免费注册 查看新帖 |

Chinaunix

  平台 论坛 博客 文库
最近访问板块 发新帖
查看: 1939 | 回复: 0
打印 上一主题 下一主题

[Mail] Postfix+Amavis-New+ClamAV不能隔离(删除)病毒邮件! [复制链接]

论坛徽章:
0
跳转到指定楼层
1 [收藏(0)] [报告]
发表于 2004-08-23 10:47 |只看该作者 |倒序浏览
我按照官方网站上的文档分别设置了Amavis-New和ClamAV,而且Amavis-New能够正确找到先启动的ClamAV,但是我发送测试邮件(附件是ClamAV自带的病毒测试特征代码打好的RAR文件包),服务器能够正常接受,但是不能按照我设置的参数Discard掉邮件,不知为什么?

附:邮件日志

Aug 23 08:39:46 linux dovecot: Dovecot starting up
Aug 23 08:39:53 linux amavis[1189]: starting.  amavisd at linux amavisd-new-20030616-p10, Unicode aware, LANG=en_US.UTF-8
Aug 23 08:39:53 linux amavis[1189]: Perl version               5.008003
Aug 23 08:39:53 linux amavis[1189]: Module Amavis::Conf        1.15
Aug 23 08:39:53 linux amavis[1189]: Module Archive::Tar        1.08
Aug 23 08:39:53 linux amavis[1189]: Module Archive::Zip        1.12
Aug 23 08:39:53 linux amavis[1189]: Module Compress::Zlib      1.33
Aug 23 08:39:53 linux amavis[1189]: Module Convert::TNEF       0.17
Aug 23 08:39:53 linux amavis[1189]: Module Convert::UUlib      1.03
Aug 23 08:39:53 linux amavis[1189]: Module DB_File             1.808
Aug 23 08:39:53 linux amavis[1189]: Module MIME::Entity        5.404
Aug 23 08:39:53 linux amavis[1189]: Module MIME:arser        5.406
Aug 23 08:39:53 linux amavis[1189]: Module MIME::Tools         5.411
Aug 23 08:39:53 linux amavis[1189]: Module Mail::Header        1.64
Aug 23 08:39:53 linux amavis[1189]: Module Mail::Internet      1.64
Aug 23 08:39:53 linux amavis[1189]: Module Mail::SpamAssassin  2.64
Aug 23 08:39:53 linux amavis[1189]: Module Net::Cmd            2.24
Aug 23 08:39:53 linux amavis[1189]: Module Net::SMTP           2.26
Aug 23 08:39:53 linux amavis[1189]: Module Net::Server         0.87
Aug 23 08:39:53 linux amavis[1189]: Module Time::HiRes         1.6
Aug 23 08:39:53 linux amavis[1189]: Module Unix::Syslog        0.99
Aug 23 08:39:53 linux amavis[1189]: Found myself: /usr/sbin/amavisd -c /etc/amavisd.conf
Aug 23 08:39:53 linux amavis[1189]: Lookup::SQL code       NOT loaded
Aug 23 08:39:53 linux amavis[1189]: Lookup::LDAP code      NOT loaded
Aug 23 08:39:53 linux amavis[1189]: AMCL-in protocol code  loaded
Aug 23 08:39:53 linux amavis[1189]: SMTP-in protocol code  loaded
Aug 23 08:39:53 linux amavis[1189]: ANTI-VIRUS code        loaded
Aug 23 08:39:53 linux amavis[1189]: ANTI-SPAM  code        loaded
Aug 23 08:39:53 linux amavis[1190]: Net::Server: Process Backgrounded
Aug 23 08:39:53 linux amavis[1190]: Net::Server: 2004/08/23-08:39:53 Amavis (type Net::Server:reForkSimple) starting! pid(1190)
Aug 23 08:39:54 linux amavis[1190]: Net::Server: Binding to UNIX socket file /var/amavis/amavisd.sock using SOCK_STREAM
Aug 23 08:39:54 linux amavis[1190]: Net::Server: Binding to TCP port 10024 on host 127.0.0.1
Aug 23 08:39:54 linux amavis[1190]: Net::Server: Setting gid to "500 500"
Aug 23 08:39:54 linux amavis[1190]: Net::Server: Setting uid to "501"
Aug 23 08:39:54 linux amavis[1190]: Found $file       at /usr/bin/file
Aug 23 08:39:54 linux amavis[1190]: No $arc,          not using it
Aug 23 08:39:54 linux amavis[1190]: Found $gzip       at /usr/bin/gzip
Aug 23 08:39:54 linux amavis[1190]: Found $bzip2      at /usr/bin/bzip2
Aug 23 08:39:54 linux amavis[1190]: No $lzop,         not using it
Aug 23 08:39:54 linux amavis[1190]: Found $lha        at /usr/bin/lha
Aug 23 08:39:54 linux amavis[1190]: No $unarj,        not using it
Aug 23 08:39:54 linux amavis[1190]: Found $uncompress at /usr/bin/gzip -d
Aug 23 08:39:54 linux amavis[1190]: No $unfreeze,     not using it
Aug 23 08:39:54 linux amavis[1190]: Found $unrar      at /usr/bin/unrar
Aug 23 08:39:54 linux amavis[1190]: No $zoo,          not using it
Aug 23 08:39:54 linux amavis[1190]: Found $cpio       at /bin/cpio
Aug 23 08:39:54 linux amavis[1190]: Found secondary av scanner Clam Antivirus - clamscan at /usr/bin/clamscan
Aug 23 08:39:54 linux amavis[1190]: SpamControl: initializing Mail::SpamAssassin
Aug 23 08:39:56 linux postfix/postfix-script: starting the Postfix mail system
Aug 23 08:39:56 linux postfix/master[1240]: daemon started -- version 2.0.18
Aug 23 08:39:57 linux amavis[1190]: SpamControl: done
Aug 23 08:53:43 linux postfix/smtpd[1368]: connect from unknown[1.9.5.6]
Aug 23 08:53:43 linux postfix/smtpd[1368]: 3745B1835A6: client=unknown[1.9.5.6]
Aug 23 08:53:43 linux postfix/cleanup[1370]: 3745B1835A6: message-id=<001e01c488ab$82ab5c30$fe64a8c0@R100>;
Aug 23 08:53:43 linux postfix/nqmgr[1244]: 3745B1835A6: from=<demo@demo.cn>;, size=4270, nrcpt=1 (queue active)
Aug 23 08:53:43 linux postfix/smtpd[1368]: disconnect from unknown[1.9.5.6]
Aug 23 08:53:43 linux amavis[1252]: (01252-01) ESMTP::10024 /var/amavis/amavis-20040823T085343-01252: <demo@demo.cn>; ->; <demo@linux.demo.cn>; Received: SIZE=4270 from linux.linux.demo.cn ([127.0.0.1]) by localhost (linux [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 01252-01 for <demo@linux.demo.cn>;; Mon, 23 Aug 2004 08:53:43 +0800 (CST)
Aug 23 08:53:43 linux amavis[1252]: (01252-01) Checking: <demo@demo.cn>; ->; <demo@linux.demo.cn>;
Aug 23 08:53:43 linux amavis[1252]: (01252-01) unrar returned status 9 (2304 )
Aug 23 08:53:43 linux amavis[1252]: (01252-01) WARN: all primary virus scanners failed, considering backups
Aug 23 08:53:45 linux amavis[1252]: (01252-01) spam_scan: hits=2.149 tests=HTML_50_60,HTML_MESSAGE,MIME_BASE64_NO_NAME,MIME_BASE64_TEXT
Aug 23 08:53:45 linux amavis[1252]: (01252-01) FWD via SMTP: [127.0.0.1]:10025 <demo@demo.cn>; ->; <demo@linux.demo.cn>;
Aug 23 08:53:45 linux postfix/smtpd[1381]: connect from linux[127.0.0.1]
Aug 23 08:53:45 linux postfix/smtpd[1381]: 3F06F1835A7: client=linux[127.0.0.1]
Aug 23 08:53:45 linux postfix/cleanup[1370]: 3F06F1835A7: message-id=<001e01c488ab$82ab5c30$fe64a8c0@R100>;
Aug 23 08:53:45 linux postfix/nqmgr[1244]: 3F06F1835A7: from=<demo@demo.cn>;, size=4716, nrcpt=1 (queue active)
Aug 23 08:53:45 linux postfix/smtpd[1381]: disconnect from linux[127.0.0.1]
Aug 23 08:53:45 linux amavis[1252]: (01252-01) Passed, <demo@demo.cn>; ->; <demo@linux.demo.cn>;, Message-ID: <001e01c488ab$82ab5c30$fe64a8c0@R100>;, Hits: 2.149
Aug 23 08:53:45 linux amavis[1252]: (01252-01) TIMING [total 2015 ms] - SMTP EHLO: 6 (0%), SMTP pre-MAIL: 1 (0%), mkdir tempdir: 1 (0%), create email.txt: 1 (0%), SMTP pre-DATA-flush: 8 (0%), SMTP DATA: 74 (4%), body hash: 2 (0%), mkdir parts: 2 (0%), mime_decode: 83 (4%), get-file-type: 84 (4%), get-file-type: 20 (1%), get-file-type: 10 (0%), decompose_part: 2 (0%), decompose_part: 0 (0%), decompose_part: 66 (3%), parts: 0 (0%), AV-scan-1: 1390 (69%), SA msg read: 5 (0%), SA parse: 4 (0%), SA check: 144 (7%), fwd-connect: 35 (2%), fwd-mail-from: 3 (0%), fwd-rcpt-to: 3 (0%), write-header: 8 (0%), fwd-data: 1 (0%), fwd-data-end: 42 (2%), fwd-rundown: 2 (0%), unlink-2-files: 14 (1%), rundown: 1 (0%)
Aug 23 08:53:45 linux postfix/smtp[1373]: 3745B1835A6: to=<demo@linux.demo.cn>;, relay=127.0.0.1[127.0.0.1], delay=2, status=sent (250 2.6.0 Ok, id=01252-01, from MTA: 250 Ok: queued as 3F06F1835A7)
Aug 23 08:53:45 linux postfix/local[1382]: 3F06F1835A7: to=<demo@linux.demo.cn>;, relay=local, delay=0, status=sent (mailbox)
您需要登录后才可以回帖 登录 | 注册

本版积分规则 发表回复

  

北京盛拓优讯信息技术有限公司. 版权所有 京ICP备16024965号-6 北京市公安局海淀分局网监中心备案编号:11010802020122 niuxiaotong@pcpop.com 17352615567
未成年举报专区
中国互联网协会会员  联系我们:huangweiwei@itpub.net
感谢所有关心和支持过ChinaUnix的朋友们 转载本站内容请注明原作者名及出处

清除 Cookies - ChinaUnix - Archiver - WAP - TOP