From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1RX29A-0004VM-Ni for garchives@archives.gentoo.org; Sun, 04 Dec 2011 02:49:44 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 065F521C05B; Sun, 4 Dec 2011 02:49:30 +0000 (UTC) Received: from svr-us4.tirtonadi.com (svr-us4.tirtonadi.com [69.65.43.212]) by pigeon.gentoo.org (Postfix) with ESMTP id 9CF6321C05B for ; Sun, 4 Dec 2011 02:48:21 +0000 (UTC) Received: from mail-ww0-f53.google.com ([74.125.82.53]) by svr-us4.tirtonadi.com with esmtpsa (TLSv1:RC4-SHA:128) (Exim 4.69) (envelope-from ) id 1RX27q-000oJ5-1u for gentoo-user@lists.gentoo.org; Sun, 04 Dec 2011 09:48:22 +0700 Received: by wgbds1 with SMTP id ds1so4352652wgb.10 for ; Sat, 03 Dec 2011 18:48:17 -0800 (PST) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 Received: by 10.180.85.162 with SMTP id i2mr6021437wiz.22.1322966897483; Sat, 03 Dec 2011 18:48:17 -0800 (PST) Received: by 10.223.103.70 with HTTP; Sat, 3 Dec 2011 18:48:17 -0800 (PST) Received: by 10.223.103.70 with HTTP; Sat, 3 Dec 2011 18:48:17 -0800 (PST) In-Reply-To: <4EDAD845.4010402@orlitzky.com> References: <4EDAA89F.3090308@orlitzky.com> <4EDAD845.4010402@orlitzky.com> Date: Sun, 4 Dec 2011 09:48:17 +0700 Message-ID: Subject: Re: [gentoo-user] clamav and spamassassin From: Pandu Poluan To: gentoo-user@lists.gentoo.org Content-Type: multipart/alternative; boundary=f46d0444e9cbf95e5d04b33b3bd3 X-AntiAbuse: This header was added to track abuse, please include it with any abuse report X-AntiAbuse: Primary Hostname - svr-us4.tirtonadi.com X-AntiAbuse: Original Domain - lists.gentoo.org X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12] X-AntiAbuse: Sender Address Domain - poluan.info X-Archives-Salt: 6a0eb9f1-bf74-4313-98fe-6061901c5311 X-Archives-Hash: 981ca450e71ebb1bd713f97bed083804 --f46d0444e9cbf95e5d04b33b3bd3 Content-Type: text/plain; charset=UTF-8 On Dec 4, 2011 9:21 AM, "Michael Orlitzky" wrote: > > On 12/03/2011 08:59 PM, Pandu Poluan wrote: >> >> >> >> This is new information to me. If you're subscribed to Gentoo-server, >> you'll know that I am in the process of setting up a mailfiltering >> gateway for my company. >> >> Any resources on this "postscreen" facility? sounds like a very nice >> thing to implement. >> >> Rgds, >> > > Postscreen is just part of Postfix; it's a separate daemon added in the latest version. > > This is the official README: > > http://www.postfix.org/POSTSCREEN_README.html > > and the configuration parameters are documented in the usual place: > > http://www.postfix.org/postconf.5.html > > > Here's the entirety of my main.cf postscreen section for reference. I've deemed these safe, but you shouldn't enable them without reading what they do! > > > # > # Postscreen settings > # > > postscreen_greet_action = enforce > > postscreen_dnsbl_sites = > psbl.surriel.com, > bl.spamcop.net, > zen.spamhaus.org, > b.barracudacentral.org > > postscreen_dnsbl_threshold = 1 > postscreen_dnsbl_action = enforce > > > ## > ## Deep protocol tests > ## > > postscreen_pipelining_enable = yes > postscreen_pipelining_action = enforce > > postscreen_non_smtp_command_enable = yes > postscreen_non_smtp_command_action = enforce > > postscreen_bare_newline_enable = yes > postscreen_bare_newline_action = enforce > Thanks! Very helpful resources. You mentioned amavisd-new. What's their relationship? I mean, if I deploy postscreen, how will it affect amavisd-new? TIA Rgds, --f46d0444e9cbf95e5d04b33b3bd3 Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: quoted-printable


On Dec 4, 2011 9:21 AM, "Michael Orlitzky" <michael@orlitzky.com> wrote:
>
> On 12/03/2011 08:59 PM, Pandu Poluan wrote:
>>
>>
>>
>> This is new information to me. If you're subscribed to Gentoo-= server,
>> you'll know that I am in the process of setting up a mailfilte= ring
>> gateway for my company.
>>
>> Any resources on this "postscreen" facility? sounds like= a very nice
>> thing to implement.
>>
>> Rgds,
>>
>
> Postscreen is just part of Postfix; it's a separate daemon added i= n the latest version.
>
> This is the official README:
>
> =C2=A0http:/= /www.postfix.org/POSTSCREEN_README.html
>
> and the configuration parameters are documented in the usual place: >
> =C2=A0http://www.po= stfix.org/postconf.5.html
>
>
> Here's the entirety of my main.cf p= ostscreen section for reference. I've deemed these safe, but you should= n't enable them without reading what they do!
>
>
> #
> # Postscreen settings
> #
>
> postscreen_greet_action =3D enforce
>
> postscreen_dnsbl_sites =3D
> =C2=A0 =C2=A0 =C2=A0 =C2=A0psbl.su= rriel.com,
> =C2=A0 =C2=A0 =C2=A0 =C2=A0bl.spamco= p.net,
> =C2=A0 =C2=A0 =C2=A0 =C2=A0zen.spa= mhaus.org,
> =C2=A0 =C2=A0 =C2=A0 =C2=A0b= .barracudacentral.org
>
> postscreen_dnsbl_threshold =3D 1
> postscreen_dnsbl_action =3D enforce
>
>
> ##
> ## Deep protocol tests
> ##
>
> postscreen_pipelining_enable =3D yes
> postscreen_pipelining_action =3D enforce
>
> postscreen_non_smtp_command_enable =3D yes
> postscreen_non_smtp_command_action =3D enforce
>
> postscreen_bare_newline_enable =3D yes
> postscreen_bare_newline_action =3D enforce
>

Thanks! Very helpful resources.

You mentioned amavisd-new. What's their relationship? I mean, if I d= eploy postscreen, how will it affect amavisd-new?

TIA

Rgds,

--f46d0444e9cbf95e5d04b33b3bd3--