Virtual Architects Support Wiki

User Tools

Site Tools

You are here: start » internet » mail » mailcleaner_csf
Trace:
internet:mail:mailcleaner_csf

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision 		Previous revision
Next revision Both sides next revision
internet:mail:mailcleaner_csf [2020/09/21 11:59]
gcooper 		internet:mail:mailcleaner_csf [2021/02/08 09:22]
gcooper
Line 4: Line 4:
  
 See also **[[networking:firewall:csf|ConfigServer Security & Firewall (CSF)]]** See also **[[networking:firewall:csf|ConfigServer Security & Firewall (CSF)]]**
 +
 +See also **[[internet:mail:mailcleaner_ssl|MailCleaner LetsEncrypt Free SSL]]**
  
 **CSF CLI Commands**: https://wiki.centos-webpanel.com/csf-firewall-command-line **CSF CLI Commands**: https://wiki.centos-webpanel.com/csf-firewall-command-line
Line 22: Line 24:
  
 <file> <file>
-# We will use CSF for firewal, so exiting this script+# We will use CSF for firewall, so exiting this script
 logger "MailCleaner firewall disabled in /usr/mailcleaner/etc/init.d/firewall" logger "MailCleaner firewall disabled in /usr/mailcleaner/etc/init.d/firewall"
 exit 0 exit 0
Line 79: Line 81:
 <file> <file>
 vim /etc/csf/csf.allow vim /etc/csf/csf.allow
 +</file>
 +
 +<file>
 +# Network where you manage your MailCleaner from
 +10.0.0.0/24    # Management LAN
 +
 +# If you have a MailCleaner cluster server, allow it here
 +# MailCleaner Cluster Ports
 +tcp|in|d=22,3306_3307,5132|s=192.168.1.30
 +tcp|out|d=22,3306_3307,5132|d=192.168.1.30
 +udp|in|d=161|s=192.168.1.30
 +udp|out|d=161|d=192.168.1.30
 </file> </file>
  
Line 85: Line 99:
 <file> <file>
 vim /etc/csf/csf.ignore vim /etc/csf/csf.ignore
 +</file>
 +<file>
 +
 +10.0.0.0/24      # Management LAN
 +192.168.1.30     # MailCleaner #2
 </file> </file>
  
Line 111: Line 130:
 STOPFORUMSPAMV6 STOPFORUMSPAMV6
 GREENSNOW GREENSNOW
-</file> 
- 
-Processes you want LFD to ignore: 
- 
-<file> 
-vim /etc/csf/csf.pignore 
-</file> 
- 
-Add these lines at the bottom: 
- 
-<file> 
-cmd:/opt/apache2/bin/httpd -f /usr/mailcleaner/etc/apache/httpd.conf 
-cmd:/usr/bin/python /opt/greylistd/sbin/greylistd /usr/mailcleaner/etc/greylistd/greylistd.conf 
-cmd:SpamHandler 
-cmd:PrefTDaemon 
-cmd:StatsDaemon 
-cmd:MailWatch SQL 
-cmd:spamd child 
- 
-pcmd:MailScanner: .* 
-pcmd:/opt/clamav/sbin/clamd --config-file=/usr/mailcleaner/etc/clamav/clam.* 
-pcmd:/opt/clamav/bin/freshclam --user=clamav --config-file=/usr/mailcleaner/etc/clamav/freshclam.* 
-pcmd:/opt/mysql5/bin/mysqld --defaults-file=/usr/mailcleaner/etc/mysql/my_.* 
-pcmd:/usr/local/bin/spamd --socketpath=/var/mailcleaner/spool/spamassassin/spamd.sock.* 
-pcmd:/usr/local/bin/newsld --socketpath=/var/mailcleaner/spool/newsld/newsld.sock.* 
-pcmd:/opt/exim4/bin/exim -C /usr/mailcleaner/etc/exim/exim_stage.* 
-pcmd:/opt/exim4/bin/exim -C /var/mailcleaner/spool/tmp/exim/exim_stage.* 
-pcmd:/opt/dcc/libexec/dccifd -h/opt/dcc/var.* 
 </file> </file>
  
Line 221: Line 212:
 </file> </file>
  
-===== Start CSF and LFD =====+===== LFD =====
  
-Run this and check for obvious errors:+LFD is the 'log file daemon' It **monitors log files** looking for infractions and suspicious processes.  LFD is a huge part of why CSF is so effective. 
 + 
 +<note warning>You will almost certainly need to edit ''csf.pignore'' to eliminate warnings from normal system processes, even though   These processes can and will change over time with system updates and changes.</note> 
 + 
 +The ''lfd.log'' will show you the processes it is concerned about:
  
 <file> <file>
-csf -e && csf -s +tail /var/log/lfd.log
-lfd -e && lfd -s+
 </file> </file>
  
-You can restart CSF and LFD like this:+Processes you want LFD to ignore:
  
 <file> <file>
-csf -ra+vim /etc/csf/csf.pignore
 </file> </file>
  
-===== LFD =====+Add these lines at the bottom:
  
-LFD is the 'log file daemon' It **monitors log files** looking for infractions and suspicious processes.  LFD is a huge part of why CSF is so effective.+<file
 +cmd:/opt/apache2/bin/httpd -f /usr/mailcleaner/etc/apache/httpd.conf 
 +cmd:/usr/bin/python /opt/greylistd/sbin/greylistd /usr/mailcleaner/etc/greylistd/greylistd.conf 
 +cmd:SpamHandler 
 +cmd:PrefTDaemon 
 +cmd:StatsDaemon 
 +cmd:MailWatch SQL 
 +cmd:spamd child
  
-<note warning>You will almost certainly need to edit ''csf.pignore'' to eliminate warnings from normal system processes, even though   These processes can and will change over time with system updates and changes.</note>+pcmd:MailScanner: .
 +pcmd:/opt/clamav/sbin/clamd --config-file=/usr/mailcleaner/etc/clamav/clam.* 
 +pcmd:/opt/clamav/bin/freshclam --user=clamav --config-file=/usr/mailcleaner/etc/clamav/freshclam.* 
 +pcmd:/opt/mysql5/bin/mysqld --defaults-file=/usr/mailcleaner/etc/mysql/my_.* 
 +pcmd:/usr/local/bin/spamd --socketpath=/var/mailcleaner/spool/spamassassin/spamd.sock.* 
 +pcmd:/usr/local/bin/newsld --socketpath=/var/mailcleaner/spool/newsld/newsld.sock.* 
 +pcmd:/opt/exim4/bin/exim -C /usr/mailcleaner/etc/exim/exim_stage.* 
 +pcmd:/opt/exim4/bin/exim -C /var/mailcleaner/spool/tmp/exim/exim_stage.* 
 +pcmd:/opt/dcc/libexec/dccifd -h/opt/dcc/var.
 +</file>
  
-The ''lfd.log'' will show you the processes it is concerned about:+===== Start CSF and LFD ===== 
 + 
 +Run this and check for obvious errors:
  
 <file> <file>
-tail /var/log/lfd.log+csf -e && csf -s 
 +lfd -e && lfd -s 
 +</file> 
 + 
 +You can restart CSF and LFD like this: 
 + 
 +<file> 
 +csf -ra
 </file> </file>
internet/mail/mailcleaner_csf.txt · Last modified: 2024/01/12 06:15 by gcooper

Page Tools

Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 4.0 International
CC Attribution-Share Alike 4.0 International Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki