Qmail-scan+Mcafee VirusScan Command Line為Qmail自動殺毒

psac · 2004-02-27, 01:03 PM

qmail-scan的網站 http://qmail-scanner.sourceforge.net/
最新版本1.20

需要依賴的程序,如果是FreeBSD,可以直接去找ports
reformime (來自 Maildrop 1.3.8+ )
Perl 5.005_03+
Perl module Time::HiRes
Perl module DB_File (可能不需要或者系統已經存在)
Perl module Sys::Syslog (可能不需要或者系統已經存在)

這裡介紹手動安裝，主要是不想重新編譯Qmail加入QMAILQUEUE
安裝Mcafee VirusScan Command Line,並且將uvscan ln到/usr/local/bin和.so文件ln到/usr/local/lib

tar zxf qmail-scanner-1.20.gz
cd qmail-scanner-1.20

配置qmail-scanner,路逕自定義,yourdomain替換為你的域名,詳細的參看./configure --help

程式碼:--------------------------------------------------------------------------------
./configure --spooldir /mail/qmailscan --qmaildir /mail/qmail --bindir /mail/qmail/bin --qmail-queue-binary /mail/qmail/bin/qmail-queue.real --admin root --domain yourdomain --notify recips --local-domains yourdomain --silent-viruses auto --lang en_GB --debug no --unzip 1 --add-dscr-hdrs 0 --archive 0 --redundant no --log-details 0 --log-crypto 0 --fix-mime 1 --scanners "uvscan" --no-QQ-check 1
--------------------------------------------------------------------------------

增加用戶和組

程式碼:--------------------------------------------------------------------------------
pw groupadd qscand -g 65530
pw useradd qscand -g qscand -d /mail/qmailscan -s /nonexistent -u 65530
--------------------------------------------------------------------------------

新增目錄

程式碼:--------------------------------------------------------------------------------
mkdir -p /mail/qmailscan
mkdir -p /mail/qmailscan/quarantine/tmp /mail/qmailscan/quarantine/cur /mail/qmailscan/quarantine/new
mkdir -p /mail/qmailscan/working/tmp /mail/qmailscan/working/cur /mail/qmailscan/working/new
mkdir -p /mail/qmailscan/archive/tmp /mail/qmailscan/archive/cur /mail/qmailscan/archive/new
--------------------------------------------------------------------------------

複製文件，設定權限

程式碼:--------------------------------------------------------------------------------
cp quarantine-attachments.txt /mail/qmailscan/
chown -R qscand.qscand /mail/qmailscan/
cp qmail-scanner-queue.pl /mail/qmail/bin/qmail-scanner-queue.pl
chown qscand.qscand /mail/qmail/bin/qmail-scanner-queue.pl
chmod 4755 /mail/qmail/bin/qmail-scanner-queue.pl
--------------------------------------------------------------------------------

啟始化qmail-scan,替代qmail-queue先使用

程式碼:--------------------------------------------------------------------------------
/mail/qmail/bin/qmail-scanner-queue.pl -h
/mail/qmail/bin/qmail-scanner-queue.pl -z
/mail/qmail/bin/qmail-scanner-queue.pl -g
mv /mail/qmail/bin/qmail-queue /mail/qmail/bin/qmail-queue.real
ln -s /mail/qmail/bin/qmail-scanner-queue.pl /mail/qmail/bin/qmail-scanner-queue
--------------------------------------------------------------------------------

mcafee病毒庫自動更新指令碼update.sh, 放在uvscan目錄下面

程式碼:--------------------------------------------------------------------------------
#!/bin/sh
install_directory=`dirname $0`
mkdir /tmp/dat-updates
cd /tmp/dat-updates
current_version=`$install_directory/uvscan --version | grep "Virus data file" | awk '{ print substr($4,2,4) }'`
ftp "ftp://ftp.nai.com/pub/datfiles/english/dat-*.tar"
new_version=`echo dat-*.tar | awk '{ print substr($1,5,4) }'`
if [ "$current_version" -ge "$new_version" ]
then
echo "No new .DATs available at this time"
echo "Currently installed version: $current_version"
echo "Version on FTP site: $new_version"
else
tar -xf dat-*.tar
for file in `tar -tf dat-*.tar`
do
newfile=`echo $file | tr [A-Z] [a-z]`
mv -f ./$file "$install_directory/$newfile"
done
current_version=`$install_directory/uvscan --version | grep "Virus data file" | awk '{ print substr($4,2,4) }'`
if [ ! "$current_version" -eq "$new_version" ]
then
echo "DAT file updates did not work correctly."
echo "Please try manually."
else
echo "DAT file updates successful"
echo "Currently installed version: $current_version"
fi
fi
cd /
rm -rf /tmp/dat-updates
--------------------------------------------------------------------------------

chmod +x update.sh
做個crond每6小時更新一次
程式碼:--------------------------------------------------------------------------------0 */6 * * * /uvscan-path/update.sh

qmail-scanner-queue.pl
也可以自己開啟編輯裡面的參數

2004-02-27, 01:03 PM	#1
psac 榮譽會員榮譽勳章勳章總數19 UID - 3662 在線等級: 註冊日期: 2002-12-07 住址: 木柵市立動物園文章: 17381 精華: 2 現金: 5253 金幣資產: 33853 金幣	Qmail-scan+Mcafee VirusScan Command Line為Qmail自動殺毒 qmail-scan的網站 http://qmail-scanner.sourceforge.net/ 最新版本1.20 需要依賴的程序,如果是FreeBSD,可以直接去找ports reformime (來自 Maildrop 1.3.8+ ) Perl 5.005_03+ Perl module Time::HiRes Perl module DB_File (可能不需要或者系統已經存在) Perl module Sys::Syslog (可能不需要或者系統已經存在) 這裡介紹手動安裝，主要是不想重新編譯Qmail加入QMAILQUEUE 安裝Mcafee VirusScan Command Line,並且將uvscan ln到/usr/local/bin和.so文件ln到/usr/local/lib tar zxf qmail-scanner-1.20.gz cd qmail-scanner-1.20 配置qmail-scanner,路逕自定義,yourdomain替換為你的域名,詳細的參看./configure --help 程式碼:-------------------------------------------------------------------------------- ./configure --spooldir /mail/qmailscan --qmaildir /mail/qmail --bindir /mail/qmail/bin --qmail-queue-binary /mail/qmail/bin/qmail-queue.real --admin root --domain yourdomain --notify recips --local-domains yourdomain --silent-viruses auto --lang en_GB --debug no --unzip 1 --add-dscr-hdrs 0 --archive 0 --redundant no --log-details 0 --log-crypto 0 --fix-mime 1 --scanners "uvscan" --no-QQ-check 1 -------------------------------------------------------------------------------- 增加用戶和組程式碼:-------------------------------------------------------------------------------- pw groupadd qscand -g 65530 pw useradd qscand -g qscand -d /mail/qmailscan -s /nonexistent -u 65530 -------------------------------------------------------------------------------- 新增目錄程式碼:-------------------------------------------------------------------------------- mkdir -p /mail/qmailscan mkdir -p /mail/qmailscan/quarantine/tmp /mail/qmailscan/quarantine/cur /mail/qmailscan/quarantine/new mkdir -p /mail/qmailscan/working/tmp /mail/qmailscan/working/cur /mail/qmailscan/working/new mkdir -p /mail/qmailscan/archive/tmp /mail/qmailscan/archive/cur /mail/qmailscan/archive/new -------------------------------------------------------------------------------- 複製文件，設定權限程式碼:-------------------------------------------------------------------------------- cp quarantine-attachments.txt /mail/qmailscan/ chown -R qscand.qscand /mail/qmailscan/ cp qmail-scanner-queue.pl /mail/qmail/bin/qmail-scanner-queue.pl chown qscand.qscand /mail/qmail/bin/qmail-scanner-queue.pl chmod 4755 /mail/qmail/bin/qmail-scanner-queue.pl -------------------------------------------------------------------------------- 啟始化qmail-scan,替代qmail-queue先使用程式碼:-------------------------------------------------------------------------------- /mail/qmail/bin/qmail-scanner-queue.pl -h /mail/qmail/bin/qmail-scanner-queue.pl -z /mail/qmail/bin/qmail-scanner-queue.pl -g mv /mail/qmail/bin/qmail-queue /mail/qmail/bin/qmail-queue.real ln -s /mail/qmail/bin/qmail-scanner-queue.pl /mail/qmail/bin/qmail-scanner-queue -------------------------------------------------------------------------------- mcafee病毒庫自動更新指令碼update.sh, 放在uvscan目錄下面程式碼:-------------------------------------------------------------------------------- #!/bin/sh install_directory=`dirname $0` mkdir /tmp/dat-updates cd /tmp/dat-updates current_version=`$install_directory/uvscan --version \| grep "Virus data file" \| awk '{ print substr($4,2,4) }'` ftp "ftp://ftp.nai.com/pub/datfiles/english/dat-.tar" new_version=`echo dat-.tar \| awk '{ print substr($1,5,4) }'` if [ "$current_version" -ge "$new_version" ] then echo "No new .DATs available at this time" echo "Currently installed version: $current_version" echo "Version on FTP site: $new_version" else tar -xf dat-.tar for file in `tar -tf dat-.tar` do newfile=`echo $file \| tr [A-Z] [a-z]` mv -f ./$file "$install_directory/$newfile" done current_version=`$install_directory/uvscan --version \| grep "Virus data file" \| awk '{ print substr($4,2,4) }'` if [ ! "$current_version" -eq "$new_version" ] then echo "DAT file updates did not work correctly." echo "Please try manually." else echo "DAT file updates successful" echo "Currently installed version: $current_version" fi fi cd / rm -rf /tmp/dat-updates -------------------------------------------------------------------------------- chmod +x update.sh 做個crond每6小時更新一次程式碼:--------------------------------------------------------------------------------0 /6 * * /uvscan-path/update.sh qmail-scanner-queue.pl 也可以自己開啟編輯裡面的參數

	送花文章: 3, 收花文章: 1631 篇, 收花: 3205 次

相似的主題
主題	主題作者	討論區	回覆	最後發表
系統 - SREng常用操作說明（2.0 RC2）	psac	作業系統操作技術文件	27	2006-09-22 12:31 PM

Google 提供的廣告