Go Back   HowtoForge Forums | HowtoForge - Linux Howtos and Tutorials > ISPConfig 3 > Tips/Tricks/Mods

Do you like HowtoForge? Please consider supporting us by becoming a subscriber.
Reply
 
Thread Tools Display Modes
  #21  
Old 9th December 2012, 17:03
concept21 concept21 is offline
Senior Member
 
Join Date: Dec 2011
Posts: 142
Thanks: 27
Thanked 17 Times in 13 Posts
Cool

Just turn off service clamav. Very simple.


Install everything but only activate those service which you need.
Reply With Quote
Sponsored Links
  #22  
Old 27th January 2013, 22:52
msp msp is offline
Member
 
Join Date: Aug 2011
Posts: 41
Thanks: 2
Thanked 2 Times in 2 Posts
Default

Quote:
Originally Posted by till View Post
Amavis and clamav are used to Filter emails, they have no influence on the security of your web server.
Hey Till - and others

So I disabled Amavis and ClamAV as per this thread, and the article Till linked to.

Then, 2 months later, I received a ToS Violation notice from my VPS provider stating my machine had been used as a gateway for sending spam. Sure enough the machine had been compromised (one of the websites had a bunch of directories and php files that were somehow injected into the web root, and were sending spam email from my server).

This was to the tune of thousands of spam emails per day. I had to stop postfix for about a week whilst I investigated it. Luckily outgoing mail was only being used by my own web apps.

Sadly my server is now blacklisted, and mail originating from it is marked as spam in most clients / webmail / gmail etc.

I re-instated Amavis and ClamAV but I won't start postfix for another few weeks and will have to monitor the mailq manually, in fear of it being a further issue.

Also - my original issue - it's not solved

Let this be a lesson for me: solve the problem properly instead of randomly disabling things so they work in the short term. At the time I did this, I didn't even understand that Postfix was an MTA, and that ClamAV, Amavis, Spamassassin all work together with the MTA to prevent outgoing spam / viruses, as opposed to incoming spam / viruses. Now I do...

I hope this helps someone reading this thread!

Last edited by msp; 27th January 2013 at 22:55.
Reply With Quote
  #23  
Old 1st February 2013, 08:54
concept21 concept21 is offline
Senior Member
 
Join Date: Dec 2011
Posts: 142
Thanks: 27
Thanked 17 Times in 13 Posts
 
Talking

It is my comment:

Virus is not equal to malicious software. You need different tactics to handle them.

Reply With Quote
Reply

Bookmarks

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Disable completly Webalizer? thibotus01 Installation/Configuration 1 1st October 2009 17:53
Removing amavisd-new, spamassassin, clamav MrM Installation/Configuration 11 3rd July 2009 13:11
How To Disable Email and DNS tabs? tkbailey Installation/Configuration 4 16th June 2009 17:12
Disable Webalizer stats bixtro General 2 10th September 2008 09:09
Can't remove SSH firewall rule. FeraTechInc General 3 26th February 2007 08:53


All times are GMT +2. The time now is 16:29.


Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.