Memo/Linux/taRgrey

http://dexlab.net/pukiwiki/index.php?Memo%2FLinux%2FtaRgrey
 

taRgrey ¥¹¥Ñ¥àÂкö


¥Õ¥¡¥¤¥ë

  1. sudo ls -l /var/spool/postfix/postgrey/
  2. -rw------- 1 postgrey postgrey     8192  9·î  8 14:16 postgrey.db ºÆÁ÷ÂÔ¤Á
  3. -rw------- 1 postgrey postgrey     8192  9·î  8 14:16 postgrey_clients.db ¥ª¡¼¥È¥Û¥ï¥¤¥È¥ê¥¹¥È
  4. -rw------- 1 postgrey postgrey     8192  9·î  8 14:16 tarpit_clients.db tarpit¤òÈ´¤±¤Ê¤«¤Ã¤¿¥ê¥¹¥È

¥¤¥ó¥¹¥È¡¼¥ë

  • postgrey¥ê¥Ó¥ë¥É
    1. cd /usr/src/redhat/
    2. wget http://apt.sw.be/redhat/el5/en/SRPMS.rpmforge/postgrey-1.32-1.rf.src.rpm
    3. rpm -ivh postgrey-1.32-1.rf.src.rpm
    4. rm postgrey-1.32-1.rf.src.rpm
    5.  
    6. ¥Ñ¥Ã¥Á¤òÅö¤Æ¤ë
    7. cd SOURCES/
    8. tar xvfz postgrey-1.32.tar.gz
    9. cd postgrey-1.32
    10. wget http://k2net.hakuba.jp/pub/targrey-0.31-postgrey-1.32.patch
    11. patch -p0 < targrey-0.31-postgrey-1.32.patch
    12. cd ..
    13. rm -f postgrey-1.32.tar.gz && tar czvf postgrey-1.32.tar.gz postgrey-1.32
    14. rm -rf postgrey-1.32
    15.  
    16. cd ..
    17. rpmbuild -ba --clean SPECS/postgrey.spec
    18.  
    19. ¥¤¥ó¥¹¥È¡¼¥ë
    20. perl -MCPAN -e 'install BerkeleyDB'
    21. perl -MCPAN -e 'install IO::Multiplex'
    22. perl -MCPAN -e 'install Net::Server'
    23. rpm -ivh --nodeps RPMS/noarch/postgrey-1.32-1.rf.noarch.rpm
  • PostgreyÀßÄê
    1. vi /etc/rc.d/init.d/postgrey
    2. ----
    3. OPTIONS="--inet=60000 --tarpit=65 --targrey --retry-count=2 --delay=3600"
    4. ----
  • postfixÀßÄê
  • Greylist¤ËÆþ¤Ã¤¿¤Þ¤ÞÁ÷¿®¤Ç¤­¤Ê¤«¤Ã¤¿¤Î¤Ç°ÂÁ´¤Î¤¿¤á¥³¥á¥ó¥È¥¢¥¦¥È¡£Willcom·ÈÂÓ¤«¤é¤ÏÁ÷¿®¤Ç¤­¤¿¡£
    1. vi /etc/postfix/main.cf
    2. ----
    3. smtpd_recipient_restrictions =
    4.     permit_mynetworks
    5.     permit_sasl_authenticated
    6.     reject_unauth_destination
    7. ¡Ý¡ÝÄɲÃ(¤³¤³¤«¤é)¡Ý¡Ý
    8.     reject_unauth_pipelining
    9.     check_recipient_access hash:$config_directory/whitelist_recipient
    10.     check_client_access    hash:$config_directory/whitelist_client
    11.     check_client_access    regexp:$config_directory/permit_client_nots25r
    12. #    check_policy_service   inet:60000
    13.     permit
    14.  
    15. smtpd_data_restrictions =
    16.     permit_mynetworks
    17.     permit_sasl_authenticated
    18.     reject_unauth_destination
    19.     reject_multi_recipient_bounce
    20.     check_recipient_access hash:$config_directory/whitelist_recipient
    21.     check_client_access    hash:$config_directory/whitelist_client
    22.     check_client_access    regexp:$config_directory/permit_client_nots25r
    23. #    check_policy_service   inet:60000
    24.     permit
    25. ¡Ý¡ÝÄɲÃ(¤³¤³¤Þ¤Ç)¡Ý¡Ý
    26. ----
    27.  
    28. cd /usr/local/src/
    29. wget http://k2net.hakuba.jp/spam/postfix.conf.2.tar.gz
    30. tar zxvf postfix.conf.2.tar.gz
    31. cp postfix.conf.2/whitelist_recipient /etc/postfix/
    32. cp postfix.conf.2/whitelist_client /etc/postfix/
    33. cp postfix.conf.2/permit_client_nots25r /etc/postfix/
    34. rm -rf postfix.conf.2
    35. rm -f postfix.conf.2.tar.gz
    36. postmap /etc/postfix/whitelist_recipient
    37. postmap /etc/postfix/whitelist_client
  • whitelist_client¤ËÄɲÃ
    1. sudo sh -c "cat >> /etc/postfix/whitelist_client << 'EOS'
    2. # docomo
    3. docomo.ne.jp                                    OK
    4.  
    5. # KDDI au
    6. #ezweb.ne.jp                                     OK
    7.  
    8. # softbank
    9. #softbank.ne.jp                                  OK
    10.  
    11. # willcom
    12. pdx.ne.jp                                       OK
    13.  
    14. # Shinjyuku New Valley Bldg
    15. 114.160.206.134                                 OK
    16.  
    17. # malay office
    18. 218.111.45.129                                  OK
    19. EOS
    20. "
    21.  
    22. postmap /etc/postfix/whitelist_client
  • yum¤Ç¥¢¥Ã¥×¥Ç¡¼¥È¤µ¤ì¤Ê¤¤¤è¤¦¤ËÀßÄê
    1. vi /etc/yum.conf
    2. ----
    3. exclude=postgrey*
    4. ----
  • logwatch¤«¤é¤Î¥á¡¼¥ë¤ËPostfix¥Ñ¥Ã¥Á¤Ë¤è¤ëÃÙ±ä±þÅú¥í¥°¤¬ÂçÎ̤˽ÐÎϤµ¤ì¤Æ¤·¤Þ¤ï¤Ê¤¤¤è¤¦¤Ë¤¹¤ë¡£
    1. echo NOQUEUE >> /etc/logwatch/conf/ignore.conf
  • µ¯Æ°
    1. chkconfig postgrey on
    2. service postgrey start
    3. service postfix restart
  • postgrey db¤Î³Îǧ
    1. db_dump¥³¥Þ¥ó¥É¤òÍøÍѲÄǽ¤Ë
    2. yum install db4-utils
    3.  
    4. cd /var/spool/postfix/postgrey
    5. db_dump -p postgrey.db
  • ÆüËܸìÂбþÈÇ spamassassin ¤Ë¥¢¥Ã¥×¥°¥ì¡¼¥É
    1. cd /usr/src/redhat/
    2. wget http://spamassassin.jp/download/sa3.2/packages/rhel/spamassassin-3.2.5-1.jsaug.src.rpm
    3. rpmbuild --rebuild spamassassin-3.2.5-1.jsaug.src.rpm
    4. rm spamassassin-3.2.5-1.jsaug.src.rpm
    5.  
    6. rpm -Uvh RPMS/i386/spamassassin-3.2.5-1.jsaug.i386.rpm
    7.  
    8. cd /etc/mail/spamassassin
    9. wget -O jp_rules-20060729.cf.org http://spamassassin.jp/download/rules/jp_rules-20060729.cf
    10. sed "s/nbody/body/g" jp_rules-20060729.cf.org > jp_rules-20060729.cf.mod
    11.  
    12. wget -O jp_ml-20060729.cf.org http://spamassassin.jp/download/rules/jp_ml-20060729.cf
    13. sed "s/nbody/body/g" jp_ml-20060729.cf.org > jp_ml-20060729.cf.mod
    14.  
    15. service spamassassin restart
    16. chkconfig spamassassin on
  • ÆüËܸìÂбþSpamAssassin¥¤¥ó¥¹¥È¡¼¥ë - NO LIMIT Is. Wiki»ÙÉô
    1. wget "http://sourceforge.jp/frs/redir.php?m=jaist&f=%2Ftritonn%2F44615%2Fmecab-0.98-tritonn.1.0.12a.i386.rpm"
    2. wget "http://sourceforge.jp/frs/redir.php?m=jaist&f=%2Ftritonn%2F44615%2Fmecab-ipadic-2.7.0.20070801-tritonn.1.0.12a.i386.rpm"
    3. rpm -ivh mecab*
    4. perl -MCPAN -e 'install Text::MeCab,Text::MeCab::Dict'
    5. perl -MCPAN -e 'install Digest::SHA1,HTML::Parser,MIME::Base64,DB_File,Net::DNS'

¥È¥Ã¥×   ÊÔ½¸ Åà·ë º¹Ê¬ ¥Ð¥Ã¥¯¥¢¥Ã¥× źÉÕ Ê£À½ ̾Á°Êѹ¹ ¥ê¥í¡¼¥É   ¿·µ¬ °ìÍ÷ ñ¸ì¸¡º÷ ºÇ½ª¹¹¿·   ¥Ø¥ë¥×   ºÇ½ª¹¹¿·¤ÎRSS
Last-modified: 2010-09-14 (²Ð) 23:32:21 (2779d)