Normally when a client connection is reject by my sendmail server, the client is notified of the Reject message and the client server is generating a NDR. This is listed in my log as [1] however when I send a virus it looks like sendmail is not reporting the reject back to the client server. How should I 'enable' this?
[1]
xxxxx sendmail[3880]: 217LNkNB003880: ruleset=check_rcpt, arg1=<xxxx.xxxxxxxx@xxxxx.xxx>, relay=hosting.unibit.bg [194.141.8.30], reject=550 5.7.1 < xxxx.xxxxxxxx@xxxxx.xxx>... Relaying denied
[2]
Feb 7 22:24:18 xxxxx clamav-milter[27526]: Message from <aaaa@aaaaa.aa> to <xxxx.xxxxxxxx@xxxxx.xxx> infected by Eicar-Signature
Feb 7 22:24:18 xxxxx sendmail[27607]: 217LOGRO027607: Milter insert (1): header: X-Virus-Scanned: clamav-milter 0.103.5 at xxxxx
Feb 7 22:24:18 xxxxx sendmail[27607]: 217LOGRO027607: Milter insert (1): header: X-Virus-Status: Infected (Eicar-Signature)
Feb 7 22:24:18 xxxxx sendmail[27607]: 217LOGRO027607: Milter: data, reject=554 5.7.1 Command rejected
Feb 7 22:24:18 xxxxx sendmail[27607]: 217LOGRO027607: to=<xxxx.xxxxxxxx@xxxxx.xxx>, delay=00:00:00, pri=31328, stat=Command rejected
[3] config clamav milter
[@mail]# cat /etc/mail/clamav-milter.conf | grep -v '^#' | sed '/^$/d'
MilterSocket /var/run/clamav-milter/clamav-milter.socket
User clamilt
ClamdSocket tcp:xxxxxxx:3310
OnInfected Reject
AddHeader Add
LogSyslog yes
LogFacility LOG_MAIL
LogInfected Basic
LogClean Basic
[4] sendmail
INPUT_MAIL_FILTER(`clamav', `S=local:/var/run/clamav-milter/clamav-milter.socket, F=, T=S:4m;R:5m')dnl
INPUT_MAIL_FILTER(`spamassassin', `S=local:/var/run/spamass-milter/spamass-milter.sock, F=, T=C:1m;S:4m;R:4m;E:5m')dnl
define(`confINPUT_MAIL_FILTERS', `mailfromd,clamav,spamassassin')dnl
_______________________________________________
clamav-users mailing list
clamav-users@lists.clamav.net
https://lists.clamav.net/mailman/listinfo/clamav-users
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq
http://www.clamav.net/contact.html#ml
[1]
xxxxx sendmail[3880]: 217LNkNB003880: ruleset=check_rcpt, arg1=<xxxx.xxxxxxxx@xxxxx.xxx>, relay=hosting.unibit.bg [194.141.8.30], reject=550 5.7.1 < xxxx.xxxxxxxx@xxxxx.xxx>... Relaying denied
[2]
Feb 7 22:24:18 xxxxx clamav-milter[27526]: Message from <aaaa@aaaaa.aa> to <xxxx.xxxxxxxx@xxxxx.xxx> infected by Eicar-Signature
Feb 7 22:24:18 xxxxx sendmail[27607]: 217LOGRO027607: Milter insert (1): header: X-Virus-Scanned: clamav-milter 0.103.5 at xxxxx
Feb 7 22:24:18 xxxxx sendmail[27607]: 217LOGRO027607: Milter insert (1): header: X-Virus-Status: Infected (Eicar-Signature)
Feb 7 22:24:18 xxxxx sendmail[27607]: 217LOGRO027607: Milter: data, reject=554 5.7.1 Command rejected
Feb 7 22:24:18 xxxxx sendmail[27607]: 217LOGRO027607: to=<xxxx.xxxxxxxx@xxxxx.xxx>, delay=00:00:00, pri=31328, stat=Command rejected
[3] config clamav milter
[@mail]# cat /etc/mail/clamav-milter.conf | grep -v '^#' | sed '/^$/d'
MilterSocket /var/run/clamav-milter/clamav-milter.socket
User clamilt
ClamdSocket tcp:xxxxxxx:3310
OnInfected Reject
AddHeader Add
LogSyslog yes
LogFacility LOG_MAIL
LogInfected Basic
LogClean Basic
[4] sendmail
INPUT_MAIL_FILTER(`clamav', `S=local:/var/run/clamav-milter/clamav-milter.socket, F=, T=S:4m;R:5m')dnl
INPUT_MAIL_FILTER(`spamassassin', `S=local:/var/run/spamass-milter/spamass-milter.sock, F=, T=C:1m;S:4m;R:4m;E:5m')dnl
define(`confINPUT_MAIL_FILTERS', `mailfromd,clamav,spamassassin')dnl
_______________________________________________
clamav-users mailing list
clamav-users@lists.clamav.net
https://lists.clamav.net/mailman/listinfo/clamav-users
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq
http://www.clamav.net/contact.html#ml