From owner-freebsd-questions@FreeBSD.ORG Tue May 17 15:18:33 2005 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id EF27C16A4CE for ; Tue, 17 May 2005 15:18:33 +0000 (GMT) Received: from mail.goinet.com (mail.goinet.com [208.207.72.15]) by mx1.FreeBSD.org (Postfix) with ESMTP id 715D343DAA for ; Tue, 17 May 2005 15:18:33 +0000 (GMT) (envelope-from tshadwick@goinet.com) Received: from mail.goinet.com (localhost.goinet.com [127.0.0.1]) by mail.goinet.com (8.13.1/8.13.1) with ESMTP id j4HFIISb009246 for ; Tue, 17 May 2005 10:18:19 -0500 (CDT) (envelope-from tshadwick@goinet.com) Received: from localhost (tshadwick@localhost)j4HFIGTR009228 for ; Tue, 17 May 2005 10:18:16 -0500 (CDT) (envelope-from tshadwick@goinet.com) X-Authentication-Warning: mail.goinet.com: tshadwick owned process doing -bs Date: Tue, 17 May 2005 10:18:16 -0500 (CDT) From: Tony Shadwick To: freebsd-questions@freebsd.org In-Reply-To: <20050517095622.K26182@mail.goinet.com> Message-ID: <20050517101757.O26182@mail.goinet.com> References: <000d01c55ae9$9b3d68e0$3400a8c0@visionpayments.com> <20050517084102.T84252@wonkity.com> <20050517095622.K26182@mail.goinet.com> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed X-Virus-Scanned: ClamAV version 0.85.1, clamav-milter version 0.85 on mail.goinet.com X-Virus-Status: Clean Subject: RE: Spam/AV filtering X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 17 May 2005 15:18:34 -0000 Oops, that should be security/clamav. Where my mind is this morning... On Tue, 17 May 2005, Tony Shadwick wrote: > I'm going to butt my nose in where it doesn't belong and insert my opinion > here. :) > > Here's the setup we run, and it works incredibly well. > > Sendmail > mail/p5-Mail-SpamAssassin > mail/spamass-milter > mail/spamass-rules > mail/spamass-rules_du_jour > sysutils/clamav (built with miltering) > > Add to your .mc file: > INPUT_MAIL_FILTER(`clmilter',`S=local:/var/run/clamav/clmilter.sock, F=, > T=S:4m;R:4m') > INPUT_MAIL_FILTER(`spamassassin', `S=local:/var/run/spamass-milter.sock, F=, > T=C:15m;S:4m;R:4m;E:10m') > > crontab nightly > /usr/local/bin/rules_du_jour > > Make sure your ports tree is cron'ed to update regularly, have the freshclam > daemon running, and I'd strong suggest subscribing to the RSS feed at > http://www.freshports.org/sysutils/clamav > > Just my 2 cents. ;) > > On Tue, 17 May 2005, Warren Block wrote: > >> On Tue, 17 May 2005, Charles Lamb wrote: >> >>> Would I want to enable milter with clamav? >> >> Depending on your needs, maybe. The clamav-milter lets sendmail reject >> mail containing viruses immediately, rather than having to receive them and >> then filter them later. >> >> You should also investigate greylisting, which has very little downside and >> is the most effective antispam measure I've seen yet. >> >> Here's something I wrote on that a while back. It needs to be updated, but >> it should give an idea: >> >> http://www.wonkity.com/~wblock/greylist.pdf >> >> The default delay introduced by milter-greylist is 30 minutes. From what >> I've seen in log files, this could probably be reduced to even five minutes >> and still be effective. Most spamware and viruses don't retry even once. >> >> -Warren Block * Rapid City, South Dakota USA >> _______________________________________________ >> freebsd-questions@freebsd.org mailing list >> http://lists.freebsd.org/mailman/listinfo/freebsd-questions >> To unsubscribe, send any mail to >> "freebsd-questions-unsubscribe@freebsd.org" >> > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" >