clamav、amavisd和SpamAssassin的安装

ClamAV是一个unix系统平台上的开源反病毒工具，它是特地为在邮件网关上进行邮件扫描而设计的。整套软件提供了许多的实用工具，包括一个可伸缩和可升级的多线程守护进程、一个命令行扫描工具和病毒库自动升级工具。DOIT博客C*["f$D hC za

1\dF7~X9Efx0SpamAssassin 是目前最好的、最流行的开源反垃圾邮件软件之一。它是一个邮件过滤器，使用了多种反垃圾邮件技术，如：文本分析、贝叶斯过滤、DNS黑名单和分布式协同过滤数据库等。

B&x[^*cy0amavisd-new是一个连接MTA和内容检测工具（诸如病毒扫描工具和SpamAssassin)的高性能接口程序，使用perl语言写成。它一般通过SMTP、ESMTP或者LMTP和MTA进行通讯，当然也可以借助于其它外部程序进行。同postfix（MTA）协同工作时表现尤佳。当它呼叫SpamAssassin进行内容过滤时，对于一封邮件只需要呼叫一次，而不管这封邮件将发往多少个收件人；同时，它亦会尽力保证实现每一位收件人的偏好设置，如接收/拒绝，检测/不检测，垃圾邮件级别等；它还会在邮件头部分插入spam相关信息。DOIT博客&|_ m4eLr

iPeu8H_E)@0一. 安装clamav-0.93

a KbAa)j2D8m0最新的clamav-0.93需要zlib-1.2.2以上的版本的支持，而RHEL4上的版本为zlib-1.2.1，因此您需要先升级zlibDOIT博客7bG+e;rM

1、安装zlib-1.2.3DOIT博客~5^.pk`4T9|6z

U`1\zn$D5m0#tar zvxf zlib-1.2.3.tar.gzDOIT博客C$\.b|7\,E
#cd zlib-1.2.3
p2G|,X'Vay F x0#./configure --prefix=/usr --shared
"]%Y#qx }ir0#make
!BVw6aw#Z#P4Z9@0#make testDOIT博客&qscvXnGw

2、安装clamav-0.93DOIT博客?S*ls ~r;nl0GG

d}@&[9P0添加ClamAV运行所需的组和用户：
:]&r2xkT;[O}0#groupadd clamav
&}z/n.ja| M1\0#useradd -g clamav -s /sbin/nologin -M clamavDOIT博客!vL J fIN

+[8sO Ee&\l0添加配合amavisd-new使用的用户amavisDOIT博客y!JD:n3AvT#j
#groupadd amavis
!Ou:f,c"|g0#useradd -g amavis -s /sbin/nologin -M amavisDOIT博客W&J4x8[?N@Z;x

#tar zxvf clamav-0.93.tar.gzDOIT博客 `"V]-`c([`(@
#cd clamav-0.93DOIT博客"HF _E,~3@z$H`aB"@
#./configure --prefix=/usr/local/clamav --with-dbdir=/usr/local/clamav/share --sysconfdir=/etc/clamavDOIT博客_)c$^,?;^
#make
~Ai`'{A5K0#make check
M:MM1QxC5K E0#make install

G6sj3OM)rT03、配置Clam AntiVirus：

编辑主配置文件：DOIT博客6KRHG+|x.Pl
#vi /etc/clamav/clamd.conf

0h$j\n2Di+x+|3_/aS0注释掉第八行的Example,如下：DOIT博客2kr3Eino(w.}K
# ExampleDOIT博客s*E%Y&Y,e)qH2Z

找到如下行DOIT博客fS!bOj5p;~'uUO
#LogFile /tmp/clamd.log
6X}X4[^s n3[G0#PidFile /var/run/clamd.pidDOIT博客KTI/jy2j5Y0^R
LocalSocket /tmp/clamd.socket
U%WTO2B^,m,H0#DatabaseDirectory /var/lib/clamav
2B*lG/BPZ1k8K0#User clamav
/fc#hF/r2[-t0修改为：
~m!A-Ad0F9{0o-WG0LogFile /var/log/clamav/clamd.log    #启用日志
;@6E_'{._0PidFile /var/run/clamav/clamd.pid   #保存监听进程标志符DOIT博客on^WS"pK
LocalSocket /var/run/clamav/clamd.socket
&HD@1G!{rN4Bn0DatabaseDirectory /usr/local/clamav/share    #数据库目录
|)} A*Gl(iGM6L M!Re0User amavis

启用以下选项DOIT博客fjN#wBnYkE
LogSyslog yesDOIT博客zw:ad#k:fZn\n
LogFacility LOG_MAIL
6[k*k6Xw0LogVerbose yesDOIT博客\2U,pf _
StreamMaxLength 20M (后面的数值应该与邮件服务器允许的最大附件值相一致)DOIT博客tc{#fv6A?

编辑更新进程的配置文件(病毒库更新)DOIT博客%w Sqp9e&w.vpzn
#vi /etc/clamav/freshclam.confDOIT博客$fs5YFmw7K%|b

注释掉Example，如下:
L_'D(YR0# ExampleDOIT博客~`tr*xb:S{*M

Xop2N,^s{W0找到如下行
1~/U&[Lhw]1o0#DatabaseDirectory /var/lib/clamav
8a(_5u)r;Q5ik0#UpdateLogFile /var/log/freshclam.log
O'K0@ {viI7t_0PidFile /var/run/freshclam.pidDOIT博客5r+o&X$Rc3i4Ih
分别修改为：DOIT博客jLQK]\E
DatabaseDirectory /usr/local/clamav/shareDOIT博客M4^,~z+Zt#U
UpdateLogFile /var/log/clamav/freshclam.logDOIT博客QR%X/dDd{6N-c7q:l
PidFile /var/run/clamav/freshclam.pid

3V$}.J|0\5xSr0启用以下选项：DOIT博客s%eIR+q)H G4c
DatabaseMirror db.XY.clamav.net (这里也可以把XY改成您的国家代码来实现，比如，我们用cn来代替)
I6DH&EB%G ~2r t0LogSyslog yes
(z5U1`q @0LogFacility LOG_MAILDOIT博客O$b8aLh:t
LogVerbose yesDOIT博客3JW6lIz Q0v K

4、建立日志所在的目录、进程与socket所在的目录，并让它属于clamav用户：DOIT博客p8Wym'I4D@

# mkdir -v /var/log/clamav
8i qZwLh]/N0# chown -R amavis.amavis /var/log/clamav
[7y1t5PAEz0# mkdir -v /var/run/clamav
nt%F1iIN~*E,w.^0# chmod 700 /var/run/clamavDOIT博客1UQ0Z2R K(gz
# chown -R amavis.amavis /var/run/clamav

"rHX7N1SQ0建立freshlog的日志文件
'P{$?&y0@K0#touch /var/log/clamav/freshclam.log
u1GMAz7Lea _e0#chown clamav.clamav /var/log/clamav/freshclam.log

5、配置crontab，让Clam AntiVirus每小时检测一次新的病毒库：

H&?{8}6`8SD0# crontab -eDOIT博客3K9gy~,Y6Wt8M
添加：DOIT博客8y5N;|hj-f {r
37 * * * * /usr/local/clamav/bin/freshclam

*i/^7Y7g7fz)P06、配置库文件搜索路径：

^,u(G T7xe6y0# echo "/usr/local/clamav/lib" >> /etc/ls.so.confDOIT博客w!VL@V7VU
# ldconfig -v

7、配置clamav开机自动启动DOIT博客6o4yR3`qe5j @~

# cp contrib/init/RedHat/clamd /etc/rc.d/init.d/clamdDOIT博客G$`(V6Ok8aYK
# cp contrib/init/RedHat/clamav-milter /etc/rc.d/init.d/clamav-milter
"^0x wEn&Y0# chkconfig --add clamdDOIT博客&@O*u@r
# chkconfig --add clamav-milterDOIT博客8R(qZ*g1JZL*|L
# chkconfig --level 2345 clamd on
c ?vXn}:s7|0# chkconfig --level 2345 clamav-milter on

编辑/etc/rc.d/init.d/clamd，将服务进程的路径指向刚才的安装目录DOIT博客%k3x-A0h#Fp`H%AI
#vi /etc/rc.d/init.d/clamdDOIT博客!Y,dG;u8G
找到如下行DOIT博客lrN+R F!`/Ju9bB
progdir="/usr/local/sbin"
}y%qKO F0修改为：
9k6U,q%q-Si,d:xr4^0progdir="/usr/local/clamav/sbin"DOIT博客,iR^` _ _&K%e

({4\maR;bIJ7w`0启动clamdDOIT博客~tuAS-xp
#service clamd start

二. 安装Spamassassin-3.2.4DOIT博客8O0?qZ%y

1、依赖关系的解决，安装Spamassassin需要很多perl模块的支持，以下是所需模块列表及安装方法,各软件包都可从CPAN取得；

Kfi*\DYl|0必须的软件包：
O9R:}` fe)C!K:u0Digest::SHA1DOIT博客$dvA;Q H/~&M6l
HTML::Parser >=3.43DOIT博客'o9KYv4n_!J'N&i"h
Net::DNS >= 0.34
-D#L/e!l#e,_@0LWP (aka libwww-perl)DOIT博客4[Q6Cl)T{
HTTP::Date
't%nXW;ME/b0IO::Zlib >= 1.04
8{7KE/},Z0l/hH0Archive::Tar >=1.23DOIT博客_/Bt^"Y(y!dv T

3d$PO`H0o$u0可选的软件包:
yB,N i6D7Jl0MIME::Base64
,tn1m0V;R)_j0DB_FileDOIT博客rIzF fA6\(Z
Net::SMTP
4HV i1D#L7\0Mail::SPF 或 Mail::SPF::QueryDOIT博客|&Ct ?(^,K
IP::Country::FastDOIT博客 f L U8N ~ BUJ7V
Net::Ident
E/O2TmJ`7jyy0IO::Socket::INET6DOIT博客W3u%x7y2IE
IO::Socket::SSLDOIT博客Cu)l%}NyE^2X
Compress::ZlibDOIT博客$aV`@;t$?7I
Time::HiRes
^9fC } PI-x2x0Mail::DKIM
%IaT3v1|cTW)k0Mail::DomainKeysDOIT博客3wKGlp"Qq
DBI *and* DBD driver/modules
.ob}/?"W,[;Y/A!Rb.Q0Encode::Detect
_9h&Clqej{0Apache::TestDOIT博客P/_uxv:v4M
Razor2

推荐使用CPAN自动安装（你的主机要能连上Internet），它能够自动下载安装，并能解决安装过程中的依赖关系。您可以使用类同的以下的命令来进行安装:DOIT博客p;M.i[Z!Zr5N(vE5g
#perl -MCPAN -e shell
8T*OWk$z%Lf#v0cpan> o conf prerequisites_policy ask
*hm U4N#Y:L0cpan> install Digest::SHA1DOIT博客g)b2l.h!r"`2\wnC)Q
..................DOIT博客x P:l$?|{*N$\([

2~K OZ1Z A0如果您的主机无法直接连接到Internet，您也可以到http://search.cpan.org/上搜索下载所需要的软件包，而后使用类同的下列命令安装：DOIT博客|`Rs-@!A`%{"p:v

/qx}kE_+Dl3]0#tar zxvf 软件包.tar.gzDOIT博客MvmU:vvyn
#cd 软件包DOIT博客3d({l Y4RhUp-ycR
#perl Makefile.PL
%E)[zZjzl?0#makeDOIT博客P$k?-hOl xB[
#make test
s pZfFF'Y0#make install
!EE&P!C0[ s#_0说明：某些软件包安装的过程中可能需要已经列出的其它软件包的支持（可以先尝试安装Spamassassin,然后按提示补充所需软件包），请安照提示自行调整安装顺序。另外，其中有个软件包安装过程中可能要求声明环境变量LC_ALL，此时，可输入如下命令，并重新进行软件包的编译安装即可。DOIT博客"qS/CQsAr"k
#export LC_ALL=CDOIT博客,z7o5o PT2d:\(]I

BL(GY1e6^)p.pZaF8d02、安装Spamassassin-3.2.4

#tar jxvf Mail-SpamAssassin-3.2.4.tar.bz2DOIT博客q1Z6~@$H
#cd Mail-SpamAssassin-3.2.4DOIT博客RD-fz`)fZ-X N
#perl Makefile.PL
W|XsO)_0#make
f*Z,d7\!Ab*P$d0#make checkDOIT博客u&`@+\)GE@RQ
#make install

#Y(Tq9slB03、编辑主配置文件/etc/mail/spamassassin/local.cf

G2FD_n;]-~ L`0可以通过这里(http://www.yrex.com/spam/spamconfig.php)自动生成配置文件.DOIT博客A.dM.TEw*H

-J:|8F:}p0# SpamAssassin config file for version 3.x
'oa7m m_/I|0# NOTE: NOT COMPATIBLE WITH VERSIONS 2.5 or 2.6
s0BVH(T0# Seehttp://www.yrex.com/spam/spamconfig25.phpfor earlier versionsDOIT博客)B7^z4H!\q7|GX
# Generated byhttp://www.yrex.com/spam/spamconfig.php(version 1.50)
6as6Y-P$ab;|I N9I9k0DOIT博客'Q@#I`)yn
# How many hits before a message is considered spam.DOIT博客+|uC5Q\/S
required_score           10.0
5Y\G+GG6|~Yi {|0DOIT博客3t0Kd7M P
# Change the subject of suspected spam
M.d,gp r0rewrite_header subject         [垃圾邮件]DOIT博客-rf J%MMV&og
DOIT博客Z-U6P"I%r*j.a
# Encapsulate spam in an attachment (0=no, 1=yes, 2=safe)DOIT博客+Wg)M([CM
report_safe             1
WA{c[-f{tm0
`-VwzG!dk0# Enable the Bayes systemDOIT博客VQV-V pc-g
use_bayes               1
4c#h}Kq!h#c0
6OQx4DT'j_2Xc0# Enable Bayes auto-learning
yTn Y7ZJ0bayes_auto_learn              1DOIT博客?QFiMU3XM6A Y
DOIT博客Ji"M'CP,KI;md4_
# Enable or disable network checks
.CiKT@0skip_rbl_checks         0DOIT博客$AbWT)Ai8k!J rwT
use_razor2              1DOIT博客 vI(h|7a7fQc2?
use_pyzor               1DOIT博客~)by`[P_ Dn
AK(u;`;z*e#dqW0z0# Mail using languages used in these country codes will not be marked
#VNLn%J2Y-m(hA0# as being possibly spam in a foreign language.DOIT博客qz!S&gbCJu
#ok_languages            allDOIT博客0Y d6E/TL
DOIT博客]^L+J#xsY4Vn
# Mail using locales used in these country codes will not be markedDOIT博客PD|n:gEt-tq
# as being possibly spam in a foreign language.DOIT博客,KiK,GAA
ok_locales              allDOIT博客(z F9Ycx2b IO.u,X

^:I%VI rK_04、测试spamassassin

M*tzR J,IXKk0#spamassassin -t < sample-nonspam.txt > nonspam.outDOIT博客A1B?~7z9jk s.r
#spamassassin -t < sample-spam.txt > spam.outDOIT博客;xJKz(_4b hu2iOt

查看测试结果：

#less nonspam.out
7bAA1dWXD0#less spam.outDOIT博客$]TR_no&L

5、检查配置文件

L$h*u#x#v s4a0#spamassassin -d --lintDOIT博客N*a0i*};j8m(M

6、启动进程，并将其加入到自动启动队列DOIT博客~]`'|b3W \'dT1n

o/M,zqfv0#/usr/bin/spamd -d
1Ywg/l5t {0#echo "/usr/bin/spamd -d" >> /etc/rc.local

7、增加中文反垃圾邮件支持

从网上取得规则表
1BY s kg7~[vF-N0# wget -N -P /usr/share/spamassassinhttp://www.ccert.edu.cn/spam/sa/Chinese_rules.cf
)Q0BQl%dTx0将cf文件复制到/usr/share/spamassassin下DOIT博客;@mN2`K7cD
重启spamassassinDOIT博客5`2fh Gfs3q

三. 安装amavisd-new-2.5.4

Q jy%A-Q"i"S01、依赖关系的解决DOIT博客b8R{0Y)V3?&v

Fhm-hx2kmV @F0以下为官方声明所必须的软件包列表，你可以采用类同安装Spamassassin一节中的perl模块的安装方法进行安装

N_Mxe[ fh*HP0Archive::Zip   (Archive-Zip-x.xx) >=1.14DOIT博客.OZZE3WKd
Compress::Zlib (Compress-Zlib-x.xx) >=1.35
0\$y:v2Vz%E0Convert::TNEF (Convert-TNEF-x.xx)
3KVI(xdz/p#M3M0Convert::UUlib (Convert-UUlib-x.xxx) >=1.08
H*jL+q4?T9r0MIME::Base64   (MIME-Base64-x.xx)
T0d p?)Qq0MIME::Parser   (MIME-Tools-x.xxxx)
'@{ QTN0Mail::Internet (MailTools-1.58 or later have workarounds for Perl 5.8.0 bugs)
M _(jf.P R&|S8r+t)G0Net::Server    (Net-Server-x.xx) (version 0.88 finally does setuid right)DOIT博客vD5g7v,bUCmS:C
Digest::MD5    (Digest-MD5-x.xx) >=2.22DOIT博客FNV(h"Z`6e\@
IO::Stringy    (IO-stringy-x.xxx)DOIT博客#P'PFKXg-\8Q
Time::HiRes    (Time-HiRes-x.xx) >=1.49DOIT博客%M&L.tX;w _/XZ[9H}
Unix::Syslog   (Unix-Syslog-x.xxx)DOIT博客2Rb%B[;c
BerkeleyDB     with bdb library >=3.2

^/NK"@zHA02、安装amavisd-new-2.5.4DOIT博客6Kv X^T aB7B?

b? IS#Yk$W&Wf H0创建运行时目录，并赋予amavis用户（前文中所建）
O!q$_%wJch0# mkdir -pv /var/amavis/{tmp,var,db,home}
C7dd#Y$R:h(n{)\z b0# chown -R amavis:amavis /var/amavis
0[~#D7e rYl0#chmod -R 750 /var/amavis

AVp'~/zKj2W0#tar zxvf amavisd-new-2.5.4.tar.gzDOIT博客:b~U;E4Z
#cd amavisd-new-2.5.4DOIT博客)m~1]!x5T

拷贝服务端至$PATH中指定的目录，推荐拷贝至/usr/local/sbin：
{Nr)e7`6J yP0#cp amavisd /usr/local/sbin/
k zO6C(Md0#chown root /usr/local/sbin/amavisd
/K1znc3E.Pvl6~0#chmod 755 /usr/local/sbin/amavisdDOIT博客cDfmqC*{5Hg

:I$~\/fV!r0拷贝主配置文件至/etc，并修改相应的权限：DOIT博客Me^6R?*YGP;K4~
#cp amavisd.conf /etcDOIT博客 ng&umg$y*p
# chown root:amavis /etc/amavisd.confDOIT博客&@%J:YQp
# chmod 640 /etc/amavisd.confDOIT博客@:D h!S9Cv/k G

HcSd&U5u0创建amavisd运行中所需要的隔离区域：DOIT博客@GZbA1t8W
# mkdir -v /var/virusmailsDOIT博客zo2[SlSY
# chown amavis:amavis /var/virusmails/DOIT博客"Vt&T_8YqUf
# chmod 750 /var/virusmails/

3、编辑主配置文件
i&CAN:]2N(^0#vi /etc/amavisd.confDOIT博客v-Rb]Iry)[3m3r/@

确保您的如下选项的值如下文所示：
V%[ L-YqRef0$daemon_user = 'amavis';
5nS z$Wq,\-IFfS0$daemon_group = 'amavis';DOIT博客&nk{*jod
$mydomain = 'test.com'; (此处可更改为您集体的域)DOIT博客6sk1V;ZHO1jk

$virus_admin               = "postmaster\@$mydomain";
"^'ho5_$U&m?0$mailfrom_notify_admin     = "postmaster\@$mydomain";
}ZM kJf)}r0$mailfrom_notify_recip     = "postmaster\@$mydomain";
`~(S0uj`O\y0$mailfrom_notify_spamadmin = "postmaster\@$mydomain";DOIT博客 XIf \qr
$mailfrom_to_quarantine = '';

%^6]V.c-NY}}0virus_admin_maps => ["postmaster\@$mydomain"] (指定报告病毒和垃圾邮件时发送系统邮件的用户身份)DOIT博客4T2K p7v_D
spam_admin_maps => ["postmaster\@$mydomain"]

;Vl[`Q+h4U0$sa_tag_level_deflt = 2.0; #此处可以设置垃圾邮件分值相关操作定义
{o+?;I(T_*?R0$sa_tag2_level_deflt = 6.2; DOIT博客k"H"y%v b)]'S+C5y
$sa_kill_level_deflt = 6.9;
Z%v;pA+OY-x0$sa_dsn_cutoff_level = 10; DOIT博客_4Jd"wj3K FN#My f$n

:A#_+Z3Y9K3\0启用ClamAV,(大概在第355行)去掉如下行前的注释符:
j!vZ|t0~}+}0#['ClamAV-clamd',DOIT博客!F/~0t&u#p.m
#     \&ask_daemon, ["CONTSCAN {}\n", "/var/run/clamav/clamd"],DOIT博客]M.xc7ldU
#    qr/\bOK$/, qr/\bFOUND$/,DOIT博客Xm*X/y(E|k!If
#      qr/^.*?: (?!Infected Archive)(.*) FOUND$/ ],DOIT博客n7cz.nH
#     ['Mail::ClamAV', \&ask_clamav, "*", [0], [1], qr/^INFECTED: (.+)/],DOIT博客!J/SO(IPA)t1a[6] r

并将如上行中的/var/run/clamav/clamd修改为:/var/run/clamav/clamd.socketDOIT博客f!t*O M/iz8aC\;h

DOIT博客V*\!TYO3K$e
注意: 安装运行以来,发现原SA的配置文件中定义的分值没起做用,都以本配置文件为准,对此还需要进一步了解!!!DOIT博客Vq"_:Oi9q

4、测试启动DOIT博客gtt[ci

#/usr/local/sbin/amavisd

您也可以按如下命令调试启动DOIT博客9moaE/L~Eip
#/usr/local/sbin/amavisd debug

4JzLk.K-n7[_05、修改postfix的配置，让它能调用amavisd，以实现病毒及垃圾邮件的过滤DOIT博客_9b#`Q%|Y1?2^)G;D E:c-w

#vi /etc/postfix/master.cf
g#X2J#fuC*S_0在文末添加如下内容：

# ==========================================================================
P;uc'M!xe4n:R8\r_0# service type private unpriv chroot wakeup maxproc command + args
%R5p$^Invw/W0#               (yes)   (yes)   (yes)   (never) (100)
9]`nNx+eB0# ==========================================================================
? s"y9Tmo7@t0#
:rt6{q'vI;B9_0amavisfeed unix    -       -       n       -       2     smtp
g"BV+@3Pi(X0    -o smtp_data_done_timeout=1200DOIT博客6aZ^B3eu
    -o smtp_send_xforward_command=yes
8o3FY$i-G c$YU%l0    -o disable_dns_lookups=yes
~1e7_8`-^)I-N!uWC t.v0    -o max_use=20
,Zi-nAw{G j-\Y%B0#DOIT博客o(i:^E3j(Vy8t
127.0.0.1:10025 inet n    -       n       -       -     smtpd
j J6ef}wi0    -o content_filter=DOIT博客2f:hY:?'S(Z4d}J#?
    -o smtpd_delay_reject=no
?.^f:SV*C0    -o smtpd_client_restrictions=permit_mynetworks,rejectDOIT博客 R%l8S7R]
    -o smtpd_helo_restrictions=DOIT博客UtH1w5cn9D[ y
    -o smtpd_sender_restrictions=DOIT博客|gQM9e!{5]qKy|
    -o smtpd_recipient_restrictions=permit_mynetworks,rejectDOIT博客wp,sH:_`,h)hB,W
    -o smtpd_data_restrictions=reject_unauth_pipeliningDOIT博客$g$F!E!\F0H
    -o smtpd_end_of_data_restrictions=
9@1X2b:o lsg0    -o smtpd_restriction_classes=
pm(c^bf2u0    -o mynetworks=127.0.0.0/8
eg yM7YC9Y!Xe%D2u0    -o smtpd_error_sleep_time=0DOIT博客 sox0V;O]8v
    -o smtpd_soft_error_limit=1001DOIT博客%z3ui#_6C;l
    -o smtpd_hard_error_limit=1000DOIT博客8{ML%v0`J*E`8T&Z S
    -o smtpd_client_connection_count_limit=0
&v7o{Bo\0    -o smtpd_client_connection_rate_limit=0
"[:J&t^(g_4`0    -o receive_override_options=no_header_body_checks,no_unknown_recipient_checks,no_miltersDOIT博客:Q%]wkKm hd
    -o local_header_rewrite_clients=DOIT博客;IV j3Z*mv V-D

hR^+B D0说明：注意每行"-o"前的空格；

{Y'i$q v$Q$vr0#vi /etc/postifx/main.cfDOIT博客:kBt3j5C8l
在文末添加如下行：DOIT博客 JY@*ch;L!e
content_filter=amavisfeed:[127.0.0.1]:10024DOIT博客 Nt$@gmac

4、让postfix重新加载主配置文件，并查看启动情况DOIT博客lJzB'Xtc$?

ov"Z*sge:Ld0# postfix reload && tail -f /var/log/maillog

5、查看amavisd是否在监听10024端口，并测试服务启动情况：

9rXz&nZkMb0# telnet localhost 10024
uE c7}$D@2h6U0Trying 127.0.0.1...DOIT博客~o3O6Bpq R?N
Connected to localhost.localdomain (127.0.0.1).
e0kg3rtt)v)I0Escape character is '^]'.DOIT博客!~3e2o.wY9`Y
220 [127.0.0.1] ESMTP amavisd-new service ready
3n^~l}-Nm2n.v0EHLO localhostDOIT博客|%U3F p3[h0Y)P
250-[127.0.0.1]DOIT博客HU5yQB"I\o{'D
250-VRFY
5t-Oe0I~0250-PIPELINING
Z(h)H-\fF#jL]0250-SIZE
C)G1L3K V(?~/A8t0250-ENHANCEDSTATUSCODES
"c/}udzf0250-8BITMIME
tw W#Y4?5_;c}h0250-DSN
5L?+Q Z&k8kJ+m0250 XFORWARD NAME ADDR PROTO HELODOIT博客l8M7Ah I`I.cl@ Y&Z9[
Quit
%ZPk,a#amL v0221 2.0.0 [127.0.0.1] amavisd-new closing transmission channel
/{qCn/U!^ R9o0Connection closed by foreign host.

g'O\bTZ06、postfix重新加载配置文件后将授权并激活"127.0.0.1:10025"端口，一个正常的服务连接应该类同下面所示：

# telnet localhost 10025DOIT博客p,^:z3r ~?I9t
Trying 127.0.0.1...
Pi:xg7W&M3Bs0Connected to localhost.localdomain (127.0.0.1).
SG `3Y_d+y\-d0Escape character is '^]'.
;I1lW1@2k?#u+Gy7S:@0220 Welcome to our mail.test.com ESMTP,Warning: Version not AvailableDOIT博客y1_\X4CF$j
EHLO localhost
5W o:P2z`3p%G0250-mail.test.comDOIT博客I [!u;_$}$OJ1s(t
250-PIPELINING
$J-cc']1YE}%X0250-SIZE 14336000
-?"[By;FI0250-VRFYDOIT博客XaHnf G"~
250-ETRNDOIT博客-Y]y$Z!x/G*a
250-AUTH PLAIN LOGIN
WV bzPz2kf2G0250-AUTH=PLAIN LOGIN
f0Y1K:Oc)]1rX}?0250-ENHANCEDSTATUSCODESDOIT博客/S^l'G#d h"Rp
250-8BITMIME
_:A#W Ud0qb bP0250 DSN
t Y l&Mmg3R0QUIT
3FM2~3[ PSL5[J1wf0221 2.0.0 ByeDOIT博客!s8|j0F0|/Q#@;r
Connection closed by foreign host.

8L4Yc!uw8L07、通过amavisd测试发信DOIT博客x\_D^/aK!n

Fb(K1T2TV2zpp4}y0]# telnet localhost 10024
E9w:MuF0Trying 127.0.0.1...
m8U%xSs/i0Connected to localhost.localdomain (127.0.0.1).DOIT博客o8pp$n#y~Ob3b
Escape character is '^]'.DOIT博客^M e lA
220 [127.0.0.1] ESMTP amavisd-new service ready
~pDY|W0HELO localhostDOIT博客4P7mYb:M K4v9kx
250 [127.0.0.1]
3T/wL/`Abx0MAIL FROM:<>DOIT博客5sJ"@N&J\(V:B
250 2.1.0 Sender <> OKDOIT博客6@(l5G5xB5OV b2K0wCV
RCPT TO:<postmaster>
n4R\&NN+P H By!b}~#k0250 2.1.5 Recipient <postmaster> OKDOIT博客"],BuMb#^!{4D| _
DATA
z|R3St&k0354 End data with <CR><LF>.<CR><LF>DOIT博客t|W%p:f}.`
From:Anti-Virus tester
9\Xb7pT_"u:P]0To: MailServer Admin
%hU:Xf8MB-]a0Subject:amavisd test!DOIT博客&x"H#q]W
amavisd test!!
(omi:['p!nH8s2|0.DOIT博客dDBI3P/Q)xL7E,B!AdCe
250 2.0.0 Ok: queued as 263FC1A609
$Rh,a-PMt#_%|5tU0quit
8}5DW-k0on4A0221 2.0.0 [127.0.0.1] amavisd-new closing transmission channelDOIT博客"v5X)y } N'u
Connection closed by foreign host.DOIT博客g9_9\Ih`f]