What is the best anti-spam and anti-virus combos for Postfix?

Previous Topic Next Topic
 
classic Classic list List threaded Threaded
7 messages Options
Reply | Threaded
Open this post in threaded view
|

What is the best anti-spam and anti-virus combos for Postfix?

Linda Pagillo
Hi everyone. I was wondering which anti-spam and anti-virus programs do you all use with Postifx? Any advice on which programs work best?
Reply | Threaded
Open this post in threaded view
|

Re: What is the best anti-spam and anti-virus combos for Postfix?

Robert Schetterer-2
Am 28.04.2017 um 21:26 schrieb Linda Pagillo:
> Hi everyone. I was wondering which anti-spam and anti-virus programs do
> you all use with Postifx? Any advice on which programs work best?

mostly used
amavis-new (framework, milter), spamassassin ( milter ), clamav ( milter )
with sanesecurity signatures, rspamd


Best Regards
MfG Robert Schetterer

--
[*] sys4 AG

http://sys4.de, +49 (89) 30 90 46 64
Schleißheimer Straße 26/MG, 80333 München

Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263
Vorstand: Patrick Ben Koetter, Marc Schiffbauer
Aufsichtsratsvorsitzender: Florian Kirstein
Reply | Threaded
Open this post in threaded view
|

Re: What is the best anti-spam and anti-virus combos for Postfix?

Mark Constable
In reply to this post by Linda Pagillo
On 29/4/17 5:26 am, Linda Pagillo wrote:
> Hi everyone. I was wondering which anti-spam and anti-virus programs
> do you all use with Postifx? Any advice on which programs work best?

I'm not sure about the absolute best spam filtering system but the
simplest lightweight solution (for me) is postscreen, SPF/DKIM and
Spamprobe via dovecot/sieve filters. I would prefer Dspam but it is
no longer available as a Debian package. Spamprobe is good enough as
after 1/2 a year of training I personally get about 2 spams per week
out of 20 to 30 spams per day that manage to get through postscreen.

I specialize in setting up lightweight containers, VPSs and DO droplets
where spamassassin/clamav, and even rspamd, will simply not work. I
don't bother with anti-virus software because most of my clients run
linux desktops and the few that don't use whatever comes with their
OS system or a commercial antivirus package.
pbw
Reply | Threaded
Open this post in threaded view
|

Re: What is the best anti-spam and anti-virus combos for Postfix?

pbw
Hi Mark,

Your approach seems applicable to me.  I have set up postscreen from the postfix docs.  What is the best documentation for the remainder of your setup?

Peter

Mark Constable wrote
On 29/4/17 5:26 am, Linda Pagillo wrote:
> Hi everyone. I was wondering which anti-spam and anti-virus programs
> do you all use with Postifx? Any advice on which programs work best?

...the
simplest lightweight solution (for me) is postscreen, SPF/DKIM and
Spamprobe via dovecot/sieve filters.

...I
don't bother with anti-virus software because most of my clients run
linux desktops and the few that don't use whatever comes with their
OS system or a commercial antivirus package.
Reply | Threaded
Open this post in threaded view
|

Re: What is the best anti-spam and anti-virus combos for Postfix?

Skip Montanaro
In reply to this post by Linda Pagillo

Hi everyone. I was wondering which anti-spam and anti-virus programs do you all use with Postifx? Any advice on which programs work best?

I will add one more bit. I am one of the postmasters for mail.python.org. As such, I have nothing to do directly with the Postfix side of the shop. I maintain the SpamBayes (http://savages.org/) installation. Any mail messages which make it through the various Postfix steps are scored. Any which don't score as "okay" are held for list moderators. (Almost all arriving mail is headed for Mailman lists. The SpamBayes step is skipped for almost all individual aliases.) In addition to this use, SpamBayes is the only guard at the door for messages arriving by the Usenet-to-mail gateway, which Postfix don't see.

I'm not sure how visible the site-specific setup is, but I don't think there would be any problem sharing it. Back when Subversion was still used, it was managed there, but I suspect the mpo-specific SB bits got disconnected from source code control over time. Let me know off-list if there is any interest, and I'll see about refreshing it's scm with something more current.

Skip Montanaro

Reply | Threaded
Open this post in threaded view
|

Re: What is the best anti-spam and anti-virus combos for Postfix?

Mark Constable
In reply to this post by pbw
On 5/7/17 9:58 PM, pbw wrote:
>> ...the simplest lightweight solution (for me) is postscreen, SPF/
>> DKIM and Spamprobe via dovecot/sieve filters.
>
> Your approach seems applicable to me. I have set up postscreen from
> the postfix docs. What is the best documentation for the remainder of
> your setup?

This is the opendkim tutorial I adapted...

https://www.digitalocean.com/community/tutorials/how-to-install-and-configure-dkim-with-postfix-on-debian-wheezy

SPF is this section in main.cf after installing the postfix-policyd-spf-perl
deb...

policy-spf_time_limit = 3600s
smtpd_recipient_restrictions = permit_mynetworks permit_sasl_authenticated
     reject_unauth_destination reject_non_fqdn_recipient
     reject_unknown_recipient_domain check_policy_service unix:private/policy-spf

then the last 2 lines below in master.cf...

https://raw.githubusercontent.com/markc/sh/master/etc/_etc_postfix_master.cf

and of course a DNS TXT record for your domain(s), just google for
an example.

And then this post outlines the final dovecot/sieve/spamprobe stage...

https://markc.blog/how-to-set-up-spamprobe-via-sieve-scripts
pbw
Reply | Threaded
Open this post in threaded view
|

Re: What is the best anti-spam and anti-virus combos for Postfix?

pbw
Thanks Mark.

So far, so good.  I used this Linode tutorial in addition to the DO one you mentioned, so that I had two views of the process.

Now to look at your spamprobe setup.

Peter