|
I can only second that.
It is very easy to set up and amavid-new already ties into SpamAssassin so that’s takes care of Spam as well. amavisd-new already has a list of attachments you can block and you can add or remove to/from that list very easily. Notification emails are also configured via amavid-new.
If you are going to configure spam filtering as well, consider installing Razor/DCC/Pyzor as well to aid SpamAssasin.
ClamAV from watching the logs updates daily if not more often. http://news.gmane.org/gmane.comp.security.virus.clamav.virusdb
Offsite notification for infections is pretty much useless these days, the infected email hardly ever originates from the actual person owning the mailbox.
http://www.ijs.si/software/amavisd/ - Amavid site http://www.postfix.org/documentation.html - postfix docs http://www.clamav.net – clamav
As a sample of files I block by default (pipe separated):
vbs|pif|scr|bat|com|exe|dll|ade|adp|bas|bat|chm|cmd|com|cpl|crt|exe|hlp|hta|inf|ins|isp|js|jse|lnk|mdb|mde|msc|msi|msp|mst|pcd|pif|reg|scr|sct|shs|shb|vb|vbe|wsc|wsf|wsh
All my infected emails are quarantined and the receiving user in my domain is sent a notification, should there be a case where the email actually contains content of value it is easy enough to retrieve it from the quarantine location.
-Tobias
-----Original Message-----
One of the solution :
postfix+amavisdnew+clamav.
I just built a new box like that this week-end. It works quite well.
Cheers,
Cyril
|
-- redhat-list mailing list unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe https://www.redhat.com/mailman/listinfo/redhat-list
