Mailscanner Mailwatch on Debian

Under Construction

  1. Install Debian Testing without any package
  2. Packages à installer :
    • linuxlogo (just to have a nice Debian logo at boot ;-) )
    • elinks (useful console web browser which supports auth)
    • gpm (copy / paste in console mode)
    • postfix
    • make
    • ssh
    • mailscanner
    • mysql-server
    • clamav
    • spamassassin
    • apache2
    • php5
    • php5-gd
    • libapache2-mod-php5
    • php5-mysql
    • dcc-client (nécessite le port 6277/UDP en sortie et autoriser les paquet avec comme port source le 6277/UDP !)
      OR razor2 (nécessite le port 2703/TCP en sortie)
      OR pyzor (nécessite le port 24441/UDP ouvert en entrée et en sortie !)
      I prefer dcc-client
    • libnet-ident-perl
    • libnet-dns-perl
    • libmail-spf-query-perl
    • libarchive-tar-perl
    • libio-socket-ssl-perl
    • libio-socket-inet6-perl
    • libio-zlib-perl
    • libwww-perl
    • Download and install IP-Country
  3. Pour avoir la dernière version de clamav , ajouter la ligne suivante à /etc/apt/sources.lst (source) :stable / sarge

    deb http://ftp2.de.debian.org/debian-volatile sarge/volatile main

    testing / etch :

    deb http://secure-testing.debian.net/debian-secure-testing etch/security-updates main contrib non-free

    et ensuite faire

    # aptitude update
    # aptitude install clamav

  4. Très bon HOWTO sur debian + MailScanner : http://www.debian-administration.org/articles/172
  5. Download and Install (wiki) Mailwatch Interface
    NB : Bug MailWatch DBD-Mysql > 2.8 : Solution ICI
  6. Pour que le release à partir de Mailwatch ne soit pas à nouveau bloqué : Mailwatch FAQ
  7. Pour que le postfix vérifie que le récipient existe bien :

    8. smtpd_recipient_restrictions= permit_mynetworks,reject_unauth_destination,
    reject_unknown_recipient_domain,reject_unverified_recipient

  8. spam.assassin.prefs.conf : Read comments and modify your organisation name.
  9. Bayes system wide
    Create the ‘new’ bayes directory, make the directory owned by the same group as the web server user and make the directory setgid: # mkdir /etc/MailScanner/bayes
    # chown root:www-data /etc/MailScanner/bayes
    # chmod g+rws /etc/MailScanner/bayes

    Edit /etc/MailScanner/spam.assassin.prefs.conf and set:

    bayes_path /etc/MailScanner/bayes/bayes
    bayes_file_mode 0770
    bayes_auto_learn_threshold_spam 10.0 (more info on this setting here)

    Re-Sync your Bayesian file :

    # sa-learn -–sync –p /etc/MailScanner/spam.assassin.prefs.conf

  10. Créer un lien symbolique : /etc/mail/spamassassin/mailscanner.cf -> /etc/MailScanner/spam.assassin.prefs.conf# ln -s /etc/MailScanner/spam.assassin.prefs.conf /etc/mail/spamassassin/mailscanner.cf
  11. DCC : Activer le plugin dans /etc/spamassassin/v310.pre et tester le fonctionnement de dcc
    # cdcc info
  12. Remove inline signature from clean messages :Modifiy Sign Clean Messages = no in /etc/MailScanner/MailScanner.conf
  13. Fine tune SpamAssassin scores in /etc/spamassassin/local.cf (default scores are stored in /usr/share/spamassassin/50_scores.cf)
Comment (RSS)  |  Trackback

Leave a comment

You must be logged in to post a comment.