Yadda ake Amfani da Sagator, Kofar Antivirus/Antispam, don Kare Sabar Saƙon ku
Mun karanta game da cututtukan ƙwayoyin cuta (sababbin suna fitowa koyaushe) kuma ko ta yaya ke shafar saƙon spam a kullun. Duk da yake akwai yalwar mafita na kyauta da na kasuwanci (samuwa a matsayin aikace-aikacen abokin ciniki) don duka ɓarna, masu gudanar da tsarin suna buƙatar samun dabarun magance waɗannan barazanar da kyau kafin su isa akwatin wasiku na masu amfani.
Ɗaya daga cikin irin waɗannan dabarun shine kamar kafa ƙofar riga-kafi/antispam. Kuna iya tunanin wannan kayan aikin azaman tsaka-tsaki (ko tace) tsakanin duniyar waje da hanyar sadarwar ku ta ciki gwargwadon abin da ke cikin imel.
Bugu da ƙari, idan kun yi la'akari da shi, yana da sauƙin shigarwa da kuma kula da software guda ɗaya a cikin na'ura ɗaya (sabar saƙon imel) fiye da yin haka akan na'urori da yawa daban-daban.
A cikin wannan labarin za mu gabatar muku da Sagator, ƙofar riga-kafi/ anti-spam don sabar saƙon saƙon Linux da aka rubuta cikin Python. Daga cikin wasu abubuwa, Sagator yana ba da bayanan shiga bayanai, amfani da kididdiga, da rahotannin yau da kullun ga masu amfani. Wannan ya ce, bari mu fara.
Shigar da Sagator da Postfix Mail Server
Don shigar da Sagator a cikin CentOS/RHEL 7, zazzage kuma shigar da fakitin RPM masu zuwa. Sabuwar sakin beta (7) ta haɗa da tallafi da gyare-gyare don systemd - shi ya sa muka gwammace mu sanya shi ta amfani da wannan hanyar maimakon zazzage fakitin daga ma'ajiyar.
# rpm -Uvh https://www.salstar.sk/pub/sagator/epel/testing/7/i386/sagator-core-1.3.2-0.beta7.el7.noarch.rpm # rpm -Uvh https://www.salstar.sk/pub/sagator/epel/testing/7/i386/sagator-1.3.2-0.beta7.el7.noarch.rpm
Idan kuna yin wannan shigarwa akan sabobin sabar, lura cewa ana buƙatar shigar da wasu fakiti da yawa azaman abin dogaro, daga cikinsu zamu iya ambata ClamAV, da SpamAssassin.
Bugu da ƙari, ƙila za ku so ku kuma shigar da Rrdtool, abin amfani don ƙirƙira da nunin zanen rana/mako/wata/shekara na jimlar/mai tsabta/ƙwayar cuta/lambar spam na imel.
Waɗannan zane-zanen za su kasance a cikin /var/www/html/sagator da zarar sabis ɗin da abubuwan dogaronsa sun cika aiki.
# yum install epel-release # yum install postfix spamassassin clamav clamav-scanner clamav-scanner-systemd clamav-data clamav-update rrdtool
Wannan ba abin mamaki bane saboda muna buƙatar sabar wasiku, kuma riga-kafi/antispam software Sagator na iya haɗawa zuwa. Bugu da ƙari, ƙila mu buƙaci shigar da kunshin mailx, wanda ke ba da ayyukan MUA (Wakilin Mai Amfani, wanda kuma aka sani da Wakilin Imel).
A cikin Debian da Ubuntu, kuna buƙatar shigar da Sagator daga fakitin .deb da aka riga aka haɗa, wanda zaku iya zazzagewa daga nan kuma ku shigar kamar haka:
# wget https://www.salstar.sk/pub/sagator/debian/pool/jessie/testing/sagator-base_1.3.2-0.beta7_all.deb # wget https://www.salstar.sk/pub/sagator/debian/pool/jessie/testing/sagator_1.3.2-0.beta7_all.deb # dpkg -i sagator-base_1.3.2-0.beta7_all.deb # dpkg -i sagator_1.3.2-0.beta7_all.deb
# wget https://www.salstar.sk/pub/sagator/ubuntu/pool/trusty/testing/sagator-base_1.3.2-0.beta7_all.deb # wget https://www.salstar.sk/pub/sagator/ubuntu/pool/trusty/testing/sagator_1.3.2-0.beta7_all.deb # sudo dpkg -i sagator-base_1.3.2-0.beta7_all.deb # sudo dpkg -i sagator_1.3.2-0.beta7_all.deb
Kamar yadda ya kasance tare da CentOS, kuna buƙatar shigarwa da daidaita sabar saƙon, SpamAssassin, da fakitin ClamAV:
# aptitude install postfix spamassassin clamav clamav-daemon -y
Kar a manta amfani da sudo a cikin Ubuntu.
Na gaba, ba tare da la'akari da rarraba ba, kuna buƙatar sabunta ma'anar ƙwayar cuta kafin fara ClamAV. Kafin yin shi, shirya /etc/clamd.d/scan.conf da /etc/freshclam.conf kuma share layin da ke gaba:
Example
Hakanan, a cikin /etc/clamd.d/scan.conf, tabbatar da cewa layin mai zuwa ba ya cika:
LocalSocket /var/run/clamd.scan/clamd.sock
A ƙarshe, yi
# freshclam
Kuma fara/kunna ClamAV, SpamAssassin, da Sagator:
# systemctl start [email # systemctl start spamassassin # systemctl start sagator # systemctl enable [email # systemctl enable spamassassin # systemctl enable sagator
Kuna iya bincika log ɗin Sagator don tabbatar da cewa an fara sabis ɗin daidai:
# systemctl status -l sagator
ko don ƙarin bayani,
# tail -f /var/spool/vscan/var/log/sagator/sagator.log
An kwatanta umarnin da ke sama a cikin hoto mai zuwa:
Ana saita Sagator a cikin Linux
Babban fayil ɗin sanyi yana nan a /etc/sagator.conf. Bari mu kalli ƙaramin ƙa'idodin umarnin da muke buƙatar saita don Sagator yayi aiki da kyau:
Mataki 1 - Za mu yi amfani da Sagator a cikin chroot, don haka tabbatar da cewa layin mai zuwa ba shi da wani bayani:
CHROOT = '/var/spool/vscan'
Mataki 2 - Tabbatar cewa umarnin LOGFILE yayi daidai da ƙimar mai zuwa:
LOGFILE = CHROOT + '/var/log/sagator/sagator.log'
Mataki 3 - Zaɓi riga-kafi da za a haɗa tare da Sagator. Don yin haka, tabbatar da layukan da aka haskaka a hoton da ke ƙasa ba su da wani bayani:
Yayin da kuke da 'yanci don zaɓar daga nau'ikan mafita na riga-kafi iri-iri, ClamAV yana ba da babban aiki da kwanciyar hankali. Kodayake za mu yi amfani da ClamAV a cikin wannan jagorar, da fatan za a tuna cewa fayil ɗin daidaitawa ya haɗa da umarnin don haɗa Sagator zuwa wasu maganin rigakafi/antispam.
Idan kun gama, gudu
# sagator --test
Don bincika fayil ɗin sanyi. Babu fitarwa abu ne mai kyau! In ba haka ba, magance duk wani kurakurai da aka samu kafin ci gaba.
Haɗa Sagator tare da Postfix
Don haɗa Sagator tare da Postfix, tabbatar cewa layin masu zuwa suna cikin /etc/postfix/main.cf da /etc/postfix/master.cf:
mynetworks = 127.0.0.0/8 content_filter = smtp:[127.0.0.1]:27
#smtp inet n - n -- smtpd 127.0.0.1:26 inet n - n - 30 smtpd -o content_filter= -o myhostname=localhost -o local_recipient_maps= -o relay_recipient_maps= -o mynetworks=127.0.0.0/8 -o mynetworks_style=host -o smtpd_restriction_classes= -o smtpd_client_restrictions= -o smtpd_helo_restrictions= -o smtpd_sender_restrictions= -o smtpd_data_restrictions= -o smtpd_recipient_restrictions=permit_mynetworks,reject -o receive_override_options=no_unknown_recipient_checks,no_header_body_checks -o smtpd_use_tls=no
Sannan sake kunna postfix kuma tabbatar an kunna shi don farawa ta atomatik akan taya:
# systemctl restart postfix # systemctl enable postfix
Yanzu za mu iya ci gaba da gwaji.
Gwajin Sagator
Don gwada Sagator, aika imel daga tushen mai amfani zuwa mai amfani gacanepa tare da jiki mai zuwa. Wannan ba wani abu ba ne kuma ba kasa da daidaitaccen GTUBE (Gwajin Jima'i don Babban Imel ɗin da ba a nema ba) wanda SpamAssassin ke bayarwa, kamar yadda aka nuna a hoton da ke ƙasa:
XJS*C4JDBQADN1.NSBN3*2IDNEN*GTUBE-STANDARD-ANTI-UBE-TEST-EMAIL*C.34X
Yanzu bari mu ga abin da ke faruwa lokacin da aka aiko da ƙwayar cuta azaman abin da aka makala. A cikin misali mai zuwa za mu yi amfani da gwajin EICAR (duba wannan shigarwar Wikipedia don ƙarin cikakkun bayanai):
# wget http://www.eicar.org/download/eicar.com # mail -a eicar.com gacanepa
Sannan duba log ɗin:
# tail -f /var/spool/vscan/var/log/sagator/sagator.log
Ana mayar da imel ɗin da aka ƙi zuwa ga mai aikawa tare da sanarwa mai dacewa:
Menene kyau game da wannan? Kamar yadda kake gani, spam da ƙwayoyin cuta ba su taɓa sanya shi zuwa sabar saƙon da aka nufa da akwatunan wasikun masu amfani ba, amma an jefar da su ko ƙi a matakin ƙofa.
Kamar yadda muka ambata a baya, ana samun jadawali a http://:
Takaitawa
A cikin wannan labarin mun bayyana yadda ake shigarwa da kuma daidaita Sagator, ƙofar riga-kafi/antispam wanda ke haɗawa da kuma kare sabar saƙon ku.
Don ƙarin bayani da ƙarin ayyuka (akwai abubuwa da yawa ga wannan software mai ban mamaki fiye da yadda za mu iya rufewa sosai a cikin labarin guda!), Kuna iya so ku koma gidan yanar gizon aikin a http://www.salstar.sk/sagator.
Kamar koyaushe, kada ku yi jinkirin sauke mana layi ta amfani da fom ɗin sharhi da ke ƙasa idan kuna da wasu tambayoyi ko sharhi.
Godiya ta musamman ga Jan ONDREJ (SAL), mawallafin Sagator, saboda gagarumin goyon bayansa a lokacin da nake rubuta wannan labarin.