The notes below are more for my benefit, but others may get some use out of it.
We use debian for our system, and are loosely based on the qmail setup over at http://qmail.jms1.net / http://qmailrocks.org
#ClamAV has some new features, so needs libcurses for stuff like clamdtop
apt-get install libncurses5-dev
cd /downloads
#get latest version
axel http://jaist.dl.sourceforge.net/sourceforge/clamav/clamav-0.95.tar.gz
tar -zxvf clamav-0.95.tar.gz
#We use /usr for db /etc for conf files
./configure –prefix=/usr –sysconfdir=/etc
make
#need to remove clam scanning from simcontrol or there will be bounces while we install due to lack of clamd
pico /var/qmail/control/simcontrol
clamav=no
#update qmail settings again
/var/qmail/bin/update-qmail #our own script…
#can now run make install, as its now safe…
make install
#stop the clamd service
cd /service
svc -d clamd clamd/log
#run clamd manually to check for errors
clamd
#if warning about /var/run/clamd.pid can’t be created, make a /var/run/clamd folder
mkdir /var/run/clamav
chown clamav.clamav /var/run/clamav
pico /etc/clamd
#change pid file location
PidFile /var/run/clamav/clamd.pid
#save & try again
clamd
#check logs if ok / not, troubleshoot yourself…
#restart service
cd /service
svc -u clamd clamd/log
#check everything is running ok – should see runtimes of > 2 seconds…
svstat * */log
#Re-enable virus scanning.
pico /var/qmail/control/simcontrol
clam=yes
/var/qmail/bin/update-qmail
#check mail is working ok – wait for a non spam / virus message to process and give clamd status 0 (may take a while!)
tail /var/log/qmail/qmail-smtpd/current
#install SCAMP – See http://www.sanesecurity.com (Additional phishing / trojan protection db’s for clamav)
cd /downloads
wget ftp://seibercom.net/pub/scamp.tar.gz
tar -xzvf scamp.tar.gz
cd scamp-5.1/
cp scamp.sh /usr/local/bin
#run once to configure
scamp.sh
#run again to do gpg key generation
scamp.sh
#add to crontab
crontab -e
#add scamp
#Update Clam Alternate Scanner DB – Phishing / Trojan etc
0 */4 * * * /usr/local/bin/scamp.sh -L -q -R
#done. Suggest watch logs for a while, and make sure things are running smoothly.
tail /var/log/qmail/qmail-smtpd/current -F
Do you like this article? Share It!
Archives
- November 2024
- November 2019
- October 2019
- August 2019
- April 2019
- February 2017
- September 2016
- June 2016
- May 2016
- September 2015
- August 2015
- June 2015
- April 2015
- December 2014
- October 2014
- September 2014
- July 2014
- June 2014
- April 2014
- October 2013
- July 2013
- May 2013
- April 2013
- March 2013
- January 2013
- December 2012
- October 2012
- August 2012
- July 2012
- June 2012
- May 2012
- April 2012
- March 2012
- December 2011
- November 2011
- October 2011
- September 2011
- July 2011
- May 2011
- April 2011
- March 2011
- February 2011
- January 2011
- December 2010
- November 2010
- October 2010
- September 2010
- August 2010
- July 2010
- June 2010
- May 2010
- April 2010
- March 2010
- February 2010
- January 2010
- December 2009
- November 2009
- October 2009
- May 2009
- April 2009
- March 2009
- February 2009
- January 2009
- December 2008
- November 2008
- October 2008
- September 2008
Categories
- Apple
- Arcade Machines
- Badges
- BMW
- China Related
- Cool Hunting
- Exploits
- Firmware
- Food
- General Talk
- government
- IP Cam
- iPhone
- Lasers
- legislation
- MODx
- MySQL
- notice
- qmail
- requirements
- Reviews
- Service Issues
- Tao Bao
- Technical Mumbo Jumbo
- Things that will get me censored
- Travel
- Uncategorized
- Useful Info
