antivir-milter question

Martin Welk mw at theatre.sax.de
Wed Aug 3 21:15:55 GMT 2005 

On Wed, Aug 03, 2005 at 09:01:51AM -0500, Denny White wrote:

> I've read the docs on antivir-milter, installed it,
> set it up to verify downloaded updates with gpg,
> tested it to see if it's checking mail with eicar,
> & everything's working fine. Only thing is, I'd
> like it to show in my messages that they've been
> checked for viruses & I can't seem to get it do
> that. I know that the AddXHeader setting only works
> in commercial version, but it says if you set the
> ModifySubject to YES that it'll show up, as I
> understand it, appended to the subject. I did that
> & restarted it but still no notice. Any ideas/help
> appreciated.
> Denny White

Hm, I'm using the personal version of antivir-milter, installed it just a
few days ago - and for every checked mail, it puts a header like this in:
X-AntiVirus: checked by AntiVir Milter (version: 1.1.0-7; AVE: 6.31.1.0;
VDF: 6.31.1.54; host: theatre.sax.de)

I suspect that something else is wrong. Does your sendmail delegate the
mail to antivir-milter? Is it running? It should write some message into
your /var/log/mailog, here's an example.

Startup:

ug  3 17:20:05 theatre avmilter[16541]: listening on: inet:3333 at localhost
Aug  3 17:20:06 theatre avmilter[16541]: engine version: 6.31.1.0
Aug  3 17:20:06 theatre avmilter[16541]: vdf version: 6.31.1.54
Aug  3 17:20:06 theatre avmilter[16541]: addressfilter not active
Aug  3 17:20:06 theatre avmilter[16541]: extension blocking is disabled
Aug  3 17:20:06 theatre avmilter[16541]: running in private mode
Aug  3 17:20:40 theatre sendmail[16570]: j73FKeek016570:

Later:

Aug  3 17:20:41 theatre sm-mta[16579]: j73FKfm7016579: Milter add: header:
X-AntiVirus: checked by AntiVir Milter (version: 1.1.0-7; AVE: 6.31
.1.0; VDF: 6.31.1.54; host: theatre.sax.de)

I didn't do anything except following the installation instructions, that
means, I've put the required m4 macro string into my mc file and rebuilt
the sendmail.cf. From that on, it was working instantly like a charm

Oh yes, and with the EICAR test signature it generates an alert mail to the
postmaster and puts the file into the rejected files directory (for my
installation, /var/spool/avmilter/rejected). The only thing I had to change
was the path to sendmail, in /etc/avmilter.conf it isn't set and the
default points to /usr/lib/sendmail - on FreeBSD that's /usr/sbin/sendmail.

Regards,
	Martin

-- 
      ,,Oh, there's a lot of opportunities, if you're knowing to take them,
                  you know, there's a lot of opportunities, if there aren't
                    you can make them, make or break them!'' (Tennant/Lowe)
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-questions/attachments/20050803/84b4557c/attachment.bin

More information about the freebsd-questions mailing list