- Debian: Jessie
- Mail Server: Exim
- Anti-Virus: Clamav
apt-get install clamav clamav-daemon exim4-daemon-heavy
- Modify
/etc/clamav/clamd.confAllowSupplementaryGroups true
service clamav-daemon restart
dpkg-reconfigure exim4-config- Set config to
split
- Set config to
- Modify
/etc/exim4/conf.d/main/02_exim4-config_options- Uncomment
av_scanner = clamd:/var/run/clamav/clamd.ctl
- Uncomment
- Modify
/etc/exim4/conf.d/acl/40_exim4-config_check_data- Uncomment
deny malware = * message = This message was detected as possible malware ($malware_name).
- Uncomment
adduser clamav Debian-eximchmod -Rf g+w /var/spool/exim4chmod -Rf g+s /var/spool/exim4service exim4 restart
wget -o /tmp/eicar.com.txt https://secure.eicar.org/eicar.com.txtexim4 -bmalware /tmp/eicar.com.txt
telnet localhost 25helo localhostfrom mail: <[email protected]>rcpt to: <user@localhost>dataX5O!P%@AP[4\PZX54(P^)7CC)7}$EICAR-STANDARD-ANTIVIRUS-TEST-FILE!$H+H*.- The SMTP server will send a message about detected malware.
- http://hswong3i.net/blog/hswong3i/exim4-clamav-spamassassin-greylistd-debian-etch-mini-howto
- http://michaelfranzl.com/2013/09/07/setting-up-exim4-mail-transfer-agent-with-spam-filtering-greylisting-and-anti-virus/
- http://www.eicar.org/85-0-Download.html
- https://help.ubuntu.com/community/EximClamAV
- https://technet.microsoft.com/zh-tw/library/aa995718%28v=exchg.65%29.aspx
Small fix: you want 'wget -O' instead of 'wget -o' to save the eicar test virus in /tmp/eicar.com