Memo/Linux/taRgrey

http://dexlab.net/pukiwiki/index.php?Memo%2FLinux%2FtaRgrey 		 

taRgrey ¥¹¥Ñ¥àÂкö

¥Õ¥¡¥¤¥ë 

  1. sudo ls -l /var/spool/postfix/postgrey/

  2. -rw------- 1 postgrey postgrey     8192  9·î  8 14:16 postgrey.db	ºÆÁ÷ÂÔ¤Á

  3. -rw------- 1 postgrey postgrey     8192  9·î  8 14:16 postgrey_clients.db	¥ª¡¼¥È¥Û¥ï¥¤¥È¥ê¥¹¥È

  4. -rw------- 1 postgrey postgrey     8192  9·î  8 14:16 tarpit_clients.db		tarpit¤òÈ´¤±¤Ê¤«¤Ã¤¿¥ê¥¹¥È

¥¤¥ó¥¹¥È¡¼¥ë

  • postgrey¥ê¥Ó¥ë¥É 
    1. cd /usr/src/redhat/

    2. wget http://apt.sw.be/redhat/el5/en/SRPMS.rpmforge/postgrey-1.32-1.rf.src.rpm

    3. rpm -ivh postgrey-1.32-1.rf.src.rpm

    4. rm postgrey-1.32-1.rf.src.rpm

    5.  

    6. ¥Ñ¥Ã¥Á¤òÅö¤Æ¤ë

    7. cd SOURCES/

    8. tar xvfz postgrey-1.32.tar.gz 

    9. cd postgrey-1.32

    10. wget http://k2net.hakuba.jp/pub/targrey-0.31-postgrey-1.32.patch

    11. patch -p0 < targrey-0.31-postgrey-1.32.patch 

    12. cd ..

    13. rm -f postgrey-1.32.tar.gz && tar czvf postgrey-1.32.tar.gz postgrey-1.32

    14. rm -rf postgrey-1.32

    15.  

    16. cd ..

    17. rpmbuild -ba --clean SPECS/postgrey.spec

    18.  

    19. ¥¤¥ó¥¹¥È¡¼¥ë

    20. perl -MCPAN -e 'install BerkeleyDB'

    21. perl -MCPAN -e 'install IO::Multiplex'

    22. perl -MCPAN -e 'install Net::Server'

    23. rpm -ivh --nodeps RPMS/noarch/postgrey-1.32-1.rf.noarch.rpm
  • PostgreyÀßÄê 
    1. vi /etc/rc.d/init.d/postgrey

    2. ----

    3. OPTIONS="--inet=60000 --tarpit=65 --targrey --retry-count=2 --delay=3600"

    4. ----
  • postfixÀßÄê
  • Greylist¤ËÆþ¤Ã¤¿¤Þ¤ÞÁ÷¿®¤Ç¤­¤Ê¤«¤Ã¤¿¤Î¤Ç°ÂÁ´¤Î¤¿¤á¥³¥á¥ó¥È¥¢¥¦¥È¡£Willcom·ÈÂÓ¤«¤é¤ÏÁ÷¿®¤Ç¤­¤¿¡£ 
    1. vi /etc/postfix/main.cf

    2. ----

    3. smtpd_recipient_restrictions =

    4.     permit_mynetworks

    5.     permit_sasl_authenticated

    6.     reject_unauth_destination

    7. ¡Ý¡ÝÄɲÃ(¤³¤³¤«¤é)¡Ý¡Ý

    8.     reject_unauth_pipelining

    9.     check_recipient_access hash:$config_directory/whitelist_recipient

    10.     check_client_access    hash:$config_directory/whitelist_client

    11.     check_client_access    regexp:$config_directory/permit_client_nots25r

    12. #    check_policy_service   inet:60000

    13.     permit

    14.  

    15. smtpd_data_restrictions =

    16.     permit_mynetworks

    17.     permit_sasl_authenticated

    18.     reject_unauth_destination

    19.     reject_multi_recipient_bounce

    20.     check_recipient_access hash:$config_directory/whitelist_recipient

    21.     check_client_access    hash:$config_directory/whitelist_client

    22.     check_client_access    regexp:$config_directory/permit_client_nots25r

    23. #    check_policy_service   inet:60000

    24.     permit

    25. ¡Ý¡ÝÄɲÃ(¤³¤³¤Þ¤Ç)¡Ý¡Ý

    26. ----

    27.  

    28. cd /usr/local/src/

    29. wget http://k2net.hakuba.jp/spam/postfix.conf.2.tar.gz

    30. tar zxvf postfix.conf.2.tar.gz

    31. cp postfix.conf.2/whitelist_recipient /etc/postfix/

    32. cp postfix.conf.2/whitelist_client /etc/postfix/

    33. cp postfix.conf.2/permit_client_nots25r /etc/postfix/

    34. rm -rf postfix.conf.2

    35. rm -f postfix.conf.2.tar.gz

    36. postmap /etc/postfix/whitelist_recipient

    37. postmap /etc/postfix/whitelist_client
  • whitelist_client¤ËÄɲà 
    1. sudo sh -c "cat >> /etc/postfix/whitelist_client << 'EOS'

    2. # docomo

    3. docomo.ne.jp                                    OK

    4.  

    5. # KDDI au

    6. #ezweb.ne.jp                                     OK

    7.  

    8. # softbank

    9. #softbank.ne.jp                                  OK

    10.  

    11. # willcom

    12. pdx.ne.jp                                       OK

    13.  

    14. # Shinjyuku New Valley Bldg

    15. 114.160.206.134                                 OK

    16.  

    17. # malay office

    18. 218.111.45.129                                  OK

    19. EOS

    20. "

    21.  

    22. postmap /etc/postfix/whitelist_client
  • yum¤Ç¥¢¥Ã¥×¥Ç¡¼¥È¤µ¤ì¤Ê¤¤¤è¤¦¤ËÀßÄê 
    1. vi /etc/yum.conf

    2. ----

    3. exclude=postgrey*

    4. ----
  • logwatch¤«¤é¤Î¥á¡¼¥ë¤ËPostfix¥Ñ¥Ã¥Á¤Ë¤è¤ëÃÙ±ä±þÅú¥í¥°¤¬ÂçÎ̤˽ÐÎϤµ¤ì¤Æ¤·¤Þ¤ï¤Ê¤¤¤è¤¦¤Ë¤¹¤ë¡£ 
    1. echo NOQUEUE >> /etc/logwatch/conf/ignore.conf
  • µ¯Æ° 
    1. chkconfig postgrey on

    2. service postgrey start

    3. service postfix restart
  • postgrey db¤Î³Îǧ 
    1. db_dump¥³¥Þ¥ó¥É¤òÍøÍѲÄǽ¤Ë

    2. yum install db4-utils

    3.  

    4. cd /var/spool/postfix/postgrey

    5. db_dump -p postgrey.db
  • ÆüËܸìÂбþÈÇ spamassassin ¤Ë¥¢¥Ã¥×¥°¥ì¡¼¥É 
    1. cd /usr/src/redhat/

    2. wget http://spamassassin.jp/download/sa3.2/packages/rhel/spamassassin-3.2.5-1.jsaug.src.rpm

    3. rpmbuild --rebuild spamassassin-3.2.5-1.jsaug.src.rpm

    4. rm spamassassin-3.2.5-1.jsaug.src.rpm

    5.  

    6. rpm -Uvh RPMS/i386/spamassassin-3.2.5-1.jsaug.i386.rpm

    7.  

    8. cd /etc/mail/spamassassin

    9. wget -O jp_rules-20060729.cf.org http://spamassassin.jp/download/rules/jp_rules-20060729.cf

    10. sed "s/nbody/body/g" jp_rules-20060729.cf.org > jp_rules-20060729.cf.mod

    11.  

    12. wget -O jp_ml-20060729.cf.org http://spamassassin.jp/download/rules/jp_ml-20060729.cf

    13. sed "s/nbody/body/g" jp_ml-20060729.cf.org > jp_ml-20060729.cf.mod

    14.  

    15. service spamassassin restart

    16. chkconfig spamassassin on
  • ÆüËܸìÂбþSpamAssassin¥¤¥ó¥¹¥È¡¼¥ë - NO LIMIT Is. Wiki»ÙÉô 
    1. wget "http://sourceforge.jp/frs/redir.php?m=jaist&f=%2Ftritonn%2F44615%2Fmecab-0.98-tritonn.1.0.12a.i386.rpm"

    2. wget "http://sourceforge.jp/frs/redir.php?m=jaist&f=%2Ftritonn%2F44615%2Fmecab-ipadic-2.7.0.20070801-tritonn.1.0.12a.i386.rpm"

    3. rpm -ivh mecab*

    4. perl -MCPAN -e 'install Text::MeCab,Text::MeCab::Dict'

    5. perl -MCPAN -e 'install Digest::SHA1,HTML::Parser,MIME::Base64,DB_File,Net::DNS'
¥È¥Ã¥×   ÊÔ½¸ Åà·ë º¹Ê¬ ¥Ð¥Ã¥¯¥¢¥Ã¥× źÉÕ Ê£À½ ̾Á°Êѹ¹ ¥ê¥í¡¼¥É   ¿·µ¬ °ìÍ÷ ñ¸ì¸¡º÷ ºÇ½ª¹¹¿·   ¥Ø¥ë¥×   ºÇ½ª¹¹¿·¤ÎRSS
Last-modified: 2010-09-14 (²Ð) 23:32:21 (2779d)