From owner-freebsd-questions@FreeBSD.ORG Wed Aug 3 21:15:55 2005 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4962616A41F for ; Wed, 3 Aug 2005 21:15:55 +0000 (GMT) (envelope-from mw@theatre.sax.de) Received: from sax.sax.de (sax.sax.de [193.175.26.33]) by mx1.FreeBSD.org (Postfix) with ESMTP id 926E143D46 for ; Wed, 3 Aug 2005 21:15:54 +0000 (GMT) (envelope-from mw@theatre.sax.de) Received: from sax.sax.de (localhost [127.0.0.1]) by sax.sax.de (8.12.10/8.12.10) with ESMTP id j73LFqQO065056 for ; Wed, 3 Aug 2005 23:15:52 +0200 (CEST) (envelope-from mw@theatre.sax.de) Received: (from uucp@localhost) by sax.sax.de (8.12.10/8.12.10/Submit) with UUCP id j73LFq3Q065055 for freebsd-questions@freebsd.org; Wed, 3 Aug 2005 23:15:52 +0200 (CEST) (envelope-from mw@theatre.sax.de) Received: from theatre.sax.de (mw@localhost [127.0.0.1]) by theatre.sax.de (8.13.3/8.13.3) with ESMTP id j73LCN8R097540 for ; Wed, 3 Aug 2005 23:12:24 +0200 (CEST) (envelope-from mw@theatre.sax.de) Received: (from mw@localhost) by theatre.sax.de (8.13.3/8.13.3/Submit) id j73LCNac097539 for freebsd-questions@freebsd.org; Wed, 3 Aug 2005 23:12:23 +0200 (CEST) (envelope-from mw) Date: Wed, 3 Aug 2005 23:12:23 +0200 From: Martin Welk To: freebsd-questions@freebsd.org Message-ID: <20050803211223.GB97146@theatre.sax.de> References: <20050803085535.N85321@dualman.cableone.net> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="xo44VMWPx7vlQ2+2" Content-Disposition: inline In-Reply-To: <20050803085535.N85321@dualman.cableone.net> X-GPG-Fingerprint: A68A 4D93 9F68 5FF4 6479 31C9 BE63 C062 1622 A53B User-Agent: Mutt/1.5.9i X-AntiVirus: checked by AntiVir Milter (version: 1.1.0-7; AVE: 6.31.1.0; VDF: 6.31.1.54; host: theatre.sax.de) Subject: Re: antivir-milter question X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 03 Aug 2005 21:15:55 -0000 --xo44VMWPx7vlQ2+2 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Wed, Aug 03, 2005 at 09:01:51AM -0500, Denny White wrote: > I've read the docs on antivir-milter, installed it, > set it up to verify downloaded updates with gpg, > tested it to see if it's checking mail with eicar, > & everything's working fine. Only thing is, I'd > like it to show in my messages that they've been > checked for viruses & I can't seem to get it do > that. I know that the AddXHeader setting only works > in commercial version, but it says if you set the > ModifySubject to YES that it'll show up, as I > understand it, appended to the subject. I did that > & restarted it but still no notice. Any ideas/help > appreciated. > Denny White Hm, I'm using the personal version of antivir-milter, installed it just a few days ago - and for every checked mail, it puts a header like this in: X-AntiVirus: checked by AntiVir Milter (version: 1.1.0-7; AVE: 6.31.1.0; VDF: 6.31.1.54; host: theatre.sax.de) I suspect that something else is wrong. Does your sendmail delegate the mail to antivir-milter? Is it running? It should write some message into your /var/log/mailog, here's an example. Startup: ug 3 17:20:05 theatre avmilter[16541]: listening on: inet:3333@localhost Aug 3 17:20:06 theatre avmilter[16541]: engine version: 6.31.1.0 Aug 3 17:20:06 theatre avmilter[16541]: vdf version: 6.31.1.54 Aug 3 17:20:06 theatre avmilter[16541]: addressfilter not active Aug 3 17:20:06 theatre avmilter[16541]: extension blocking is disabled Aug 3 17:20:06 theatre avmilter[16541]: running in private mode Aug 3 17:20:40 theatre sendmail[16570]: j73FKeek016570: Later: Aug 3 17:20:41 theatre sm-mta[16579]: j73FKfm7016579: Milter add: header: X-AntiVirus: checked by AntiVir Milter (version: 1.1.0-7; AVE: 6.31 =2E1.0; VDF: 6.31.1.54; host: theatre.sax.de) I didn't do anything except following the installation instructions, that means, I've put the required m4 macro string into my mc file and rebuilt the sendmail.cf. From that on, it was working instantly like a charm Oh yes, and with the EICAR test signature it generates an alert mail to the postmaster and puts the file into the rejected files directory (for my installation, /var/spool/avmilter/rejected). The only thing I had to change was the path to sendmail, in /etc/avmilter.conf it isn't set and the default points to /usr/lib/sendmail - on FreeBSD that's /usr/sbin/sendmail. Regards, Martin --=20 ,,Oh, there's a lot of opportunities, if you're knowing to take them, you know, there's a lot of opportunities, if there aren't you can make them, make or break them!'' (Tennant/Lowe) --xo44VMWPx7vlQ2+2 Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (FreeBSD) iD8DBQFC8TM27qJ8ASIcjWQRAoadAJwICpN5k154SRr89LF5ElqNUWrDmACfZZEO 9kWd8rzizg1tvZkZFnCiSnU= =+GMC -----END PGP SIGNATURE----- --xo44VMWPx7vlQ2+2--