[milters] Archive

Lists Index Date Thread Search

Article: 1041
From: Michael Grinnell
Date: 2006-07-17 15:16:05 -0400
Subject: milter-clamc help (was Re: Re: milter suggestion/request)

Removal...........: milters-request@milter.info?subject=remove
More information..: http://www.milter.info/#Support
--------------------------------------------------------

On Jul 16, 2006, at 2:30 AM, Anthony Howe wrote:

> Removal...........: milters-request@milter.info?subject=remove
> More information..: http://www.milter.info/#Support
> --------------------------------------------------------
>
> Grant Taylor wrote:
>>> With milters like milter-clamc, et. al. that support tagging, do  
>>> you have any plans to expand the tagging functionality?  I would  
>>> like to be able to tag mail by adding headers rather than  
>>> rewriting the subject line.  That way we can have advanced users  
>>> filter by header and it doesn't scare novice users...
>> Michael, presently I have milter-spamc (I presume that milter- 
>> clamc will do the same) adding headers as well as altering the  
>> subject.  If you want to turn off the subject rewrite, use "-s ''".
>
> Using the method Grant states is probably the best and most clear.
>
> Some of the newer milters when policy=none, will still add headers  
> to the message. However, this behaviour is undocumented and counter- 
> intuitive to what "none" is. At some future date I might add  
> policy=header as a more clear indication, but for now I would suggest:
>
> 	policy=tag  subject-tag=''
>
> as equivalent to the missing policy=header choice. This is the same  
> as Grant's suggestion, but using the new option format that  
> replaced the older dash-letter format recently.
>
> -- 
> Anthony C Howe          Skype: SirWumpus                    SnertSoft
> +33 6 11 89 73 78         AIM: SirWumpus    Sendmail Milter Solutions
> http://www.snert.com/     ICQ:
7116561      http://www.snertsoft.com/

Hmm, no love.  Trace shows it talking to milter-clamc, but no header  
is added.  Does it only add headers to mail with attachments?  Any  
ideas?

Jul 17 15:07:56 servername milter-sender[20975]: 00694  
k6HJ7Ewh027997: filterMail(83376d0, 833bdd0) MAIL='<Sal@filergo.com>'
Jul 17 15:07:56 servername milter-sender[20975]: 00694  
k6HJ7Ewh027997: enter mxCallBack()
Jul 17 15:07:56 servername milter-sender[20975]: 00694  
k6HJ7Ewh027997: exit mxCallBack() rc=0
Jul 17 15:07:56 servername milter-clamc[26604]: 00169 k6HJ7Ewh027997:  
filterMail(8079718, 807cbd0) MAIL='<Sal@filergo.com>' auth=''
Jul 17 15:07:56 servername milter-sender[20975]: 00694  
k6HJ7Ewh027997: filterRcpt(83376d0, 833bdd0) RCPT='<user@american.edu>'
Jul 17 15:07:56 servername milter-sender[20975]: 00694  
k6HJ7Ewh027997: enter mxCallAhead(833cfd8) rcpt={user@american.edu,  
[server1.american.edu]:[server2.american.edu], smtp}
Jul 17 15:07:56 servername milter-sender[20975]: 00694  
k6HJ7Ewh027997: exit  mxCallAhead(833cfd8) rcpt={user@american.edu,  
[server1.american.edu]:[server2.american.edu], smtp} rc=0
Jul 17 15:07:56 servername milter-clamc[26604]: 00169 k6HJ7Ewh027997:  
filterRcpt(8079718, 807cbd0) RCPT='<user@american.edu>'
Jul 17 15:07:56 servername sendmail[27997]: k6HJ7Ewh027997:  
from=<Sal@filergo.com>, size=3419, class=0, nrcpts=1,  
msgid=<RBKEQUJXZOAGCOFYIZZBCZ@filergo.com>, proto=ESMTP, daemon=MTA,  
relay=sender113.filergo.com [64.194.129.113]
Jul 17 15:07:56 servername milter-sender[20975]: 00694  
k6HJ7Ewh027997: filterHeader(83376d0, 'Message-ID',  
'<RBKEQUJXZOAGCOFYIZZBCZ@filergo.com>')
Jul 17 15:07:56 servername milter-sender[20975]: 00694  
k6HJ7Ewh027997: filterHeader(83376d0, 'From', '"Ephedra Energy"  
<Sal@filergo.com>')
Jul 17 15:07:56 servername milter-sender[20975]: 00694  
k6HJ7Ewh027997: filterHeader(83376d0, 'Reply-To', '"Ephedra Energy"  
<Sal@filergo.com>')
Jul 17 15:07:56 servername milter-sender[20975]: 00694  
k6HJ7Ewh027997: filterHeader(83376d0, 'To', '<user@american.edu>')
Jul 17 15:07:56 servername milter-sender[20975]: 00694  
k6HJ7Ewh027997: filterHeader(83376d0, 'Subject', 'Ephedra is here get  
it while you can')
Jul 17 15:07:56 servername milter-sender[20975]: 00694  
k6HJ7Ewh027997: filterHeader(83376d0, 'Date', 'Mon, 17 Jul 2006  
15:07:57 -0500')
Jul 17 15:07:56 servername milter-sender[20975]: 00694  
k6HJ7Ewh027997: filterHeader(83376d0, 'MIME-Version', '1.0')
Jul 17 15:07:56 servername milter-sender[20975]: 00694  
k6HJ7Ewh027997: filterHeader(83376d0, 'Content-Type', 'text/ 
plain;        charset="us-ascii"')
Jul 17 15:07:56 servername milter-sender[20975]: 00694  
k6HJ7Ewh027997: filterHeader(83376d0, 'Content-Transfer-Encoding', '7  
bit')
Jul 17 15:07:56 servername milter-sender[20975]: 00694  
k6HJ7Ewh027997: enter filterEndMessage(83376d0)
Jul 17 15:07:56 servername milter-sender[20975]: 00694  
k6HJ7Ewh027997: white listing reply from <user@american.edu>
Jul 17 15:07:56 servername sendmail[27997]: k6HJ7Ewh027997: Milter  
add: header: X-Scanned-By: milter-sender/1.11.904  
(servername.american.edu [192.168.2.71]); Mon, 17 Jul 2006 15:07:56  
-0400
Jul 17 15:07:56 servername milter-sender[20975]: 00694  
k6HJ7Ewh027997: exit filterEndMessage(83376d0)
Jul 17 15:07:56 servername milter-clamc[26604]: 00169 k6HJ7Ewh027997:  
filterHeader(8079718, 'Message-ID', '<RBKEQUJXZOAGCOFYIZZ...')
Jul 17 15:07:56 servername milter-clamc[26604]: 00169 k6HJ7Ewh027997:  
filterHeader(8079718, 'From', '"Ephedra Energy" <Sa...')
Jul 17 15:07:56 servername milter-clamc[26604]: 00169 k6HJ7Ewh027997:  
filterHeader(8079718, 'Reply-To', '"Ephedra Energy" <Sa...')
Jul 17 15:07:56 servername milter-clamc[26604]: 00169 k6HJ7Ewh027997:  
filterHeader(8079718, 'To', '<user@american.ed...')
Jul 17 15:07:56 servername milter-clamc[26604]: 00169 k6HJ7Ewh027997:  
filterHeader(8079718, 'Subject', 'Ephedra is here get ...')
Jul 17 15:07:56 servername milter-clamc[26604]: 00169 k6HJ7Ewh027997:  
filterHeader(8079718, 'Date', 'Mon, 17 Jul 2006 15:...')
Jul 17 15:07:56 servername milter-clamc[26604]: 00169 k6HJ7Ewh027997:  
filterHeader(8079718, 'MIME-Version', '1.0...')
Jul 17 15:07:56 servername milter-clamc[26604]: 00169 k6HJ7Ewh027997:  
filterHeader(8079718, 'Content-Type', 'text/plain;        c...')
Jul 17 15:07:56 servername milter-clamc[26604]: 00169 k6HJ7Ewh027997:  
filterHeader(8079718, 'Content-Transfer-Encoding', '7 bit...')
Jul 17 15:07:56 servername milter-clamc[26604]: 00169 k6HJ7Ewh027997:  
filterHeader(8079718, 'X-Scanned-By', 'milter-sender/1.11.9...')
Jul 17 15:07:56 servername milter-clamc[26604]: 00169 k6HJ7Ewh027997:  
filterEndHeaders(8079718)
Ephedra Is Back ...', 3119) maxChunks=0 chunksSent=0J7Ewh027997:  
filterBody(8079718, '
Jul 17 15:07:56 servername milter-clamc[26604]: 00169 k6HJ7Ewh027997:  
filterEndMessage(8079718)
Jul 17 15:07:56 servername sendmail[27997]: k6HJ7Ewh027997: Milter  
add: header: X-PMX-Version: 5.2.0.264296, Antispam-Engine:  
2.4.0.264935, Antispam-Data: 2006.7.17.115432
Jul 17 15:07:56 servername sendmail[27997]: k6HJ7Ewh027997: Milter  
add: header: X-AU-spam: Gauge=#########, Probability=99%,  
Report='KNOWN_SPAM_PARAGRAPH 8, URI_CLASS_HEALTH_DOMAIN 8,  
__C230066_P5 0, __CP_NAME_BODY 0, __CP_URI_IN_BODY 0, __CT 0, __CTE  
0, __CTYPE_CHARSET_QUOTED 0, __CT_TEXT_PLAIN 0, __FRAUD_419_BADTHINGS  
0, __FRAUD_419_TINHORN 0, __HAS_MSGID 0, __MIME_TEXT_ONLY 0,  
__MIME_VERSION 0, __SANE_MSGID 0'
Jul 17 15:07:56 servername sendmail[28374]: k6HJ7Ewh027997:  
to=<user@american.edu>, delay=00:00:00, xdelay=00:00:00, mailer=smtp,  
pri=123419, relay=server1.american.edu. [192.168.2.42], dsn=2.0.0,  
stat=Sent (Message accepted for delivery)

I'm using:

CentOS 4.3 (i386)

clamav-db-0.88.3-1.el4.rf
clamd-0.88.3-1.el4.rf
clamav-0.88.3-1.el4.rf

Firewall is disabled for testing.  Here's my conf files (snipped for  
brevity):

milter-clamc.cf
# The unix domain socket or internet host[,port] of the clamd server.
clamd-socket=127.0.0.1,3310

# Policy to apply if message is undesirable. Specify either
# none, tag, quarantine, later, reject, or discard
#
policy=tag

# Subject tag for messages that are infected.
subject-tag=""

# Path to the access.db file.
access-db=/etc/mail/access.db

# Start as a background daemon or foreground application.
+daemon

# Read option file before command line options.
file=/etc/mail/milter-clamc.cf

# The sendmail/milter socket type & name (required):
milter-socket=unix:/var/run/milter/milter-clamc.socket

# The sendmail/milter I/O timeout in seconds.
milter-timeout=7210

# The file path of where to save the process-id.
pid-file=/var/run/milter/milter-clamc.pid

# A comma separated word list of what to write to the mail log:
verbose=trace




clamd.conf:
# The daemon works in a local OR a network mode. Due to security  
reasons we
# recommend the local mode.

# Path to a local socket file the daemon will listen on.
# Default: disabled
#LocalSocket /var/run/milter/milter-clamc.socket

# Remove stale socket after unclean shutdown.
# Default: disabled
FixStaleSocket

# TCP port address.
# Default: disabled
TCPSocket 3310

# TCP address.
# By default we bind to INADDR_ANY, probably not wise.
# Enable the following to provide some degree of protection
# from the outside world.
# Default: disabled
TCPAddr 127.0.0.1

# Run as a selected user (clamd must be started by root).
# Default: disabled
User clamav

# Initialize supplementary group access (clamd must be started by root).
# Default: disabled
AllowSupplementaryGroups

# By default clamd uses scan options recommended by libclamav. This  
option
# disables recommended options and allows you to enable selected ones  
below.
# DO NOT TOUCH IT unless you know what you are doing.
# Default: disabled
#DisableDefaultScanOptions


Michael Grinnell
Network Security Administrator
The American University
e-mail: grinnell@american.edu
desk: (202) 885-2491
cell: (202) 215-3352



Lists Index Date Thread Search