Linux上的邮件网关(杀病毒)AntiVirMailGate
Linux 上的邮件网关(杀病毒)AntiVir MailGate , 它有两种方法:
1. 直接作 mail 网关,然后利用“ 管道 ”调用 smtp 程序。支持标准的 smtp 程序: sendmail、postfix、qmail。
2. 也是作 mail 网关,在 /etc/sendmail.cf 里添加 avgatemail 选项 (这样 sendmail 在 825 端口监听),然后 再利用 825 端口转发邮件。意思是:25 即是 avmailgate 的 smtp 端口,然后它再利用 825(sendmail)端口转发邮件 !
请注意:但是人家还是可以利用你的 825 端口 (就是利用原来的 senmail 来给你发送病毒邮件!但是,这种情况很少的。)。这时你可以用防火墙来阻止来自外部的对本机的 825 端口的连接。
在 /etc/services 里面增加:
smtp-backdoor 825/tcp
修改 sendmail.cf 成:
# SMTP daemon options
#O DaemonPortOptions=Port=smtp,Addr=127.0.0.1, Name=MTA
# 原来的。
# -_-_-_-_-_-_-_-_-_-_-_-_-_-_-_- gugong -_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-
#
# 红帽子 V7.x V8.0 所建立的本文件默认 “只” 对 localhost 即 127.0.0.1
# 提供服务,根据以往本文件的内容,修改为:
#
# SMTP daemon options
O DaemonPortOptions=Name=MTA, Port=smtp-backdoor
O DaemonPortOptions=Port=587, Name=MSA, M=E
# 若 不需要 avgatemail ,则应该是:
#O DaemonPortOptions=Name=MTA
#O DaemonPortOptions=Port=587, Name=MSA, M=E
# 在端口 587 提供 submission 服务(MSA)。
# -_-_-_-_-_-_-_-_-_-_-_-_-_-_-_- gugong -_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-
请看:
邮件网关杀除病毒后返回的报告:
一、
*********************************************************************
AntiVir Virus Alert
*********************************************************************
This version of AntiVir MailGate is licensed for private and non-commercial use.
*********************************************************************
AntiVir found these viruses in the following mail:
Worm/Klez.E
The mail was not delivered.
You may force the delivery without further checking the mail using:
avq --deliver=04347-536A3823
but we would not advise to do so. You should delete it with:
avq --remove=04347-536A3823
For more information, please read the manual page avmailgate(8).
----------Mail-Info----------
From: winson246
To: webmaster@fruitron.com.cn
Subject: Marginheight
Mail-From: suscono@pub.dgnet.gd.cn
Rcpt: webmaster@fruitron.com.cn
Queue-Id: 04347-536A3823
Status: The mail was not delivered!
-----------------------------
-----------Log-File----------
info: extracting attachment 1 to /var/tmp/av-06051-U43SFi/av-0
(encoding="quoted-printable", name="(no name)", filename="(no name)")
info: extracting attachment 2 to /var/tmp/av-06051-U43SFi/av-1
(encoding="base64", name="Vebnq.pif", filename="(no name)")
info: extracting attachment 3 to /var/tmp/av-06051-U43SFi/av-2
(encoding="base64", name="frame", filename="(no name)")
checking file "/var/tmp/av-06051-U43SFi/av-0"
checking file "/var/tmp/av-06051-U43SFi/av-1"
checking file "/var/tmp/av-06051-U43SFi/av-2"
-----------------------------
*********************************************************************
For more information on AntiVir please visit our web site
http://www.antivir.de or http://www.hbedv.com
mailto: info@antivir.de
AntiVir is a registered trademark of
H+BEDV Datentechnik GmbH
*********************************************************************
二、
*********************************************************************
AntiVir Virus Alert
*********************************************************************
This version of AntiVir MailGate is licensed for private and non-commercial use.
*********************************************************************
AntiVir found these viruses in a mail for you from winson246 :
Worm/Klez.E
The mail was not delivered.
AntiVir MailGate prevented a virus delivery. But if you need to
receive further email from winson246 ,
you should ask him/her to buy a professional antivirus software such
as AntiVir from H+BEDV Datentechnik GmbH. He/She can contact
mailto:sales@hbedv.com for further information.
----------Mail-Info----------
From: winson246
To: webmaster@fruitron.com.cn
Subject: Marginheight
-----------------------------
*********************************************************************
For more information on AntiVir please visit our web site
http://www.antivir.de or http://www.hbedv.com
mailto: info@antivir.de
AntiVir is a registered trademark of
H+BEDV Datentechnik GmbH
*********************************************************************
自动升级病毒库后的报告:
AntiVir has successfully updated itself.
-- /usr/lib/AntiVir/antivir.vdf
Machine: gugonghcs.fruitron.com.cn
Date: 09 May 2002
Time: 10:39:18
-----------------------------
Copyright (C) 1994-2002 by H+BEDV Datentechnik GmbH.
All rights reserved.
For private (non-commercial) use only.
请到 :
http://www.hbedv.com
下载 Linux 版本,并注册,Linux 的 版本可是免费的哟。
由于附件的后缀名限制,附加的文档的 .txt 结尾是我增加附加档案时添加上去的。