scanning: Starting