Exim+antivir+avmailgate

Announcements of packages that are now released.

Postby PHBC50 » Thu Oct 14, 2004 12:39 pm

Hello,
OK, here it is :
I have ported DAGOOB's packages "mail-suite" for FREESCO version 03x.
I sure hope it doesn't step on someone elses toes, but this really is a "mail suite" and I took it all as a whole .
That is why I am releasing it all together. I know some of this packages have already been ported by others to FREESCO v03x, but this three packages work as is only if they are installed together.It will not work if another version is previously installed.

This works OK for me but I cannot ensure you that it will on your configuration so BEWARE : these packages comes with NO WARRANTY of any kind and might destroy your installation if you don't really know what you're doing.
I will take no responsability for the installation of these packages on third party computers.

With that sayd,

I present you packages of exim, antivir and avmailgate :

These are beta packages and they should be installed in this view. You are encouraged to test them. Please do not install over existing packages, this won't work and you would be reporting problems that would mess up my mind.
Of course once installed this packages could work separately, but what would be the interest of this ? ;)

First you need to install antivir :
Code: Select all
pkg -i http://afpercu.hopto.org/packages/03x/antivir_2.1.2_phbc50

Antivir is a command line antivirus scanner. It is available as a demo mode and also as a
full version for personnal use.
For more information about antivir look <a href='http://www.hbedv.com/en/products/antivir_mailserver/index.html?&no_cache=1' target='_blank'>here</a>.
To get a license/key go <a href='http://www.hbedv.com/en/support/unix_private_registration/' target='_blank'>here</a>.

Once you have installed antivir configuration is done, there is nothing to do.
Antivir will be updated every day by default when you register.

Then install exim ( this will detect if you upgrade from my last version of exim and a backup of your configuration file is done ) :
Code: Select all
pkg -i http://afpercu.hopto.org/packages/03x/exim_4.20_phbc50

Exim is a mail transfer agent that handles mail for deliveries in various ways. It is highly configurable. See : <a href='http://www.exim.org' target='_blank'>http://www.exim.org</a>
This is a special version which is designed to work with the avmailgate package, you have to upgrade if you want to install avmailgate. It has no SSL support. Previous versions won't work.
I decided to keep the syslog facility in exim because it is usefull for debugging purpose, I have just deactivate the logging to syslog by adding to the main part of the exim config file :
Code: Select all
log_selector = -queue_run

if you want you can use this option to customize the logging, see <a href='http://www.exim.org/exim-html-4.20/doc/html/spec_44.html#SECT44.15' target='_blank'>here</a>.
If you don't want any logs at all then add this to the configure file :
Code: Select all
log_selector = -all


In exim, configure the package by editing /usr/local/exim/configure to suit your needs.
As is, the configuration is rather simple, but this will improve in the future ;-).

Then you can install avmailgate:
Code: Select all
pkg -i http://afpercu.hopto.org/packages/03x/avmailgate_2.0.1.5_phbc50

AVMAILGATE, IMPORTANT :
I have kept things the way it worked for FREESCO 0.2.7.
Look at Dagoob's post <a href='http://forums.freesco.org/support/index.php?act=ST&f=5&t=3297&hl=avmailgate+faq' target='_blank'>here</a> to understand how this works.

Understand this is an 'old version" of the package ( 2.1.5), I "stoled" the binary from the last Dagoob's package.
As the package has been very well and carefully written, porting was rather easy. All that had to be done was editing the different scipts that make exim and avmailgate work together, changing some variable default values and this would make all the scripts work as expected.:-)).

After installing avmailgate try to send a message :

Code: Select all
exim someone@somewhere.com

type your message
end with a single dot '.' on the last line then type enter.
Look at /var/messages, you should see something like :
Code: Select all
Oct 14 18:09:29 - exim[8277]: 2004-10-14 18:09:29 1CIA2a-00029V-Pc <=
webmaster@afpercu.hopto.org H=10.0.1.4 (mathieu) [10.0.1.4] P=smtp S=1325 id=002c01c4b210$adeb33f0$0100a8c0@mathieu
Oct 14 18:09:29 - avgated[8295]: connection from localhost
Oct 14 18:09:29 - avgated[8295]: spooled to 08295-46473F10
Oct 14 18:09:29 - avgatefwd[8296]: Message incoming/xf-08295-46473F10' scheduled for scanning now.
Oct 14 18:09:29 - avgatefwd[8296]: Virus Scanner will process message 'incoming/qf-08295-46473F10'.
Oct 14 18:09:30 - avgatefwd[8301]: Message outgoing/xf-08295-46473F10' scheduled for delivery now.
Oct 14 18:09:30 - avgated[8295]: connection to localhost closed
Oct 14 18:09:30 - exim[8293]: 2004-10-14 18:09:30 1CIA2a-00029V-Pc => m.cattin@afpercu.com R=avmailgate T=avmailgate H=127.0.0.1 [127.0.0.1]
Oct 14 18:09:30 - exim[8293]: 2004-10-14 18:09:30 1CIA2a-00029V-Pc Completed
Oct 14 18:09:31 - exim[8302]: 2004-10-14 18:09:31 1CIA2c-00029u-FG <=
webmaster@afpercu.hopto.org H=localhost [127.0.0.1] P=esmtp S=1599
id=002c01c4b210$adeb33f0$0100a8c0@mathieu
Oct 14 18:09:31 - avgatefwd[8301]: Message outgoing/qf-08295-46473F10' successfully forwarded.
Oct 14 18:09:32 - exim[8303]: 2004-10-14 18:09:32 1CIA2c-00029u-FG => m.cattin@afpercu.com R=dnslookup T=remote_smtp H=mx1.afpercu.com [62.193.203.6]
Oct 14 18:09:32 - exim[8303]: 2004-10-14 18:09:32 1CIA2c-00029u-FG Completed

This indicates that it works.

Try it with the <a href='http://www.eicar.org/anti_virus_test_file.htm' target='_blank'>Eicar anti_virus_test_file</a> if you want, you should see something like :
Code: Select all
Oct 15 05:55:08 - avgated[15980]: connection from localhost
Oct 15 05:55:08 - avgated[15980]: spooled to 15980-0D1E6547
Oct 15 05:55:09 - avgatefwd[15981]: Message 'incoming/xf-15980-0D1E6547' scheduled for scanning now.
Oct 15 05:55:09 - avgatefwd[15981]: Virus Scanner will process message 'incoming/qf-15980-0D1E6547'.
Oct 15 05:55:09 - avgated[15980]: connection to localhost closed
Oct 15 05:55:09 - exim[15978]: 2004-10-15 05:55:09 1CIL3P-00049h-8N => m.cattin@afpercu.com R=avmailgate T=avmailgate H=127.0.0.1 [127.0.0.1]
Oct 15 05:55:09 - exim[15978]: 2004-10-15 05:55:09 1CIL3P-00049h-8N Completed
Oct 15 05:55:10 - antivir[15983]: AntiVir ALERT: [Eicar-Test-Signature virus] /usr/local/antivir/tmp/av-15981-a15981/av-0 <<< Contains code of the Eicar-Test-Signature virus
Oct 15 05:55:10 - avgatefwd[15981]: Alert! the file "/usr/local/antivir/tmp/av-15981-a15981/av-0" contains "Eicar-Test-Signature" virus
Oct 15 05:55:10 - avgatefwd[15981]: Potential malicious code has been found - mail will be blocked.
Oct 15 05:55:10 - avgatefwd[3563]: child(15981) failed, exit status=0, signal=11


You now have a working mail scanner against viruses !

If things don't work the way expected, post your problem or email <a href='http://mailto:webmaster@afpercu.hopto.org' target='_blank'>me</a>. I'll try to help you the best I can.

Many thanks for the help of making these packages go to Lightning (for helping me with various things like the library dependencies, for making the package script), Dagoob ( what would it be without him ( nothing! ) !? ***Way To Go Men !), Thasaidon, and rbw.

Have fun ! :)
Best regards,
phbc50
The only way of discovering the limits of the possible is to venture a little way past them into the impossible. (Arthur C Clarke)
User avatar
PHBC50
Junior Advanced Member
 
Posts: 139
Joined: Thu Nov 21, 2002 8:59 pm
Location: France

Postby Thasaidon » Fri Oct 15, 2004 1:59 am

GREAT !

thanx,
I'm gonna give it a test-run asap :D
Experience shared, is experience gained.

Thasaidon's Freesco Page




Image
User avatar
Thasaidon
Advanced Member
 
Posts: 411
Joined: Tue Feb 05, 2002 9:38 am
Location: The Netherlands

Postby lince » Fri Oct 15, 2004 6:09 am

Thank you!!!!!!!!.
I was waiting for it for a long time. Going to test right now!.

Just two suggestions:
1) Is it possible to integrate also spamassasin package?. That would be great for full email checking delivery capabilities.

2) Somebody from freesco gurus can tell us when this package will become "official": I mean officially tested, accepted and mirrored in freescosoft.com?

Regards,
lince
User avatar
lince
Newbie
 
Posts: 4
Joined: Thu Jan 29, 2004 1:30 am
Location: Madrid, Spain

Postby Lightning » Fri Oct 15, 2004 1:27 pm

I mean officially tested, accepted and mirrored in freescosoft.com?

All that is required to be mirrored on FREESCOsoft is for the author to submit it and then for Howler to have time to get it posted.

As for "Official" the answer is probably never, for two reasons. The first is that there has never been a group of people willing to devote time to actually test packages. It has been attempted several times and failed each time. The second reason is that I downloaded this package and looked at it. I have not installed it but what I found was that it is still a re-hash of the same format that the original exim mail package followed. With links and various mods to force it to be compatible with the other existing binaries that were also adapted for 027 by Dagoob. This in it's self would not be quite so bad, except the entire mail package was sort of hacked into 027 the first time and lacked what most packages have, which was to be custom compiled for compatibility.

So as I think this package is an improvement over the previous 03x version, I do not think that it can/could ever become a "Official" version". What is going to be required is to have the entire mail suite recompiled with a custom directory structure so that the need to tweak and custom link directories is no longer required and so it is actually integrated into the existing system, rather than adapted.

No dis respect of phbc50 is intended by this post and an understanding of why he made this package compatible with previous versions is understood. I actually compiled exim 4.22 about six months ago so that it was integrated, however none of the other programs will work with it and I lacked the time/enthusiasm to remake everything. I also did not want to take responsibility for the package and support.
If you are afraid that you might make a mistake. The chances are high that you will never learn anything.
User avatar
Lightning
FREESCO GOD !!
 
Posts: 12081
Joined: Wed Nov 14, 2001 6:50 am
Location: Oregon, USA

Postby PHBC50 » Fri Oct 15, 2004 3:56 pm

Hello,
Well, no harm intended, no harm done. :)

All I can say is that it works for me and I thought it might be usefull to others.
The only way of discovering the limits of the possible is to venture a little way past them into the impossible. (Arthur C Clarke)
User avatar
PHBC50
Junior Advanced Member
 
Posts: 139
Joined: Thu Nov 21, 2002 8:59 pm
Location: France

Postby braulio » Mon Oct 18, 2004 9:29 am

very good job!

regards

braulio
User avatar
braulio
Newbie
 
Posts: 19
Joined: Mon Apr 14, 2003 8:51 am

Postby Peer » Thu Oct 21, 2004 11:40 am

Verry good, work's like charm. :lol:

Here are a few more testing site's :

<a href='http://www.gfi.com/emailsecuritytest/' target='_blank'>GFI.com</a> and
<a href='http://www.testvirus.org/' target='_blank'>Testvirus.org</a>

Thank u very much
--------------------------------------------------------------------<br>Gr. Peer<br><a href='http://peer.no-ip.org' target='_blank'>Peer's Freesco Site</a>
User avatar
Peer
Newbie
 
Posts: 19
Joined: Sat Jan 04, 2003 8:31 pm
Location: Mierlo, Netherlands

Postby The Mad Butcher » Thu Oct 21, 2004 4:36 pm

B)

I'm having problems with the package...
I keep getting:

Code: Select all
Oct 21 22:45:15 - exim[2781]: 2004-10-21 22:45:15 socket bind() to port 25 for address (any IPv4) failed: Address already in use: waiting before trying again
Oct 21 22:45:17 - exim[1014]: 2004-10-21 22:45:17 socket bind() to port 25 for address (any IPv4) failed: Address already in use: daemon abandoned

when i start freesco

and:

Code: Select all
Oct 21 23:18:46 - exim[5066]: 2004-10-21 23:18:46 1CKmCi-0001Ji-3v <= root@mydomain.org U=root P=local S=294
Oct 21 23:18:46 - avgated[5069]: connection from localhost
Oct 21 23:18:46 - avgated[5069]: spooled to 05069-78044DC2
Oct 21 23:18:46 - avgatefwd[5070]: Message 'incoming/xf-05069-78044DC2' scheduled for scanning now.
Oct 21 23:18:46 - avgatefwd[5070]: Virus Scanner will process message 'incoming/qf-05069-78044DC2'.
Oct 21 23:18:46 - avgated[5069]: connection to localhost closed
Oct 21 23:18:46 - exim[5067]: 2004-10-21 23:18:46 1CKmCi-0001Ji-3v => somemail@domain.org R=avmailgate T=avmailgate H=127.0.0.1 [127.0.0.1]
Oct 21 23:18:46 - exim[5067]: 2004-10-21 23:18:46 1CKmCi-0001Ji-3v Completed
Oct 21 23:18:47 - avgatefwd[5081]: Message 'outgoing/xf-05069-78044DC2' scheduled for delivery now.
Oct 21 23:18:47 - avgatefwd[5081]: connect() failed (Connection refused)
Oct 21 23:18:47 - avgatefwd[5081]: connection to host "localhost", port 28 failed
Oct 21 23:18:47 - avgatefwd[5081]: Message 'outgoing/qf-05069-78044DC2' could not be forwarded now. We'll retry later.

When i type

Code: Select all
exim somemail@domain.org
message
.


and:

Code: Select all
Oct 21 23:19:19 - kernel: release: sleep kernel stack corruption. Aiee

When i run

Code: Select all
exim -qqff


I also cannot get mail in outlook express; teapop is also having some problems..
Is this a problem related to exim/avmailgate or should i post it in the support forum? :confused:

TMB!

B)
<span style='color:red'>I'm not going through an odd phase, I really am odd.</span> :D
User avatar
The Mad Butcher
Newbie
 
Posts: 2
Joined: Sat Sep 06, 2003 9:55 am
Location: At Keyboard

Postby PHBC50 » Thu Oct 21, 2004 5:10 pm

Hello,
For some unknown reason that I am exploring, exim crashes when it starts at boot time, so what I suggest is to try to do an rc_exim restart and after that see if you still have problems. That might solve the
Code: Select all
Address already in use: waiting before trying again
problem. As for the kernel issue I have never experienced that...

Hope this helps,
CU
phbc50
The only way of discovering the limits of the possible is to venture a little way past them into the impossible. (Arthur C Clarke)
User avatar
PHBC50
Junior Advanced Member
 
Posts: 139
Joined: Thu Nov 21, 2002 8:59 pm
Location: France

Postby The Mad Butcher » Thu Oct 21, 2004 5:38 pm

B)

That did help.. (Although i tried that before)
Also reinstalling the maine-iac Teapop package helped with the pop3 retrieval..
And disabled my personal firewall rules

Somehow a lot of other problems where resolved now as well... :bored:

All i did was remove the teapop package and reinstall the standard package from maine-iac..
(and disabled my firewall rules... this might be the problem with port 26 and 28.. I'll look into that later)
Strange...
Ow, i did a rc_exim restart as well

Lets see if everything now works as it should..

Thanks !!

B)
<span style='color:red'>I'm not going through an odd phase, I really am odd.</span> :D
User avatar
The Mad Butcher
Newbie
 
Posts: 2
Joined: Sat Sep 06, 2003 9:55 am
Location: At Keyboard

Postby bbj » Wed Jan 26, 2005 4:07 pm

I have had this just recently as well.

and running an rc_exim restart seems to fix it.

I think the problem is related to the sequence in which the programs start up ( in the RC ) folder

What should be the correct startup sequence ?

Im thinking of creating a rcx.d like structure with links to the real rc files. Then the linked files get named eg S100rc_exim and S200rc_spamd, etc

That way the startup sequence can be preset instead of it running alphabetically down the list.

BBJ
We are dyslexia of BORG, fusistance is retile, your ass will be laminated
User avatar
bbj
Newbie
 
Posts: 18
Joined: Tue Jan 22, 2002 3:36 pm
Location: South Africa


Return to 3rd Party Package Release Announcements

Who is online

Users browsing this forum: No registered users and 5 guests

cron