OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
From: Serban Mihai (mihaisgecadsoftware.com)
Date: Wed Feb 06 2002 - 19:28:04 CST

  • Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

    Hi,
    Just add one more option in the master.cf file:

    localhost:10026 inet n - y - - smtpd
            -o content_filter= -o myhostname=second.smtp.server

    and then: telnet 127.0.0.1 10026
    should display this:

    Escape character is '^]'.
    220 second.smtp.server ESMTP Postfix

    Regards,
    Mihai

    Mike MacCana wrote:
    >
    > Howdy all,
    >
    > After some thought, and a couple of hassles, I've decided to implement
    > my existing virus scanning SMTP server in a more secure fashion (thank
    > you Ralf Hildebrandt).
    >
    > The setup outlined below should work like the following...
    >
    > * Postfix accepts incoming mails on port 25 and leads them to a
    > content_filter.
    > * The content_filter is now Sophos MailMonitor, which takes over the
    > mails on port 10025.
    > * After the mails have been scanned, they are placed back to postfix on
    > port 10026, and finally postfix delivers the mails.
    >
    > The problem I'm having is this:
    >
    > Feb 7 10:55:53 hard postfix/smtp[7608]: 33CA37BFF4:
    > to=<testhard.office.cyber.com.au>, relay=127.0.0.1[127.0.0.1], delay=0,
    > status=bounced (mail for 127.0.0.1:10025 loops back to myself)
    >
    > Sophos uses itself as a gateway to the real SMTP server - ie, when you
    > telnet into Sophos on 127.0.0.1:10025, it looks like you've telnetted
    > into Postfix on 10026.
    >
    > Any idea on how I can fix the situation?
    >
    > Mike
    >
    > The instructions I wrote myself are listed below for reference...
    >
    > Configuring Postfix and MailMonitor
    > ------------------------------------
    > 1. Stop the postfix service:
    >
    > service postfix stop
    >
    > 2. Edit the file /etc/postfix/main.cf and insert this line:
    >
    > content_filter = smtp:127.0.0.1:10025
    >
    > This tells postfix to pass incoming messages to a content filter, which
    > is the program listening on 127.0.0.1 port 10025
    >
    > 4. Edit the file /usr/local/sophos/mmsmtp/mmsmtp.cfg and change
    >
    > interfaces = 127.0.0.1:10025
    >
    > smtp_server_address = 127.0.0.1
    >
    > smtp_server_port = 10026
    >
    > This tells MailMonitor to listen on port 10025 of localhost. After it
    > has processed the mails, send the messages which haven't bounced to port
    > 10026 of localhost
    >
    > 2. Edit the file /etc/postfix/master.cf and add a line:
    >
    > localhost:10026 inet n - y - - smtpd -o content_filter=
    >
    > This tells Postfix to start a second instance of itself, running on Port
    > 10026. This second version of postfix should NOT use the content filter,
    > but rather just deliver the messages as normal.
    >
    > 5. Start MailMonitor at boot time:
    >
    > chkconfig --level 345 mmsmtpd start
    >
    > 6. Edit the file /etc/aliases and make sure the aliases for the sophos
    > warning users are set up. Run newaliases when you're done.
    >
    > 7. Start the scanner by entering
    >
    > service mmsmtpd start
    >
    > 8. Start the postfix services by entering
    >
    > service postfix start
    >
    > The email server is now capable of scanning incoming mails.
    >
    > --
    > ------------------------------------------
    > Mike MacCana Support Consultant
    > C Y B E R S O U R C E
    > Level 9, 140 Queen St Melbourne 3000
    > Ph : +61 3 9642 5997 Fax: +61 3 9642 5998
    >
    > -
    > To unsubscribe, send mail to majordomopostfix.org with content
    > (not subject): unsubscribe postfix-users
    >

    -- 
    Software Developer - GeCAD The Software Company
    Tel./Fax: +40-1-321.78.03; Hotline: +40-1-321.78.59;
    Please visit http://www.gecadsoftware.com; http://www.ravantivirus.com
    -
    To unsubscribe, send mail to majordomopostfix.org with content
    (not subject): unsubscribe postfix-users