Приветствую!
Прочитайте, может сходу решается?
Ситуация такая - не отсылаются отчеты о вирусах после перезагрузки сервака! :(
(shutdown -r now)
Вот maillog после перезагрузки:
---
Jun 30 20:25:32 mail postfix/smtpd[514]: connect from admin.avtoprime.spb.ru[192.168.0.2]
Jun 30 20:25:32 mail postfix/smtpd[514]: 311F446D01B: client=admin.avtoprime.spb.ru[192.168.0.2]
Jun 30 20:25:32 mail postfix/cleanup[358]: 311F446D01B: message-id=<534996147.20050630201859@avtoprime.spb.ru>
Jun 30 20:25:32 mail postfix/qmgr[347]: 311F446D01B: from=<spider@avtoprime.spb.ru>, size=2641, nrcpt=1 (queue active)
Jun 30 20:25:32 mail postfix/smtpd[514]: disconnect from admin.avtoprime.spb.ru[192.168.0.2]
Jun 30 20:25:36 mail postfix/pipe[515]: 311F446D01B: to=<ipmaster@mail.ru>, relay=spamfilter, delay=4, status=sent (dummy)
Jun 30 20:25:36 mail postfix/qmgr[347]: 311F446D01B: removed
Jun 30 20:25:36 mail postfix/pickup[346]: A62B446D03F: uid=1047 from=<spider@avtoprime.spb.ru>
Jun 30 20:25:36 mail postfix/cleanup[356]: A62B446D03F: message-id=<534996147.20050630201859@avtoprime.spb.ru>
Jun 30 20:25:36 mail postfix/qmgr[347]: A62B446D03F: from=<spider@avtoprime.spb.ru>, size=2968, nrcpt=1 (queue active)
Jun 30 20:25:36 mail clamsmtpd: 100003: accepted connection from: 127.0.0.1
Jun 30 20:25:36 mail postfix/smtpd[362]: connect from localhost[127.0.0.1]
Jun 30 20:25:36 mail postfix/smtpd[362]: AB54146D048: client=localhost[127.0.0.1]
Jun 30 20:25:36 mail postfix/smtp[360]: A62B446D03F: to=<ipmaster@mail.ru>, relay=127.0.0.1[127.0.0.1], delay=0, status=sent (250 Virus Detected; Discarded Email)
Jun 30 20:25:36 mail clamsmtpd: 100003: from=spider@avtoprime.spb.ru, to=ipmaster@mail.ru, status=VIRUS:Eicar-Test-Signature
Jun 30 20:25:36 mail postfix/qmgr[347]: A62B446D03F: removed
Jun 30 20:25:36 mail postfix/smtpd[362]: disconnect from localhost[127.0.0.1]
---
После этого безобразия перезапускаю clamsmtpd
(clamsmtpd.sh restart)
И отчеты начинают доставляться...
Вот maillog после рестарта clamsmtpd:
---
Jun 30 20:20:37 mail postfix/smtpd[2112]: connect from admin.avtoprime.spb.ru[192.168.0.2]
Jun 30 20:20:37 mail postfix/smtpd[2112]: 0BE6046D12F: client=admin.avtoprime.spb.ru[192.168.0.2]
Jun 30 20:20:37 mail postfix/cleanup[2115]: 0BE6046D12F: message-id=<534996147.20050630201859@avtoprime.spb.ru>
Jun 30 20:20:37 mail postfix/qmgr[2047]: 0BE6046D12F: from=<spider@avtoprime.spb.ru>, size=2641, nrcpt=1 (queue active)
Jun 30 20:20:37 mail postfix/smtpd[2112]: disconnect from admin.avtoprime.spb.ru[192.168.0.2]
Jun 30 20:20:40 mail postfix/pickup[2046]: C703D46D1AB: uid=1047 from=<spider@avtoprime.spb.ru>
Jun 30 20:20:40 mail postfix/pipe[2116]: 0BE6046D12F: to=<ipmaster@mail.ru>, relay=spamfilter, delay=3, status=sent (dummy)
Jun 30 20:20:40 mail postfix/qmgr[2047]: 0BE6046D12F: removed
Jun 30 20:20:40 mail postfix/cleanup[2115]: C703D46D1AB: message-id=<534996147.20050630201859@avtoprime.spb.ru>
Jun 30 20:20:40 mail postfix/qmgr[2047]: C703D46D1AB: from=<spider@avtoprime.spb.ru>, size=2968, nrcpt=1 (queue active)
Jun 30 20:20:40 mail clamsmtpd: 100000: accepted connection from: 127.0.0.1
Jun 30 20:20:40 mail postfix/smtpd[2121]: connect from localhost[127.0.0.1]
Jun 30 20:20:40 mail postfix/smtpd[2121]: D444146D1B0: client=localhost[127.0.0.1]
Jun 30 20:20:40 mail postfix/smtp[2120]: C703D46D1AB: to=<ipmaster@mail.ru>, relay=127.0.0.1[127.0.0.1], delay=0, status=sent (250 Virus Detected; Discarded Email)
Jun 30 20:20:40 mail clamsmtpd: 100000: from=spider@avtoprime.spb.ru, to=ipmaster@mail.ru, status=VIRUS:Eicar-Test-Signature
Jun 30 20:20:40 mail postfix/qmgr[2047]: C703D46D1AB: removed
Jun 30 20:20:40 mail postfix/smtpd[2121]: disconnect from localhost[127.0.0.1]
Jun 30 20:20:41 mail postfix/pickup[2046]: 0040146D1B2: uid=106 from=<clamav>
Jun 30 20:20:41 mail postfix/cleanup[2115]: 0040146D1B2: message-id=<20050630162040.0040146D1B2@mail.avtoprime.spb.ru>
Jun 30 20:20:41 mail postfix/qmgr[2047]: 0040146D1B2: from=<clamav@avtoprime.spb.ru>, size=540, nrcpt=1 (queue active)
Jun 30 20:20:41 mail clamsmtpd: 100001: accepted connection from: 127.0.0.1
Jun 30 20:20:41 mail postfix/smtpd[2121]: connect from localhost[127.0.0.1]
Jun 30 20:20:41 mail postfix/pickup[2046]: 042CD46D1B3: uid=106 from=<clamav>
Jun 30 20:20:41 mail postfix/cleanup[2115]: 042CD46D1B3: message-id=<20050630162040.042CD46D1B3@mail.avtoprime.spb.ru>
Jun 30 20:20:41 mail postfix/qmgr[2047]: 042CD46D1B3: from=<clamav@avtoprime.spb.ru>, size=523, nrcpt=1 (queue active)
Jun 30 20:20:41 mail clamsmtpd: 100002: accepted connection from: 127.0.0.1
Jun 30 20:20:41 mail postfix/smtpd[2121]: 12BB646D1B4: client=localhost[127.0.0.1]
Jun 30 20:20:41 mail postfix/smtpd[2134]: connect from localhost[127.0.0.1]
Jun 30 20:20:41 mail postfix/cleanup[2132]: 12BB646D1B4: message-id=<20050630162040.0040146D1B2@mail.avtoprime.spb.ru>
Jun 30 20:20:41 mail postfix/qmgr[2047]: 12BB646D1B4: from=<clamav@avtoprime.spb.ru>, size=780, nrcpt=1 (queue active)
Jun 30 20:20:41 mail postfix/smtp[2120]: 0040146D1B2: to=<postmaster@avtoprime.spb.ru>, relay=127.0.0.1[127.0.0.1], delay=1, status=sent (250 Ok: queued as 12BB646D1B4)
Jun 30 20:20:41 mail clamsmtpd: 100001: from=clamav@avtoprime.spb.ru, to=postmaster@avtoprime.spb.ru, status=CLEAN
Jun 30 20:20:41 mail postfix/smtpd[2121]: disconnect from localhost[127.0.0.1]
Jun 30 20:20:41 mail postfix/qmgr[2047]: 0040146D1B2: removed
Jun 30 20:20:41 mail postfix/smtpd[2134]: 26D4346D1B5: client=localhost[127.0.0.1]
Jun 30 20:20:41 mail postfix/cleanup[2115]: 26D4346D1B5: message-id=<20050630162040.042CD46D1B3@mail.avtoprime.spb.ru>
Jun 30 20:20:41 mail postfix/local[2136]: 12BB646D1B4: to=<spider@avtoprime.spb.ru>, orig_to=<postmaster@avtoprime.spb.ru>, relay=local, delay=0, status=sent (delivered to maildir)
Jun 30 20:20:41 mail postfix/smtp[2133]: 042CD46D1B3: to=<spider@avtoprime.spb.ru>, relay=127.0.0.1[127.0.0.1], delay=1, status=sent (250 Ok: queued as 26D4346D1B5)
Jun 30 20:20:41 mail clamsmtpd: 100002: from=clamav@avtoprime.spb.ru, to=spider@avtoprime.spb.ru, status=CLEAN
Jun 30 20:20:41 mail postfix/smtpd[2134]: disconnect from localhost[127.0.0.1]
Jun 30 20:20:41 mail postfix/qmgr[2047]: 26D4346D1B5: from=<clamav@avtoprime.spb.ru>, size=759, nrcpt=1 (queue active)
Jun 30 20:20:41 mail postfix/qmgr[2047]: 042CD46D1B3: removed
Jun 30 20:20:41 mail postfix/qmgr[2047]: 12BB646D1B4: removed
Jun 30 20:20:41 mail postfix/local[2136]: 26D4346D1B5: to=<spider@avtoprime.spb.ru>, relay=local, delay=0, status=sent (delivered to maildir)
Jun 30 20:20:41 mail postfix/qmgr[2047]: 26D4346D1B5: removed
---
порядок запуска в /usr/local/etc/rc.d:
(менял порядок, не помогло...)
---
clamav-clamd.sh
clamav-freshclam.sh
clamsmtpd.sh
sa-spamd.sh
postfix.sh
---
clamsmtpd.conf:
---
OutAddress: 10026
Listen: 127.0.0.1:10025
ClamAddress: /var/run/clamav/clamd
TempDirectory: /tmp
User: clamav
VirusAction: /usr/local/etc/postfix/scripts/virus_message.sh
---
(все по умолчанию изменил только VirusAction)
virus_message.sh:
---
echo "ALERT! VIRUS -=( $VIRUS )=- FIND IN YOUR ( $SENDER ) E-MAIL MESSAGE TO $RECIPIENTS, THIS MAIL IS NOT SEND !"| /usr/bin/mail -s "ALERT! VIRUS FIND IN YOUR E-MAIL MESSAGE TO $RECIPIENTS" $SENDER
echo "Postmaster ALERT! VIRUS -=( $VIRUS )=- FIND IN $SENDER E-MAIL MESSAGE TO $RECIPIENTS, THIS MAIL IS NOT SEND !"| /usr/bin/mail -s "Postmaster ALERT! VIRUS FIND IN YOUR E-MAIL MESSAGE TO $RECIPIENTS" postmaster@avtoprime.spb.ru
---
(все на 2х строках)
FreeBSD 4.11
Postfix 2.1.5
Spamassassin 3.0.4
Clamsmtpd 1.4.1
Clamav 0.86.1 + rar v3
Эта ситуация меня убила!!! I need help!!!
Посоветуйте, где я мог ошибиться?
Доп инфу вышлю, если надо.
Вариант для распечатки
OpenNET: Виртуальная конференция (Public)
(??) on
30-Июн-05, 20:43 (MSK)
