![\"securepostfix01\"](\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2013\/06\/securepostfix01.jpg\" "\\"securepostfix01\\"")
<\/p>\n<\/p>\n
To secure\u00a0Postfix mail server<\/a> from spam and viruses<\/strong>, software like Amavisd, ClamAV and SpamAssassin can be a good solution.<\/p>\n The working concept<\/strong> is pretty easy: Amavisd accepts mail from Postfix (MTA), pass it to ClamAV and SpamAssassin to check for spam and viruses and then return the mail back to Postfix for delivery.<\/p>\n <\/p>\n <\/p>\n <\/p>\n Once configured the RPMforge repository in the system, install all the necessary packages<\/strong> using the yum<\/em> command.<\/p>\n # yum install amavisd-new clamav clamav-devel clamd spamassassin<\/span><\/p>\n <\/p>\n Edit the configuration file \/etc\/clamd.conf<\/em> and set ClamAV to communicate with Amavisd-new using a local UNIX socket<\/strong> rather than TCPSocket<\/strong> by commenting the TCPSocket 3310<\/strong><\/span> parameter.<\/p>\n # vi \/etc\/clamd.conf<\/span><\/p>\n <\/p>\n Edit the configuration file \/etc\/amavisd\/amavisd.conf<\/em> and remove, if needed, the comment (#) to disable spam or virus checking<\/strong>.<\/p>\n Set the domain and hostname<\/strong> of the network environment.<\/p>\n <\/p>\n Edit the configuration file \/etc\/postfix\/master.cf<\/em>\u00a0 to tell Postfix to pass mail to Amasvid-new for filtering<\/strong>.<\/p>\n # vi \/etc\/postfix\/master.cf<\/span><\/p>\n Edit the file \/etc\/postfix\/main.cf<\/em> and enable message filtering<\/strong> in Postfix adding the line:<\/p>\n # vi \/etc\/postfix\/main.cf<\/span><\/p>\n Reload<\/strong> Postfix to get new parameters.<\/p>\n # service postfix reload<\/span><\/p>\n Enable Amavisd and ClamAV services to start during system boot<\/strong>.<\/p>\n # chkconfig amavisd on Start ClamAV and Amavisd services<\/strong>. The SpamAssassinservice, which starts spamd, can be set to off as Amavisd-new doesn't actually use the SpamAssassin daemon<\/strong> (spamd) but rather loads SpamAssassin as a module.<\/p>\n # service clamd start Because ClamAV database signature may be outdated, you can manually update<\/strong> by using the command freshclam<\/em>.<\/p>\n # \/usr\/bin\/freshclam<\/span><\/p>\n The mail server is now protected<\/strong> against spam and viruses.<\/p>\n To secure\u00a0Postfix mail server from spam and viruses, software like Amavisd, ClamAV and SpamAssassin can be a good solution. The working concept is pretty easy: Amavisd accepts mail from Postfix (MTA), pass it to ClamAV and SpamAssassin to check for spam and viruses and then return the mail back to Postfix for delivery.<\/p>\n","protected":false},"author":3,"featured_media":7141,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"rop_custom_images_group":[],"rop_custom_messages_group":[],"rop_publish_now":"initial","rop_publish_now_accounts":{"linkedin_93tdZWzMZc_93tdZWzMZc":"","facebook_2879994398731222_17841400390232720":"","twitter_113568041_113568041":"","mastodon_115463926174894442_115463926174894442":""},"rop_publish_now_history":[],"rop_publish_now_status":"pending","footnotes":""},"categories":[534],"tags":[615,616,619,642,2141],"class_list":["post-7154","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-messaging-en","tag-amavisd-en","tag-clamav-en","tag-postfix-en","tag-spam-en","tag-spamassassin-en","has_thumb"],"_links":{"self":[{"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/posts\/7154","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/comments?post=7154"}],"version-history":[{"count":0,"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/posts\/7154\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/media\/7141"}],"wp:attachment":[{"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/media?parent=7154"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/categories?post=7154"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/tags?post=7154"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}![\"securepostfix02\"](\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2013\/06\/securepostfix02.jpg\" "\\"securepostfix02\\"")
<\/p>\nPrerequisites<\/h2>\n
\n
Install packages<\/h2>\n
![\"securepostfix03\"](\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2013\/06\/securepostfix03.jpg\" "\\"securepostfix03\\"")
<\/p>\nConfigure ClamAV<\/h2>\n
![\"securepostfix04\"](\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2013\/06\/securepostfix04.jpg\" "\\"securepostfix04\\"")
<\/p>\nConfigure Amavisd-new<\/h2>\n
# COMMONLY ADJUSTED SETTINGS:\r\n# @bypass_virus_checks_maps = (1); # controls running of anti-virus code\r\n # @bypass_spam_checks_maps = (1); # controls running of anti-spam code\r\n # $bypass_decode_parts = 1; # controls running of decoders&dearchivers<\/pre>\n
![\"securepostfix05\"](\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2013\/06\/securepostfix05.jpg\" "\\"securepostfix05\\"")
<\/p>\n$mydomain = 'domain.com';<\/pre>\n
![\"securepostfix06\"](\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2013\/06\/securepostfix06.jpg\" "\\"securepostfix06\\"")
<\/p>\n$myhostname = 'mail.domain.com';<\/pre>\n
![\"securepostfix07\"](\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2013\/06\/securepostfix07.jpg\" "\\"securepostfix07\\"")
<\/p>\nConfigure Postfix<\/h2>\n
amavisfeed unix\u00a0\u00a0\u00a0 -\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 -\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 -\u00a0\u00a0\u00a0\u00a0\u00a0 2\u00a0\u00a0\u00a0\u00a0 lmtp\r\n -o lmtp_data_done_timeout=1200\r\n -o lmtp_send_xforward_command=yes\r\n -o disable_dns_lookups=yes\r\n -o max_use=20\r\n127.0.0.1:10025 inet n\u00a0\u00a0\u00a0 -\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 -\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 -\u00a0\u00a0\u00a0\u00a0 smtpd\r\n -o content_filter=\r\n -o smtpd_delay_reject=no\r\n -o smtpd_client_restrictions=permit_mynetworks,reject\r\n -o smtpd_helo_restrictions=\r\n -o smtpd_sender_restrictions=\r\n -o smtpd_recipient_restrictions=permit_mynetworks,reject\r\n -o smtpd_data_restrictions=reject_unauth_pipelining\r\n -o smtpd_end_of_data_restrictions=\r\n -o smtpd_restriction_classes=\r\n -o mynetworks=127.0.0.0\/8\r\n -o smtpd_error_sleep_time=0\r\n -o smtpd_soft_error_limit=1001\r\n -o smtpd_hard_error_limit=1000\r\n -o smtpd_client_connection_count_limit=0\r\n -o smtpd_client_connection_rate_limit=0\r\n -o receive_override_options=no_header_body_checks,no_unknown_recipient_checks,\r\n no_milters,no_address_mappings\r\n -o local_header_rewrite_clients=\r\n -o smtpd_milters=\r\n -o local_recipient_maps=\r\n -o relay_recipient_maps=<\/pre>\n
![\"securepostfix08\"](\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2013\/06\/securepostfix08.jpg\" "\\"securepostfix08\\"")
<\/p>\n# use amavisd as filter on port 10024\r\ncontent_filter=amavisfeed:[127.0.0.1]:10024<\/pre>\n
![\"securepostfix09\"](\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2013\/06\/securepostfix09.jpg\" "\\"securepostfix09\\"")
<\/p>\n![\"securepostfix10\"](\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2013\/06\/securepostfix10.jpg\" "\\"securepostfix10\\"")
<\/p>\n
\n# chkconfig clamd on<\/span><\/p>\n![\"securepostfix11\"](\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2013\/06\/securepostfix11.jpg\" "\\"securepostfix11\\"")
<\/p>\n
\n# service amavisd start<\/span><\/p>\n![\"securepostfix12\"](\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2013\/06\/securepostfix12.jpg\" "\\"securepostfix12\\"")
<\/p>\n![\"securepostfix13\"](\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2013\/06\/securepostfix13.jpg\" "\\"securepostfix13\\"")
<\/p>\n![\"\"](\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/images\/firma.jpg\" "\\"\\"")
<\/p>\n","protected":false},"excerpt":{"rendered":"