Go Back   HowtoForge Forums | HowtoForge - Linux Howtos and Tutorials > Linux Forums > HOWTO-Related Questions

Do you like HowtoForge? Please consider supporting us by becoming a subscriber.
Reply
 
Thread Tools Display Modes
  #1  
Old 13th November 2006, 19:31
Slicer Slicer is offline
Member
 
Join Date: Jul 2006
Posts: 41
Thanks: 2
Thanked 1 Time in 1 Post
Default ASSP and Postfix HowTo

Was taking a look at this howto and wanted to see if there was anything from the Postfix HotTo that would need to be changed.

http://www.howtoforge.com/antispam_smtp_proxy

Postfix Howto used:

http://www.howtoforge.com/virtual_po..._quota_courier

I am also using Greylisting to smack the spmmers around a bit.

Can anyone tell me if there are any issues that I could possibly run into? From the article it looks like you install and config and off you go. Would like to add this if possible. Would love to add this if it would help beat back the "canned meat by-product" people.
Reply With Quote
Sponsored Links
  #2  
Old 14th November 2006, 15:15
falko falko is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 41,711
Thanks: 1,899
Thanked 2,702 Times in 2,545 Posts
Default

I haven't tested this, but according to the ASSP tutorial the only change to Postfix is this one:

Quote:
Edit /etc/postfix/master.cf

Change :

Code:
smtp      inet  n       -       n       -       -       smtpd
to:

Code:
localhost:smtp   inet  n       -       n       -       -       smtpd
So if it doesn't work, undo this change, and your old setup should be working again.
__________________
Falko
--
Download the ISPConfig 3 Manual! | Check out the ISPConfig 3 Billing Module!

FB: http://www.facebook.com/howtoforge

nginx-Webhosting: Timme Hosting | Follow me on:
Reply With Quote
  #3  
Old 14th November 2006, 19:05
Slicer Slicer is offline
Member
 
Join Date: Jul 2006
Posts: 41
Thanks: 2
Thanked 1 Time in 1 Post
Default Thanks Falko

Do you think this would add anything over what your Howto already does?

If it works that is one thing, but I don't want to be duplicating efforts already in place if it is not going to buy me anything. I worked hard on getting my setup right based on your Howto and being a bit of a mewbie, don't want to mess things up.

Thanks again for your response.

Slicer
Reply With Quote
  #4  
Old 15th November 2006, 14:46
ovis ovis is offline
Junior Member
 
Join Date: Oct 2005
Posts: 28
Thanks: 0
Thanked 2 Times in 2 Posts
Smile Safety Rollback

Your right, there is some double effort in fighting spam here. And initialy it doesnt work so nice. But when the filter gets seeded with spam/ham it gets better and better. Maby it makes spammassasin obsolete etc. But it still works.

So if it dont work for you, you can still go back to the old situation. I figure thats handy if you have a big ISPConfig system. If your statifiyed with the proxy you might uninstall spamassassin etc. But it wont hurd to have it as a backup.

The essence of a proxy is an inbetween strategie where dirt gets kicked at the port of entance. In this way it can be an entirely different machine too.

If you do not want to have all kind of problems in the begin you just have to run in test mode. Its in the interface. after a week you go to "real" mode.

There is a email Interface so your users can interactively modifiy the whitelists seed the spam filter and notify false positives.

And as Falco said just remove
Code:
localhost:
in /etc/postfix/master.cf and your back where you begon.

Gr Ovis
Reply With Quote
  #5  
Old 15th November 2006, 16:30
falko falko is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 41,711
Thanks: 1,899
Thanked 2,702 Times in 2,545 Posts
Default

If you want to go absolutely sure, you can make an image of your system before you make any changes: http://www.howtoforge.com/howto_linux_systemimager
__________________
Falko
--
Download the ISPConfig 3 Manual! | Check out the ISPConfig 3 Billing Module!

FB: http://www.facebook.com/howtoforge

nginx-Webhosting: Timme Hosting | Follow me on:
Reply With Quote
  #6  
Old 15th November 2006, 17:07
Slicer Slicer is offline
Member
 
Join Date: Jul 2006
Posts: 41
Thanks: 2
Thanked 1 Time in 1 Post
Default Thanks!!

Thanks for the feedback guys!

One last question (hopefully). I also have greylisting turned on. This has been a huge help in my current config. Should I disable this after I install ASSP as it appears to be built in?

Thanks again,

Slicer
Reply With Quote
  #7  
Old 16th November 2006, 01:20
ovis ovis is offline
Junior Member
 
Join Date: Oct 2005
Posts: 28
Thanks: 0
Thanked 2 Times in 2 Posts
Wink Just try out

I dont see why you can run both systems at the same time. After some monitoring you can decide if your current solution become obsolete and remove it. You might concider it a backup solution. Spam/Virus fighting consist of combining complementary systems.

As far as i know ASSP makes a greylist and uploads it when you run updatespamdb.pl and have all sort of lists too (white / black / red)

Let me know about your experiences.

Gr Ovis
Reply With Quote
  #8  
Old 20th November 2006, 21:50
stik stik is offline
Junior Member
 
Join Date: Jun 2006
Posts: 4
Thanks: 1
Thanked 0 Times in 0 Posts
Default ASSP Installation

Can this be installed on a separate server? I already have an ISPConfig server running quite nicely, and would like to have the added protection of ASSP.

What kind of changes in the install and configuration would have to be done?

Thanks!
Reply With Quote
  #9  
Old 21st November 2006, 13:56
nbc nbc is offline
Junior Member
 
Join Date: Nov 2006
Location: Northern Virginia
Posts: 13
Thanks: 0
Thanked 0 Times in 0 Posts
Send a message via AIM to nbc
Default Adding this to an existing system??

I am running Fedora with Postfix and SpamAssassin. I've added the greylisting module as well. If I install this software, do I need to remove or disable SpamAssassin or can I just continue to let it run for now?

thanks,

nbc
Reply With Quote
  #10  
Old 21st November 2006, 15:03
nbc nbc is offline
Junior Member
 
Join Date: Nov 2006
Location: Northern Virginia
Posts: 13
Thanks: 0
Thanked 0 Times in 0 Posts
Send a message via AIM to nbc
 
Default Where to install?

A related question to the one above... I'm looking at the how-to and it says to tell the program to listen at 123.123.123.123:25 and forward to localhost:25. But does that mean I can't run this on my mail server? If my mail server IS 123.123.123.123 - then that seems to imply an infinite loop. So I'm a bit confused. My setup is that I have a Linux box running as a mail and web server and a firewall, and it is connected directly to my cable modem. It runs postfix to receive mail. How do I set ASSP up to intercept mail coming in to postfix? I was assuming I would run ASSP directly on my mail server machine - am I missing something simple here??

thanks

nbc
Reply With Quote
Reply

Bookmarks

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT +2. The time now is 09:52.


Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.