21:59:27
|
#pine
bash: pine: command not found You have new mail in /var/spool/mail/root |
| /l3/users/clint/MIMEDefang-ASP/asp.linux.nt/root :1 :2 :3 :4 :5 :6 :7 :8 :9 :10 :11 :12 :13 :14 :15 :16 |
|
|
#/etc/init.d/clamd restart
Stopping Clam AV daemon: [ ОК ] Starting Clam AV daemon: LibClamAV debug: Setting /tmp as global temporary directory LibClamAV debug: Loading databases from /var/lib/clamav LibClamAV debug: Loading /var/lib/clamav/daily.cvd LibClamAV debug: in cli_cvdload() LibClamAV debug: MD5(.tar.gz) = 9743cd52d2fa858b6420abd3b6c78b72 LibClamAV debug: Decoded signature: 9743cd52d2fa858b6420abd3b6c78b72 LibClamAV debug: Digital signature is correct. LibClamAV Warning: ************************************************** LibClamAV Warning: *** The virus database is older than 7 days. *** ... LibClamAV debug: Unpacking /tmp/clamav-30f334a9ff7d6499/main.zmd LibClamAV debug: Unpacking /tmp/clamav-30f334a9ff7d6499/main.fp LibClamAV debug: Unpacking /tmp/clamav-30f334a9ff7d6499/main.info LibClamAV debug: Loading databases from /tmp/clamav-30f334a9ff7d6499 LibClamAV debug: Loading /tmp/clamav-30f334a9ff7d6499/main.db LibClamAV debug: Loading /tmp/clamav-30f334a9ff7d6499/main.hdb LibClamAV debug: Loading /tmp/clamav-30f334a9ff7d6499/main.ndb LibClamAV debug: Loading /tmp/clamav-30f334a9ff7d6499/main.zmd LibClamAV debug: Loading /tmp/clamav-30f334a9ff7d6499/main.fp [ ОК ] |
|
#/etc/init.d/clamav-milter start
Starting clamav-milter: LibClamAV debug: Running as user defang (UID 100, GID 101) LibClamAV debug: loadDatabase: check /var/lib/clamav/daily.cvd for updates LibClamAV debug: Loading databases from /var/lib/clamav LibClamAV debug: Loading /var/lib/clamav/daily.cvd LibClamAV debug: in cli_cvdload() LibClamAV debug: MD5(.tar.gz) = 9743cd52d2fa858b6420abd3b6c78b72 LibClamAV debug: Decoded signature: 9743cd52d2fa858b6420abd3b6c78b72 LibClamAV debug: Digital signature is correct. LibClamAV Warning: ************************************************** LibClamAV Warning: *** The virus database is older than 7 days. *** ... LibClamAV debug: Loading /tmp/clamav-7feedf878d53d446/main.hdb LibClamAV debug: Loading /tmp/clamav-7feedf878d53d446/main.ndb LibClamAV debug: Loading /tmp/clamav-7feedf878d53d446/main.zmd LibClamAV debug: Loading /tmp/clamav-7feedf878d53d446/main.fp LibClamAV debug: Database loaded LibClamAV debug: Stat()ing files in /var/lib/clamav LibClamAV debug: Setting /tmp as global temporary directory LibClamAV debug: Making /tmp/clamav-c860396e9856a3f5 /var/log/clamav/clamd1.log: Отказано в доступе [ ОК ] |
|
#/etc/init.d/clamd stop
Stopping Clam AV daemon: [ ОК ] |
|
#/etc/init.d/clamav-milter start
Starting clamav-milter: LibClamAV debug: Running as user defang (UID 100, GID 101) LibClamAV debug: loadDatabase: check /var/lib/clamav/daily.cvd for updates LibClamAV debug: Loading databases from /var/lib/clamav LibClamAV debug: Loading /var/lib/clamav/daily.cvd LibClamAV debug: in cli_cvdload() LibClamAV debug: MD5(.tar.gz) = 9743cd52d2fa858b6420abd3b6c78b72 LibClamAV debug: Decoded signature: 9743cd52d2fa858b6420abd3b6c78b72 LibClamAV debug: Digital signature is correct. LibClamAV Warning: ************************************************** LibClamAV Warning: *** The virus database is older than 7 days. *** ... LibClamAV debug: Loading /tmp/clamav-3d0e2d6caa2c1f02/main.hdb LibClamAV debug: Loading /tmp/clamav-3d0e2d6caa2c1f02/main.ndb LibClamAV debug: Loading /tmp/clamav-3d0e2d6caa2c1f02/main.zmd LibClamAV debug: Loading /tmp/clamav-3d0e2d6caa2c1f02/main.fp LibClamAV debug: Database loaded LibClamAV debug: Stat()ing files in /var/lib/clamav LibClamAV debug: Setting /tmp as global temporary directory LibClamAV debug: Making /tmp/clamav-1b836f72ae124225 /var/log/clamav/clamd1.log: Отказано в доступе [ ОК ] |
|
#/etc/init.d/clamd stop
Stopping Clam AV daemon: [ СБОЙ ] |
|
#/etc/init.d/clamd stop
Stopping Clam AV daemon: [ СБОЙ ] |
|
#/etc/init.d/clamd start
Starting Clam AV daemon: LibClamAV debug: Setting /tmp as global temporary directory LibClamAV debug: Loading databases from /var/lib/clamav LibClamAV debug: Loading /var/lib/clamav/daily.cvd LibClamAV debug: in cli_cvdload() LibClamAV debug: MD5(.tar.gz) = 9743cd52d2fa858b6420abd3b6c78b72 LibClamAV debug: Decoded signature: 9743cd52d2fa858b6420abd3b6c78b72 LibClamAV debug: Digital signature is correct. LibClamAV Warning: ************************************************** LibClamAV Warning: *** The virus database is older than 7 days. *** LibClamAV Warning: *** Please update it IMMEDIATELY! *** ... LibClamAV debug: Unpacking /tmp/clamav-d628b92a83149d02/main.zmd LibClamAV debug: Unpacking /tmp/clamav-d628b92a83149d02/main.fp LibClamAV debug: Unpacking /tmp/clamav-d628b92a83149d02/main.info LibClamAV debug: Loading databases from /tmp/clamav-d628b92a83149d02 LibClamAV debug: Loading /tmp/clamav-d628b92a83149d02/main.db LibClamAV debug: Loading /tmp/clamav-d628b92a83149d02/main.hdb LibClamAV debug: Loading /tmp/clamav-d628b92a83149d02/main.ndb LibClamAV debug: Loading /tmp/clamav-d628b92a83149d02/main.zmd LibClamAV debug: Loading /tmp/clamav-d628b92a83149d02/main.fp [ ОК ] |
|
#pine
bash: pine: command not found You have new mail in /var/spool/mail/root |
|
#ls /var/spool/
anacron/ clamav/ cron/ lpd/ MD-Quarantine/ mqueue/ uucp/ vbox/ at/ clientmqueue/ cups/ mail/ MIMEDefang/ repackage/ uucppublic/ |
|
#ls /var/spool/MIMEDefang/
clamd.sock mimedefang-multiplexor.pid mimedefang-multiplexor.sock mimedefang.pid mimedefang.sock |
|
#ls -al /var/spool/MIMEDefang/
итого 20 drwxr-x--- 2 defang defang 4096 Окт 27 21:59 . drwxr-xr-x 17 root root 4096 Окт 27 21:07 .. srwxrwxrwx 1 defang defang 0 Окт 27 21:59 clamd.sock -rw-r----- 1 defang defang 6 Окт 27 21:29 mimedefang-multiplexor.pid srw------- 1 defang defang 0 Окт 27 21:29 mimedefang-multiplexor.sock -rw-r----- 1 defang defang 6 Окт 27 21:29 mimedefang.pid srwxr-x--- 1 defang defang 0 Окт 27 21:29 mimedefang.sock |
|
#/etc/init.d/sendmail restart
Останавливается sm-client: [ ОК ] Останавливается sendmail: [ ОК ] Запускается sendmail: [ ОК ] Запускается sm-client: [ ОК ] |
|
#less /var/log/maillog
|
|
#vi /etc/mail/sendmail.mc
168c168 < INPUT_MAIL_FILTER(`clamav', `S=local:/var/spool/MIMEDefang/clamd.sock, F=T, T=S:4m;R:4m') --- > INPUT_MAIL_FILTER(`clamav', `S=unix:/var/spool/MIMEDefang/clamd.sock, F=T, T=S:4m;R:4m') |
|
#pwd
/etc/mail |
|
#m4 sendmail.mc > sendmail.cf
|
|
#/etc/init.d/sendmail restart
Останавливается sm-client: [ ОК ] Останавливается sendmail: [ ОК ] Запускается sendmail: [ ОК ] Запускается sm-client: [ ОК ] |
|
#less /var/log/maillog
|
|
#tail -f /var/log/clamav/clamd
clamd1.log clamd.log |
|
#tail -f /var/log/clamav/clamd1.log
Fri Oct 27 21:59:27 2006 -> Archive support enabled. Fri Oct 27 21:59:27 2006 -> Archive: RAR support disabled. Fri Oct 27 21:59:27 2006 -> Archive: Blocking encrypted archives. Fri Oct 27 21:59:27 2006 -> Archive: Blocking archives that exceed limits. Fri Oct 27 21:59:27 2006 -> Portable Executable support enabled. Fri Oct 27 21:59:27 2006 -> Detection of broken executables enabled. Fri Oct 27 21:59:27 2006 -> Mail files support enabled. Fri Oct 27 21:59:27 2006 -> OLE2 support enabled. Fri Oct 27 21:59:27 2006 -> HTML support enabled. Fri Oct 27 21:59:27 2006 -> Self checking every 1800 seconds. |
|
#vi /etc/sysconfig/
|
|
#vi /etc/sysconfig/clamav-milter
|
|
#vi /etc/clamd.conf
13c13 < LogFile /var/log/clamav/clamd1.log --- > #LogFile /var/log/clamav/clamd1.log 21c21 < LogFileUnlock --- > #LogFileUnlock |
|
#/etc/init.d/clamd restart
Stopping Clam AV daemon: [ ОК ] Starting Clam AV daemon: LibClamAV debug: Setting /tmp as global temporary directory LibClamAV debug: Loading databases from /var/lib/clamav LibClamAV debug: Loading /var/lib/clamav/daily.cvd LibClamAV debug: in cli_cvdload() LibClamAV debug: MD5(.tar.gz) = 9743cd52d2fa858b6420abd3b6c78b72 LibClamAV debug: Decoded signature: 9743cd52d2fa858b6420abd3b6c78b72 LibClamAV debug: Digital signature is correct. LibClamAV Warning: ************************************************** LibClamAV Warning: *** The virus database is older than 7 days. *** ... LibClamAV debug: Unpacking /tmp/clamav-5d2e1a0ac03bb0ab/main.zmd LibClamAV debug: Unpacking /tmp/clamav-5d2e1a0ac03bb0ab/main.fp LibClamAV debug: Unpacking /tmp/clamav-5d2e1a0ac03bb0ab/main.info LibClamAV debug: Loading databases from /tmp/clamav-5d2e1a0ac03bb0ab LibClamAV debug: Loading /tmp/clamav-5d2e1a0ac03bb0ab/main.db LibClamAV debug: Loading /tmp/clamav-5d2e1a0ac03bb0ab/main.hdb LibClamAV debug: Loading /tmp/clamav-5d2e1a0ac03bb0ab/main.ndb LibClamAV debug: Loading /tmp/clamav-5d2e1a0ac03bb0ab/main.zmd LibClamAV debug: Loading /tmp/clamav-5d2e1a0ac03bb0ab/main.fp [ ОК ] |
|
#/etc/init.d/clamav-milter restart
Stopping clamav-milter: [ СБОЙ ]
Starting clamav-milter: /usr/sbin/clamav-milter: socket-addr (local:/var/spool/MIMEDefang/clamd.sock) doesn't agree with sendmail.cf
[ СБОЙ ]
|
|
#/etc/init.d/clamav-milter restart
Stopping clamav-milter: [ СБОЙ ]
Starting clamav-milter: /usr/sbin/clamav-milter: socket-addr (local:/var/spool/MIMEDefang/clamd.sock) doesn't agree with sendmail.cf
[ СБОЙ ]
|
|
#vi /etc/mail/sendmail.mc
168c168 < INPUT_MAIL_FILTER(`clamav', `S=unix:/var/spool/MIMEDefang/clamd.sock, F=T, T=S:4m;R:4m') --- > INPUT_MAIL_FILTER(`clamav', `S=local:/var/spool/MIMEDefang/clamd.sock, F=T, T=S:4m;R:4m') |
|
#m4 sendmail.mc > sendmail.cf
|
|
#/etc/init.d/sendmail restart
Останавливается sm-client: [ ОК ] Останавливается sendmail: [ ОК ] Запускается sendmail: [ ОК ] Запускается sm-client: [ ОК ] |
|
#/etc/init.d/clamav-milter restart
Stopping clamav-milter: [ СБОЙ ] Starting clamav-milter: LibClamAV debug: Running as user defang (UID 100, GID 101) LibClamAV debug: loadDatabase: check /var/lib/clamav/daily.cvd for updates LibClamAV debug: Loading databases from /var/lib/clamav LibClamAV debug: Loading /var/lib/clamav/daily.cvd LibClamAV debug: in cli_cvdload() LibClamAV debug: MD5(.tar.gz) = 9743cd52d2fa858b6420abd3b6c78b72 LibClamAV debug: Decoded signature: 9743cd52d2fa858b6420abd3b6c78b72 LibClamAV debug: Digital signature is correct. LibClamAV Warning: ************************************************** ... LibClamAV debug: Loading /tmp/clamav-9b6c7a24b15c003c/main.db LibClamAV debug: Loading /tmp/clamav-9b6c7a24b15c003c/main.hdb LibClamAV debug: Loading /tmp/clamav-9b6c7a24b15c003c/main.ndb LibClamAV debug: Loading /tmp/clamav-9b6c7a24b15c003c/main.zmd LibClamAV debug: Loading /tmp/clamav-9b6c7a24b15c003c/main.fp LibClamAV debug: Database loaded LibClamAV debug: Stat()ing files in /var/lib/clamav LibClamAV debug: Setting /tmp as global temporary directory LibClamAV debug: Making /tmp/clamav-1ed9948462b51b91 [ ОК ] |
|
#ps -ax
Warning: bad syntax, perhaps a bogus '-'? See /usr/share/doc/procps-3.2.5/FAQ
PID TTY STAT TIME COMMAND
1 ? S 0:00 init [5]
2 ? SN 0:00 [ksoftirqd/0]
3 ? S< 0:00 [events/0]
4 ? S< 0:00 [khelper]
5 ? S< 0:00 [kthread]
7 ? S< 0:00 [kacpid]
80 ? S< 0:00 [kblockd/0]
83 ? S< 0:00 [khubd]
...
23130 pts/7 S+ 0:00 script -f -q /root/.lilalo//32711182092062014324-1161973329.script
23131 pts/8 Ss+ 0:00 bash -i
23393 ? S 0:00 /usr/bin/mimedefang-multiplexor -p /var/spool/MIMEDefang/mimedefang-multiplexor.pid -m 2 -x 10 -U defang -b 600 -l -s /var/spool/MIMEDefang/mim
23394 ? S 0:01 /usr/bin/perl /usr/bin/mimedefang.pl -server
23407 ? Sl 0:00 /usr/bin/mimedefang -P /var/spool/MIMEDefang/mimedefang.pid -m /var/spool/MIMEDefang/mimedefang-multiplexor.sock -R -1 -U defang -p /var/spool/
23419 ? S 0:01 /usr/bin/perl /usr/bin/mimedefang.pl -server
24522 ? Ssl 0:00 /usr/sbin/clamd
24626 ? Ss 0:00 sendmail: accepting connections
24633 ? Ss 0:00 sendmail: Queue runner@01:00:00 for /var/spool/clientmqueue
24662 pts/5 R+ 0:00 ps -ax
|
|
#/etc/init.d/clamav-milter stop
Stopping clamav-milter: [ СБОЙ ] |
|
#/etc/init.d/clamav-milter start
Starting clamav-milter: LibClamAV debug: Running as user defang (UID 100, GID 101) LibClamAV debug: loadDatabase: check /var/lib/clamav/daily.cvd for updates LibClamAV debug: Loading databases from /var/lib/clamav LibClamAV debug: Loading /var/lib/clamav/daily.cvd LibClamAV debug: in cli_cvdload() LibClamAV debug: MD5(.tar.gz) = 9743cd52d2fa858b6420abd3b6c78b72 LibClamAV debug: Decoded signature: 9743cd52d2fa858b6420abd3b6c78b72 LibClamAV debug: Digital signature is correct. LibClamAV Warning: ************************************************** LibClamAV Warning: *** The virus database is older than 7 days. *** ... LibClamAV debug: Loading /tmp/clamav-8faeb9cc6b9d073a/main.db LibClamAV debug: Loading /tmp/clamav-8faeb9cc6b9d073a/main.hdb LibClamAV debug: Loading /tmp/clamav-8faeb9cc6b9d073a/main.ndb LibClamAV debug: Loading /tmp/clamav-8faeb9cc6b9d073a/main.zmd LibClamAV debug: Loading /tmp/clamav-8faeb9cc6b9d073a/main.fp LibClamAV debug: Database loaded LibClamAV debug: Stat()ing files in /var/lib/clamav LibClamAV debug: Setting /tmp as global temporary directory LibClamAV debug: Making /tmp/clamav-38e0666c48d6204b [ ОК ] |
|
#tail -f /var/log/messages
Oct 27 22:04:57 asp clamav-milter[24653]: Loaded ClamAV 0.88.5/2035/Sun Oct 15 23:42:30 2006 Oct 27 22:04:57 asp clamav-milter[24653]: ClamAV: Protecting against 73019 viruses Oct 27 22:04:57 asp clamav-milter[24654]: Can't save PID in file /var/run/clamav/clamav-milter.pid Oct 27 22:04:57 asp clamav-milter[24654]: Stopping ClamAV version 0.88.5, clamav-milter version 0.88.5 Oct 27 22:05:01 asp crond(pam_unix)[24668]: session opened for user root by (uid=0) Oct 27 22:05:02 asp crond(pam_unix)[24668]: session closed for user root Oct 27 22:05:17 asp clamav-milter[24689]: Loaded ClamAV 0.88.5/2035/Sun Oct 15 23:42:30 2006 Oct 27 22:05:17 asp clamav-milter[24689]: ClamAV: Protecting against 73019 viruses Oct 27 22:05:17 asp clamav-milter[24690]: Can't save PID in file /var/run/clamav/clamav-milter.pid Oct 27 22:05:17 asp clamav-milter[24690]: Stopping ClamAV version 0.88.5, clamav-milter version 0.88.5 |
|
#ls -al /var/run/clamav/
итого 12 drwxr-xr-x 2 clamav clamav 4096 Окт 16 13:19 . drwxr-xr-x 18 root root 4096 Окт 27 22:04 .. |
|
#chown -R defang.defang /var/run/clamav/
|
|
#/etc/init.d/clamd stop
Stopping Clam AV daemon: [ ОК ] |
|
#/etc/init.d/clamd start
Starting Clam AV daemon: LibClamAV debug: Setting /tmp as global temporary directory LibClamAV debug: Loading databases from /var/lib/clamav LibClamAV debug: Loading /var/lib/clamav/daily.cvd LibClamAV debug: in cli_cvdload() LibClamAV debug: MD5(.tar.gz) = 9743cd52d2fa858b6420abd3b6c78b72 LibClamAV debug: Decoded signature: 9743cd52d2fa858b6420abd3b6c78b72 LibClamAV debug: Digital signature is correct. LibClamAV Warning: ************************************************** LibClamAV Warning: *** The virus database is older than 7 days. *** LibClamAV Warning: *** Please update it IMMEDIATELY! *** ... LibClamAV debug: Unpacking /tmp/clamav-f5d54dcf9cd5176b/main.zmd LibClamAV debug: Unpacking /tmp/clamav-f5d54dcf9cd5176b/main.fp LibClamAV debug: Unpacking /tmp/clamav-f5d54dcf9cd5176b/main.info LibClamAV debug: Loading databases from /tmp/clamav-f5d54dcf9cd5176b LibClamAV debug: Loading /tmp/clamav-f5d54dcf9cd5176b/main.db LibClamAV debug: Loading /tmp/clamav-f5d54dcf9cd5176b/main.hdb LibClamAV debug: Loading /tmp/clamav-f5d54dcf9cd5176b/main.ndb LibClamAV debug: Loading /tmp/clamav-f5d54dcf9cd5176b/main.zmd LibClamAV debug: Loading /tmp/clamav-f5d54dcf9cd5176b/main.fp [ ОК ] |
|
#ps -ax
Warning: bad syntax, perhaps a bogus '-'? See /usr/share/doc/procps-3.2.5/FAQ
PID TTY STAT TIME COMMAND
1 ? S 0:00 init [5]
2 ? SN 0:00 [ksoftirqd/0]
3 ? S< 0:00 [events/0]
4 ? S< 0:00 [khelper]
5 ? S< 0:00 [kthread]
7 ? S< 0:00 [kacpid]
80 ? S< 0:00 [kblockd/0]
83 ? S< 0:00 [khubd]
...
23130 pts/7 S+ 0:00 script -f -q /root/.lilalo//32711182092062014324-1161973329.script
23131 pts/8 Ss+ 0:00 bash -i
23393 ? S 0:00 /usr/bin/mimedefang-multiplexor -p /var/spool/MIMEDefang/mimedefang-multiplexor.pid -m 2 -x 10 -U defang -b 600 -l -s /var/spool/MIMEDefang/mim
23394 ? S 0:01 /usr/bin/perl /usr/bin/mimedefang.pl -server
23407 ? Sl 0:00 /usr/bin/mimedefang -P /var/spool/MIMEDefang/mimedefang.pid -m /var/spool/MIMEDefang/mimedefang-multiplexor.sock -R -1 -U defang -p /var/spool/
23419 ? S 0:01 /usr/bin/perl /usr/bin/mimedefang.pl -server
24626 ? Ss 0:00 sendmail: accepting connections
24633 ? Ss 0:00 sendmail: Queue runner@01:00:00 for /var/spool/clientmqueue
24742 ? Ss 0:00 /usr/sbin/clamd
24749 pts/5 R+ 0:00 ps -ax
|
|
#/etc/init.d/clamav-milter start
Starting clamav-milter: LibClamAV debug: Running as user defang (UID 100, GID 101) LibClamAV debug: loadDatabase: check /var/lib/clamav/daily.cvd for updates LibClamAV debug: Loading databases from /var/lib/clamav LibClamAV debug: Loading /var/lib/clamav/daily.cvd LibClamAV debug: in cli_cvdload() LibClamAV debug: MD5(.tar.gz) = 9743cd52d2fa858b6420abd3b6c78b72 LibClamAV debug: Decoded signature: 9743cd52d2fa858b6420abd3b6c78b72 LibClamAV debug: Digital signature is correct. LibClamAV Warning: ************************************************** LibClamAV Warning: *** The virus database is older than 7 days. *** ... LibClamAV debug: Loading /tmp/clamav-58c9d443d575b786/main.db LibClamAV debug: Loading /tmp/clamav-58c9d443d575b786/main.hdb LibClamAV debug: Loading /tmp/clamav-58c9d443d575b786/main.ndb LibClamAV debug: Loading /tmp/clamav-58c9d443d575b786/main.zmd LibClamAV debug: Loading /tmp/clamav-58c9d443d575b786/main.fp LibClamAV debug: Database loaded LibClamAV debug: Stat()ing files in /var/lib/clamav LibClamAV debug: Setting /tmp as global temporary directory LibClamAV debug: Making /tmp/clamav-d85312f3689b359d [ ОК ] |
|
#ps -ax
Warning: bad syntax, perhaps a bogus '-'? See /usr/share/doc/procps-3.2.5/FAQ
PID TTY STAT TIME COMMAND
1 ? S 0:00 init [5]
2 ? SN 0:00 [ksoftirqd/0]
3 ? S< 0:00 [events/0]
4 ? S< 0:00 [khelper]
5 ? S< 0:00 [kthread]
7 ? S< 0:00 [kacpid]
80 ? S< 0:00 [kblockd/0]
83 ? S< 0:00 [khubd]
...
23131 pts/8 Ss+ 0:00 bash -i
23393 ? S 0:00 /usr/bin/mimedefang-multiplexor -p /var/spool/MIMEDefang/mimedefang-multiplexor.pid -m 2 -x 10 -U defang -b 600 -l -s /var/spool/MIMEDefang/mim
23394 ? S 0:01 /usr/bin/perl /usr/bin/mimedefang.pl -server
23407 ? Sl 0:00 /usr/bin/mimedefang -P /var/spool/MIMEDefang/mimedefang.pid -m /var/spool/MIMEDefang/mimedefang-multiplexor.sock -R -1 -U defang -p /var/spool/
23419 ? S 0:01 /usr/bin/perl /usr/bin/mimedefang.pl -server
24626 ? Ss 0:00 sendmail: accepting connections
24633 ? Ss 0:00 sendmail: Queue runner@01:00:00 for /var/spool/clientmqueue
24742 ? Ss 0:00 /usr/sbin/clamd
24760 ? Ssl 0:00 /usr/sbin/clamav-milter --quiet --dont-wait --force-scan --dont-log-clean --server=localhost --debug --pidfile=/var/run/clamav/clamav-milter.pi
24769 pts/5 R+ 0:00 ps -ax
|
|
#/etc/init.d/sendmail restart
Останавливается sm-client: [ ОК ] Останавливается sendmail: [ ОК ] Запускается sendmail: [ ОК ] Запускается sm-client: [ ОК ] |
|
#tail -f /var/log/maillog
Oct 27 22:04:53 asp sm-msp-queue[24634]: k9RIHsfn022792: to=root, ctladdr=root (0/0), delay=00:46:59, xdelay=00:00:00, mailer=relay, pri=750029, relay=[127.0.0.1] [127.0.0.1], dsn=4.0.0, stat=Deferred: 451 4.3.2 Please try again later Oct 27 22:07:40 asp sendmail[24794]: alias database /etc/aliases rebuilt by root Oct 27 22:07:40 asp sendmail[24794]: /etc/aliases: 76 aliases, longest 10 bytes, 765 bytes total Oct 27 22:07:40 asp sendmail[24798]: starting daemon (8.13.7): SMTP+queueing@01:00:00 Oct 27 22:07:40 asp sm-msp-queue[24805]: starting daemon (8.13.7): queueing@01:00:00 Oct 27 22:07:40 asp sendmail[24807]: k9RJ7esf024807: from=<root@asp.linux.nt>, size=299, class=0, nrcpts=1, msgid=<200610271817.k9RIHsfn022792@asp.linux.nt>, proto=ESMTP, daemon=MTA, relay=localhost.localdomain [127.0.0.1] Oct 27 22:07:40 asp sendmail[24807]: k9RJ7esf024807: Milter add: header: X-Virus-Scanned: ClamAV version 0.88.5, clamav-milter version 0.88.5 on asp.linux.nt Oct 27 22:07:40 asp sendmail[24807]: k9RJ7esf024807: Milter add: header: X-Virus-Status: Clean Oct 27 22:07:41 asp sm-msp-queue[24806]: k9RIHsfn022792: to=root, ctladdr=root (0/0), delay=00:49:47, xdelay=00:00:01, mailer=relay, pri=840029, relay=[127.0.0.1] [127.0.0.1], dsn=2.0.0, stat=Sent (k9RJ7esf024807 Message accepted for delivery) Oct 27 22:07:41 asp sendmail[24815]: k9RJ7esf024807: to=<root@asp.linux.nt>, ctladdr=<root@asp.linux.nt> (0/0), delay=00:00:01, xdelay=00:00:00, mailer=local, pri=30614, dsn=2.0.0, stat=Sent ... Oct 27 22:13:01 asp sendmail[25001]: k9RJD1Yg025001: Milter add: header: X-Virus-Status: Clean Oct 27 22:13:01 asp sendmail[24995]: k9RJD1Bg024995: to=root, ctladdr=root (0/0), delay=00:00:00, xdelay=00:00:00, mailer=relay, pri=30038, relay=[127.0.0.1] [127.0.0.1], dsn=2.0.0, stat=Sent (k9RJD1Yg025001 Message accepted for delivery) Oct 27 22:13:01 asp sendmail[25003]: k9RJD1Yg025001: to=<root@asp.linux.nt>, ctladdr=<root@asp.linux.nt> (0/0), delay=00:00:00, xdelay=00:00:00, mailer=local, pri=30623, dsn=2.0.0, stat=Sent Oct 27 22:14:42 asp sendmail[25032]: k9RJEgAp025032: from=root, size=744, class=0, nrcpts=1, msgid=<20061027191442.GA25014@asp.linux.nt>, relay=root@localhost Oct 27 22:14:42 asp sendmail[25033]: k9RJEgw7025033: from=<root@asp.linux.nt>, size=890, class=0, nrcpts=1, msgid=<20061027191442.GA25014@asp.linux.nt>, proto=ESMTP, daemon=MTA, relay=localhost.localdomain [127.0.0.1] Oct 27 22:14:42 asp sendmail[25033]: k9RJEgw7025033: Milter add: header: X-Virus-Scanned: ClamAV version 0.88.5, clamav-milter version 0.88.5 on asp.linux.nt Oct 27 22:14:42 asp sendmail[25033]: k9RJEgw7025033: Milter add: header: X-Virus-Status: Clean Oct 27 22:14:42 asp sendmail[25032]: k9RJEgAp025032: to=root@asp.linux.nt, ctladdr=root (0/0), delay=00:00:00, xdelay=00:00:00, mailer=relay, pri=30744, relay=[127.0.0.1] [127.0.0.1], dsn=2.0.0, stat=Sent (k9RJEgw7025033 Message accepted for delivery) Oct 27 22:14:42 asp sendmail[25035]: k9RJEgw7025033: to=<root@asp.linux.nt>, ctladdr=<root@asp.linux.nt> (0/0), delay=00:00:00, xdelay=00:00:00, mailer=local, pri=31199, dsn=2.0.0, stat=Sent You have new mail in /var/spool/mail/root |
|
#mail
Mail version 8.1 6/6/93. Type ? for help. "/var/spool/mail/root": 1 message 1 new >N 1 root@asp.linux.nt Fri Oct 27 22:07 18/673 "test" & Message 1: From root@asp.linux.nt Fri Oct 27 22:07:41 2006 Date: Fri, 27 Oct 2006 21:17:54 +0300 From: root <root@asp.linux.nt> To: root@asp.linux.nt Subject: test X-Virus-Scanned: ClamAV version 0.88.5, clamav-milter version 0.88.5 on asp.linux.nt X-Virus-Status: Clean test & q Saved 1 message in mbox |
|
#/etc/init.d/mimedefang restart
Shutting down mimedefang: [ ОК ] Shutting down mimedefang-multiplexor: [ ОК ] Waiting for daemons to exit Starting mimedefang-multiplexor: [ ОК ] Starting mimedefang: [ ОК ] |
|
#mail root -s test
test Cc: |
|
#vi /etc/mail/mimedefang-filter
|
|
#vim /etc/mail/mimedefang-filter
|
|
#vim /etc/mail/
|
|
#vim /etc/mail/sa-mimedefang.cf
64a65 > use_terse_report 0 |
|
#/etc/init.d/spamassassin status
spamd остановлен |
|
#/etc/init.d/spamassassin start
Запускается spamd: [ ОК ] |
|
#mail root -s test
rerewr rwerwe Cc: |
|
#cd
You have mail in /var/spool/mail/root |
|
#touch test.exe
|
|
#/etc/init.d/mimedefang restart
Shutting down mimedefang: [ ОК ] Shutting down mimedefang-multiplexor: [ ОК ] Waiting for daemons to exit Starting mimedefang-multiplexor: [ ОК ] Starting mimedefang: [ ОК ] You have mail in /var/spool/mail/root |
|
#tail -f /var/log/
acpid btmp cups/ lastlog messages prelink.log scrollkeeper.log uucp/ Xorg.0.log audit/ clamav/ dmesg mail/ mimedefang/ rpmpkgs secure vbox/ Xorg.0.log.old boot.log cron gdm/ maillog ppp/ samba/ spooler wtmp yum.log |
|
#tail -f /var/log/messages
Oct 27 22:07:15 asp clamd[24742]: OLE2 support enabled. Oct 27 22:07:15 asp clamd[24742]: HTML support enabled. Oct 27 22:07:15 asp clamd[24742]: Self checking every 1800 seconds. Oct 27 22:07:27 asp clamav-milter[24759]: Loaded ClamAV 0.88.5/2035/Sun Oct 15 23:42:30 2006 Oct 27 22:07:27 asp clamav-milter[24759]: ClamAV: Protecting against 73019 viruses Oct 27 22:07:27 asp clamav-milter[24760]: Starting ClamAV version 0.88.5, clamav-milter version 0.88.5 Oct 27 22:10:01 asp crond(pam_unix)[24927]: session opened for user root by (uid=0) Oct 27 22:10:02 asp crond(pam_unix)[24927]: session closed for user root Oct 27 22:15:01 asp crond(pam_unix)[25038]: session opened for user root by (uid=0) Oct 27 22:15:02 asp crond(pam_unix)[25038]: session closed for user root |
|
#tail -f /var/log/
acpid btmp cups/ lastlog messages prelink.log scrollkeeper.log uucp/ Xorg.0.log audit/ clamav/ dmesg mail/ mimedefang/ rpmpkgs secure vbox/ Xorg.0.log.old boot.log cron gdm/ maillog ppp/ samba/ spooler wtmp yum.log |
|
#vi /etc/init
|
|
#vi /etc/init.d/mi
|
|
#vi /etc/init.d/mimedefang
|
|
#vi sendmail.mc
166,167c166,167 < INPUT_MAIL_FILTER(`mimedefang', `S=unix:/var/spool/MIMEDefang/mimedefang.sock, F=T, T=S:1m;R:1m;E:5m') < define(`confINPUT_MAIL_FILTERS', `mimedefang')dnl --- > dnl INPUT_MAIL_FILTER(`mimedefang', `S=unix:/var/spool/MIMEDefang/mimedefang.sock, F=T, T=S:1m;R:1m;E:5m') > dnl define(`confINPUT_MAIL_FILTERS', `mimedefang')dnl 170a171,172 > INPUT_MAIL_FILTER(`mimedefang', `S=unix:/var/spool/MIMEDefang/mimedefang.sock, F=T, T=S:1m;R:1m;E:5m') > define(`confINPUT_MAIL_FILTERS', `mimedefang')dnl |
|
#m4 sendmail.mc > sendmail.cf
|
|
#/etc/init.d/sendmail restart
Останавливается sm-client: [ ОК ] Останавливается sendmail: [ ОК ] Запускается sendmail: [ ОК ] Запускается sm-client: [ ОК ] |
|
#tail -f /var/log/maillog
Oct 27 22:14:42 asp sendmail[25032]: k9RJEgAp025032: from=root, size=744, class=0, nrcpts=1, msgid=<20061027191442.GA25014@asp.linux.nt>, relay=root@localhost Oct 27 22:14:42 asp sendmail[25033]: k9RJEgw7025033: from=<root@asp.linux.nt>, size=890, class=0, nrcpts=1, msgid=<20061027191442.GA25014@asp.linux.nt>, proto=ESMTP, daemon=MTA, relay=localhost.localdomain [127.0.0.1] Oct 27 22:14:42 asp sendmail[25033]: k9RJEgw7025033: Milter add: header: X-Virus-Scanned: ClamAV version 0.88.5, clamav-milter version 0.88.5 on asp.linux.nt Oct 27 22:14:42 asp sendmail[25033]: k9RJEgw7025033: Milter add: header: X-Virus-Status: Clean Oct 27 22:14:42 asp sendmail[25032]: k9RJEgAp025032: to=root@asp.linux.nt, ctladdr=root (0/0), delay=00:00:00, xdelay=00:00:00, mailer=relay, pri=30744, relay=[127.0.0.1] [127.0.0.1], dsn=2.0.0, stat=Sent (k9RJEgw7025033 Message accepted for delivery) Oct 27 22:14:42 asp sendmail[25035]: k9RJEgw7025033: to=<root@asp.linux.nt>, ctladdr=<root@asp.linux.nt> (0/0), delay=00:00:00, xdelay=00:00:00, mailer=local, pri=31199, dsn=2.0.0, stat=Sent Oct 27 22:25:26 asp sendmail[25163]: alias database /etc/aliases rebuilt by root Oct 27 22:25:26 asp sendmail[25163]: /etc/aliases: 76 aliases, longest 10 bytes, 765 bytes total Oct 27 22:25:26 asp sendmail[25167]: starting daemon (8.13.7): SMTP+queueing@01:00:00 Oct 27 22:25:26 asp sm-msp-queue[25174]: starting daemon (8.13.7): queueing@01:00:00 ... Oct 27 22:27:41 asp mimedefang[25441]: MIMEDefang alive. slavesReservedForLoopback=-1 AllowNewConnectionsToQueue=0 doRelayCheck=0 doHeloCheck=0 doSenderCheck=0 doRecipientCheck=0 Oct 27 22:27:41 asp mimedefang[25441]: Multiplexor alive - entering main loop Oct 27 22:27:44 asp mimedefang-multiplexor[25427]: Starting slave 1 (pid 25452) (2 running): Bringing slaves up to minSlaves (2) Oct 27 22:28:31 asp sendmail[25508]: alias database /etc/aliases rebuilt by root Oct 27 22:28:31 asp sendmail[25508]: /etc/aliases: 76 aliases, longest 10 bytes, 765 bytes total Oct 27 22:28:31 asp sendmail[25512]: starting daemon (8.13.7): SMTP+queueing@01:00:00 Oct 27 22:28:32 asp sm-msp-queue[25519]: starting daemon (8.13.7): queueing@01:00:00 Oct 27 22:28:32 asp sendmail[25527]: k9RJSWuc025527: from=<root@asp.linux.nt>, size=731, class=0, nrcpts=1, msgid=<20061027192614.GB25014@asp.linux.nt>, proto=ESMTP, daemon=MTA, relay=localhost.localdomain [127.0.0.1] Oct 27 22:28:56 asp sendmail[25533]: k9RJSuNS025533: from=root, size=29, class=0, nrcpts=1, msgid=<200610271928.k9RJSuNS025533@asp.linux.nt>, relay=root@localhost Oct 27 22:28:56 asp sendmail[25539]: k9RJSu2X025539: from=<root@asp.linux.nt>, size=299, class=0, nrcpts=1, msgid=<200610271928.k9RJSuNS025533@asp.linux.nt>, proto=ESMTP, daemon=MTA, relay=localhost.localdomain [127.0.0.1] |
|
#/etc/init.d/clamd restart
Stopping Clam AV daemon: [ ОК ] Starting Clam AV daemon: LibClamAV debug: Setting /tmp as global temporary directory LibClamAV debug: Loading databases from /var/lib/clamav LibClamAV debug: Loading /var/lib/clamav/daily.cvd LibClamAV debug: in cli_cvdload() LibClamAV debug: MD5(.tar.gz) = 9743cd52d2fa858b6420abd3b6c78b72 LibClamAV debug: Decoded signature: 9743cd52d2fa858b6420abd3b6c78b72 LibClamAV debug: Digital signature is correct. LibClamAV Warning: ************************************************** LibClamAV Warning: *** The virus database is older than 7 days. *** ... LibClamAV debug: Unpacking /tmp/clamav-d1e803601c7fd660/main.zmd LibClamAV debug: Unpacking /tmp/clamav-d1e803601c7fd660/main.fp LibClamAV debug: Unpacking /tmp/clamav-d1e803601c7fd660/main.info LibClamAV debug: Loading databases from /tmp/clamav-d1e803601c7fd660 LibClamAV debug: Loading /tmp/clamav-d1e803601c7fd660/main.db LibClamAV debug: Loading /tmp/clamav-d1e803601c7fd660/main.hdb LibClamAV debug: Loading /tmp/clamav-d1e803601c7fd660/main.ndb LibClamAV debug: Loading /tmp/clamav-d1e803601c7fd660/main.zmd LibClamAV debug: Loading /tmp/clamav-d1e803601c7fd660/main.fp [ ОК ] |
|
#/etc/init.d/clamav-milter restart
Stopping clamav-milter: [ ОК ] Starting clamav-milter: LibClamAV debug: Running as user defang (UID 100, GID 101) LibClamAV debug: loadDatabase: check /var/lib/clamav/daily.cvd for updates LibClamAV debug: Loading databases from /var/lib/clamav LibClamAV debug: Loading /var/lib/clamav/daily.cvd LibClamAV debug: in cli_cvdload() LibClamAV debug: MD5(.tar.gz) = 9743cd52d2fa858b6420abd3b6c78b72 LibClamAV debug: Decoded signature: 9743cd52d2fa858b6420abd3b6c78b72 LibClamAV debug: Digital signature is correct. LibClamAV Warning: ************************************************** ... LibClamAV debug: Loading /tmp/clamav-b4e5b431c2a625cd/main.db LibClamAV debug: Loading /tmp/clamav-b4e5b431c2a625cd/main.hdb LibClamAV debug: Loading /tmp/clamav-b4e5b431c2a625cd/main.ndb LibClamAV debug: Loading /tmp/clamav-b4e5b431c2a625cd/main.zmd LibClamAV debug: Loading /tmp/clamav-b4e5b431c2a625cd/main.fp LibClamAV debug: Database loaded LibClamAV debug: Stat()ing files in /var/lib/clamav LibClamAV debug: Setting /tmp as global temporary directory LibClamAV debug: Making /tmp/clamav-a3afdef9465a0a94 [ ОК ] |
|
#/etc/init.d/sendmail restart
Останавливается sm-client: [ ОК ] Останавливается sendmail: [ ОК ] Запускается sendmail: [ ОК ] Запускается sm-client: [ ОК ] |
|
#mail root -s test
were Cc: |
|
#pwd
/root |
|
#tail -f /var/log/messages
Oct 27 22:28:11 asp clamd[25464]: Archive: Blocking archives that exceed limits. Oct 27 22:28:11 asp clamd[25464]: Portable Executable support enabled. Oct 27 22:28:11 asp clamd[25464]: Detection of broken executables enabled. Oct 27 22:28:11 asp clamd[25464]: Mail files support enabled. Oct 27 22:28:11 asp clamd[25464]: OLE2 support enabled. Oct 27 22:28:11 asp clamd[25464]: HTML support enabled. Oct 27 22:28:11 asp clamd[25464]: Self checking every 1800 seconds. Oct 27 22:28:18 asp clamav-milter[25479]: Loaded ClamAV 0.88.5/2035/Sun Oct 15 23:42:30 2006 Oct 27 22:28:18 asp clamav-milter[25479]: ClamAV: Protecting against 73019 viruses Oct 27 22:28:18 asp clamav-milter[25480]: Starting ClamAV version 0.88.5, clamav-milter version 0.88.5 |
|
#tail -f /var/log/maillog
Oct 27 22:27:41 asp mimedefang[25441]: MIMEDefang alive. slavesReservedForLoopback=-1 AllowNewConnectionsToQueue=0 doRelayCheck=0 doHeloCheck=0 doSenderCheck=0 doRecipientCheck=0 Oct 27 22:27:41 asp mimedefang[25441]: Multiplexor alive - entering main loop Oct 27 22:27:44 asp mimedefang-multiplexor[25427]: Starting slave 1 (pid 25452) (2 running): Bringing slaves up to minSlaves (2) Oct 27 22:28:31 asp sendmail[25508]: alias database /etc/aliases rebuilt by root Oct 27 22:28:31 asp sendmail[25508]: /etc/aliases: 76 aliases, longest 10 bytes, 765 bytes total Oct 27 22:28:31 asp sendmail[25512]: starting daemon (8.13.7): SMTP+queueing@01:00:00 Oct 27 22:28:32 asp sm-msp-queue[25519]: starting daemon (8.13.7): queueing@01:00:00 Oct 27 22:28:32 asp sendmail[25527]: k9RJSWuc025527: from=<root@asp.linux.nt>, size=731, class=0, nrcpts=1, msgid=<20061027192614.GB25014@asp.linux.nt>, proto=ESMTP, daemon=MTA, relay=localhost.localdomain [127.0.0.1] Oct 27 22:28:56 asp sendmail[25533]: k9RJSuNS025533: from=root, size=29, class=0, nrcpts=1, msgid=<200610271928.k9RJSuNS025533@asp.linux.nt>, relay=root@localhost Oct 27 22:28:56 asp sendmail[25539]: k9RJSu2X025539: from=<root@asp.linux.nt>, size=299, class=0, nrcpts=1, msgid=<200610271928.k9RJSuNS025533@asp.linux.nt>, proto=ESMTP, daemon=MTA, relay=localhost.localdomain [127.0.0.1] |
|
#tail -f /var/log/
acpid btmp cups/ lastlog messages prelink.log scrollkeeper.log uucp/ Xorg.0.log audit/ clamav/ dmesg mail/ mimedefang/ rpmpkgs secure vbox/ Xorg.0.log.old boot.log cron gdm/ maillog ppp/ samba/ spooler wtmp yum.log |
|
#tail -f /var/log/clamav/clamd
clamd1.log clamd.log |
|
#tail -f /var/log/clamav/clamd1.log
Fri Oct 27 21:59:27 2006 -> Portable Executable support enabled. Fri Oct 27 21:59:27 2006 -> Detection of broken executables enabled. Fri Oct 27 21:59:27 2006 -> Mail files support enabled. Fri Oct 27 21:59:27 2006 -> OLE2 support enabled. Fri Oct 27 21:59:27 2006 -> HTML support enabled. Fri Oct 27 21:59:27 2006 -> Self checking every 1800 seconds. Fri Oct 27 22:03:34 2006 -> Socket file removed. Fri Oct 27 22:03:34 2006 -> ERROR: Can't unlink the pid file /var/run/clamav/clamd.pid Fri Oct 27 22:03:34 2006 -> Exiting (clean) Fri Oct 27 22:03:34 2006 -> --- Stopped at Fri Oct 27 22:03:34 2006 |
|
#tail -f /var/log/maillog
Oct 27 22:28:56 asp sendmail[25539]: k9RJSu2X025539: from=<root@asp.linux.nt>, size=299, class=0, nrcpts=1, msgid=<200610271928.k9RJSuNS025533@asp.linux.nt>, proto=ESMTP, daemon=MTA, relay=localhost.localdomain [127.0.0.1] Oct 27 22:29:32 asp sendmail[25527]: k9RJSWuc025527: Milter (mimedefang): timeout before data read Oct 27 22:29:32 asp sendmail[25527]: k9RJSWuc025527: Milter (mimedefang): to error state Oct 27 22:29:32 asp sendmail[25527]: k9RJSWuc025527: Milter: data, reject=451 4.3.2 Please try again later Oct 27 22:29:32 asp sendmail[25527]: k9RJSWuc025527: to=<root@asp.linux.nt>, delay=00:01:00, pri=30731, stat=Please try again later Oct 27 22:29:32 asp sm-msp-queue[25520]: k9RJQEgh025188: to=root@asp.linux.nt, ctladdr=root (0/0), delay=00:03:18, xdelay=00:01:00, mailer=relay, pri=120585, relay=[127.0.0.1] [127.0.0.1], dsn=4.0.0, stat=Deferred: 451 4.3.2 Please try again later Oct 27 22:29:32 asp mimedefang.pl[25428]: k9RJSWuc025527: Timeout reading from clamd daemon at /var/spool/MIMEDefang/clamd.sock Oct 27 22:29:32 asp mimedefang.pl[25428]: Problem running virus scanner: code=226, category=swerr, action=tempfail Oct 27 22:29:32 asp mimedefang.pl[25428]: filter: k9RJSWuc025527: tempfail=1 Oct 27 22:29:32 asp mimedefang[25441]: k9RJSWuc025527: Tempfailing because filter instructed us to ... Oct 27 22:37:35 asp sendmail[25974]: k9RJbZlw025974: Milter add: header: X-Virus-Scanned: ClamAV version 0.88.5, clamav-milter version 0.88.5 on asp.linux.nt Oct 27 22:37:35 asp sendmail[25974]: k9RJbZlw025974: Milter add: header: X-Virus-Status: Clean Oct 27 22:37:35 asp sm-msp-queue[25969]: k9RJSuNS025533: to=root, ctladdr=root (0/0), delay=00:08:39, xdelay=00:00:00, mailer=relay, pri=300029, relay=[127.0.0.1] [127.0.0.1], dsn=2.0.0, stat=Sent (k9RJbZlw025974 Message accepted for delivery) Oct 27 22:37:35 asp sendmail[25978]: k9RJbZlw025974: to=<root@asp.linux.nt>, ctladdr=<root@asp.linux.nt> (0/0), delay=00:00:00, xdelay=00:00:00, mailer=local, pri=30614, dsn=2.0.0, stat=Sent Oct 27 22:37:35 asp sendmail[25974]: k9RJbZm0025974: from=<root@asp.linux.nt>, size=731, class=0, nrcpts=1, msgid=<20061027192614.GB25014@asp.linux.nt>, proto=ESMTP, daemon=MTA, relay=localhost.localdomain [127.0.0.1] Oct 27 22:37:35 asp sendmail[25974]: k9RJbZm0025974: Milter add: header: X-Virus-Scanned: ClamAV version 0.88.5, clamav-milter version 0.88.5 on asp.linux.nt Oct 27 22:37:35 asp sendmail[25974]: k9RJbZm0025974: Milter add: header: X-Virus-Status: Clean Oct 27 22:37:35 asp sm-msp-queue[25969]: k9RJQEgh025188: to=root@asp.linux.nt, ctladdr=root (0/0), delay=00:11:21, xdelay=00:00:00, mailer=relay, pri=390585, relay=[127.0.0.1] [127.0.0.1], dsn=2.0.0, stat=Sent (k9RJbZm0025974 Message accepted for delivery) Oct 27 22:37:35 asp sendmail[25980]: k9RJbZm0025974: to=<root@asp.linux.nt>, ctladdr=<root@asp.linux.nt> (0/0), delay=00:00:00, xdelay=00:00:00, mailer=local, pri=31042, dsn=2.0.0, stat=Sent You have new mail in /var/spool/mail/root |
|
#tail -f /var/log/maillog
Oct 27 22:37:35 asp sendmail[25978]: k9RJbZlw025974: to=<root@asp.linux.nt>, ctladdr=<root@asp.linux.nt> (0/0), delay=00:00:00, xdelay=00:00:00, mailer=local, pri=30614, dsn=2.0.0, stat=Sent Oct 27 22:37:35 asp sendmail[25974]: k9RJbZm0025974: from=<root@asp.linux.nt>, size=731, class=0, nrcpts=1, msgid=<20061027192614.GB25014@asp.linux.nt>, proto=ESMTP, daemon=MTA, relay=localhost.localdomain [127.0.0.1] Oct 27 22:37:35 asp sendmail[25974]: k9RJbZm0025974: Milter add: header: X-Virus-Scanned: ClamAV version 0.88.5, clamav-milter version 0.88.5 on asp.linux.nt Oct 27 22:37:35 asp sendmail[25974]: k9RJbZm0025974: Milter add: header: X-Virus-Status: Clean Oct 27 22:37:35 asp sm-msp-queue[25969]: k9RJQEgh025188: to=root@asp.linux.nt, ctladdr=root (0/0), delay=00:11:21, xdelay=00:00:00, mailer=relay, pri=390585, relay=[127.0.0.1] [127.0.0.1], dsn=2.0.0, stat=Sent (k9RJbZm0025974 Message accepted for delivery) Oct 27 22:37:35 asp sendmail[25980]: k9RJbZm0025974: to=<root@asp.linux.nt>, ctladdr=<root@asp.linux.nt> (0/0), delay=00:00:00, xdelay=00:00:00, mailer=local, pri=31042, dsn=2.0.0, stat=Sent Oct 27 23:02:22 asp sendmail[26228]: alias database /etc/aliases rebuilt by root Oct 27 23:02:22 asp sendmail[26228]: /etc/aliases: 76 aliases, longest 10 bytes, 765 bytes total Oct 27 23:02:22 asp sendmail[26232]: starting daemon (8.13.7): SMTP+queueing@01:00:00 Oct 27 23:02:22 asp sm-msp-queue[26239]: starting daemon (8.13.7): queueing@01:00:00 ... Oct 27 23:03:04 asp mimedefang-multiplexor[26307]: Starting slave 1 (pid 26332) (2 running): Bringing slaves up to minSlaves (2) Oct 27 23:03:51 asp sendmail[26361]: k9RK3pQi026361: from=root, size=30, class=0, nrcpts=1, msgid=<200610272003.k9RK3pQi026361@asp.linux.nt>, relay=root@localhost Oct 27 23:03:52 asp sendmail[26367]: k9RK3q6W026367: from=<root@asp.linux.nt>, size=300, class=0, nrcpts=1, msgid=<200610272003.k9RK3pQi026361@asp.linux.nt>, proto=ESMTP, daemon=MTA, relay=localhost.localdomain [127.0.0.1] Oct 27 23:03:52 asp mimedefang.pl[26308]: Problem running virus scanner: code=226, category=swerr, action=tempfail Oct 27 23:03:52 asp mimedefang.pl[26308]: filter: k9RK3q6W026367: tempfail=1 Oct 27 23:03:52 asp mimedefang[26321]: k9RK3q6W026367: Tempfailing because filter instructed us to Oct 27 23:03:52 asp sendmail[26367]: k9RK3q6W026367: Milter: data, reject=451 4.3.0 Problem running virus-scanner Oct 27 23:03:52 asp sendmail[26367]: k9RK3q6W026367: to=<root@asp.linux.nt>, delay=00:00:00, pri=30300, stat=Problem running virus-scanner Oct 27 23:03:52 asp sendmail[26361]: k9RK3pQi026361: to=root, ctladdr=root (0/0), delay=00:00:01, xdelay=00:00:00, mailer=relay, pri=30030, relay=[127.0.0.1] [127.0.0.1], dsn=4.0.0, stat=Deferred: 451 4.3.0 Problem running virus-scanner You have new mail in /var/spool/mail/root |
|
#vi sendmail.mc
168c168,169 < INPUT_MAIL_FILTER(`clamav', `S=local:/var/spool/MIMEDefang/clamd.sock, F=T, T=S:4m;R:4m') --- > dnl INPUT_MAIL_FILTER(`clamav', `S=local:/var/spool/MIMEDefang/clamd.sock, F=T, T=S:4m;R:4m') > INPUT_MAIL_FILTER(`clamav', `S=local:/var/spool/MIMEDefang/clamd.sock, T=S:4m;R:4m') 169a171 > dnl define(`confINPUT_MAIL_FILTERS', `clamav')dnl |
|
#make
|
|
#/etc/init.d/sendmail restart
Останавливается sm-client: [ ОК ] Останавливается sendmail: [ ОК ] Запускается sendmail: [ ОК ] Запускается sm-client: [ ОК ] |
|
#/etc/init.d/clamav-milter stop
Stopping clamav-milter: [ ОК ] |
|
#/etc/init.d/clamav-milter stop
Stopping clamav-milter: [ СБОЙ ] |
|
#/etc/init.d/clamd stop
Stopping Clam AV daemon: [ ОК ] |
|
#/etc/init.d/clamd start
Starting Clam AV daemon: LibClamAV debug: Setting /tmp as global temporary directory LibClamAV debug: Loading databases from /var/lib/clamav LibClamAV debug: Loading /var/lib/clamav/daily.cvd LibClamAV debug: in cli_cvdload() LibClamAV debug: MD5(.tar.gz) = 9743cd52d2fa858b6420abd3b6c78b72 LibClamAV debug: Decoded signature: 9743cd52d2fa858b6420abd3b6c78b72 LibClamAV debug: Digital signature is correct. LibClamAV Warning: ************************************************** LibClamAV Warning: *** The virus database is older than 7 days. *** LibClamAV Warning: *** Please update it IMMEDIATELY! *** ... LibClamAV debug: Unpacking /tmp/clamav-dd7657695ebf904c/main.zmd LibClamAV debug: Unpacking /tmp/clamav-dd7657695ebf904c/main.fp LibClamAV debug: Unpacking /tmp/clamav-dd7657695ebf904c/main.info LibClamAV debug: Loading databases from /tmp/clamav-dd7657695ebf904c LibClamAV debug: Loading /tmp/clamav-dd7657695ebf904c/main.db LibClamAV debug: Loading /tmp/clamav-dd7657695ebf904c/main.hdb LibClamAV debug: Loading /tmp/clamav-dd7657695ebf904c/main.ndb LibClamAV debug: Loading /tmp/clamav-dd7657695ebf904c/main.zmd LibClamAV debug: Loading /tmp/clamav-dd7657695ebf904c/main.fp [ ОК ] |
|
#/etc/init.d/clamav-milter start
Starting clamav-milter: LibClamAV debug: Running as user defang (UID 100, GID 101) LibClamAV debug: loadDatabase: check /var/lib/clamav/daily.cvd for updates LibClamAV debug: Loading databases from /var/lib/clamav LibClamAV debug: Loading /var/lib/clamav/daily.cvd LibClamAV debug: in cli_cvdload() LibClamAV debug: MD5(.tar.gz) = 9743cd52d2fa858b6420abd3b6c78b72 LibClamAV debug: Decoded signature: 9743cd52d2fa858b6420abd3b6c78b72 LibClamAV debug: Digital signature is correct. LibClamAV Warning: ************************************************** LibClamAV Warning: *** The virus database is older than 7 days. *** ... LibClamAV debug: Loading /tmp/clamav-7672a9638c87a26a/main.db LibClamAV debug: Loading /tmp/clamav-7672a9638c87a26a/main.hdb LibClamAV debug: Loading /tmp/clamav-7672a9638c87a26a/main.ndb LibClamAV debug: Loading /tmp/clamav-7672a9638c87a26a/main.zmd LibClamAV debug: Loading /tmp/clamav-7672a9638c87a26a/main.fp LibClamAV debug: Database loaded LibClamAV debug: Stat()ing files in /var/lib/clamav LibClamAV debug: Setting /tmp as global temporary directory LibClamAV debug: Making /tmp/clamav-32ca14de1d613c26 [ ОК ] |
|
#/etc/init.d/mimedefang stop
Shutting down mimedefang: [ ОК ] Shutting down mimedefang-multiplexor: [ ОК ] |
|
#/etc/init.d/mimedefang stop
|
|
#/etc/init.d/mimedefang start
Starting mimedefang-multiplexor: [ ОК ] Starting mimedefang: [ ОК ] |
|
#/etc/init.d/sendmail restart
Останавливается sm-client: [ ОК ] Останавливается sendmail: [ ОК ] Запускается sendmail: [ ОК ] Запускается sm-client: [ ОК ] |
|
#vi sendmail.mc
166,167c166,167 < dnl INPUT_MAIL_FILTER(`mimedefang', `S=unix:/var/spool/MIMEDefang/mimedefang.sock, F=T, T=S:1m;R:1m;E:5m') < dnl define(`confINPUT_MAIL_FILTERS', `mimedefang')dnl --- > INPUT_MAIL_FILTER(`mimedefang', `S=unix:/var/spool/MIMEDefang/mimedefang.sock, F=T, T=S:1m;R:1m;E:5m') > define(`confINPUT_MAIL_FILTERS', `mimedefang')dnl 173,174c173,174 < INPUT_MAIL_FILTER(`mimedefang', `S=unix:/var/spool/MIMEDefang/mimedefang.sock, F=T, T=S:1m;R:1m;E:5m') < define(`confINPUT_MAIL_FILTERS', `mimedefang')dnl --- > dnl INPUT_MAIL_FILTER(`mimedefang', `S=unix:/var/spool/MIMEDefang/mimedefang.sock, F=T, T=S:1m;R:1m;E:5m') > dnl define(`confINPUT_MAIL_FILTERS', `mimedefang')dnl |
|
#make
|
|
#/etc/init.d/sendmail restart
Останавливается sm-client: [ ОК ] Останавливается sendmail: [ ОК ] Запускается sendmail: [ ОК ] Запускается sm-client: [ ОК ] |
|
#vi sendmail.mc
169,170c169,170 < INPUT_MAIL_FILTER(`clamav', `S=local:/var/spool/MIMEDefang/clamd.sock, T=S:4m;R:4m') < define(`confINPUT_MAIL_FILTERS', `clamav')dnl --- > dnl INPUT_MAIL_FILTER(`clamav', `S=local:/var/spool/MIMEDefang/clamd.sock, T=S:4m;R:4m') > dnl define(`confINPUT_MAIL_FILTERS', `clamav')dnl |
|
#yum install named
Setting up Install Process Setting up repositories base 100% |=========================| 951 B 00:00 updates-released 100% |=========================| 951 B 00:00 Reading repository metadata in from local files Parsing package install arguments No Match for argument: named Nothing to do |
|
#yum search named
pstack.i386 1.2-7 base Matched from: pstack dumps a stack trace for a process, given the pid of that process. If the process named is part of a thread group, then all the threads in the group are traced. qca.i386 1.0-5 base Matched from: Taking a hint from the similarly-named Java Cryptography Architecture, QCA aims to provide a straightforward and cross-platform crypto API, using Qt datatypes and conventions. QCA separates the API from the ... manufacturer's website can be uncompressed using "unzip" even if it's an .exe file. Some drivers can also be found on driverguide.com. If you can't get the firmware directly, you must install the Windows driver on a Windows platform. The firmware was located in c:\windows\system32\drivers\PS1fw.usb in example case. pstack.i386 1.2-7 installed Matched from: pstack dumps a stack trace for a process, given the pid of that process. If the process named is part of a thread group, then all the threads in the group are traced. |
|
#yum install bind9
Setting up Install Process Setting up repositories Reading repository metadata in from local files Parsing package install arguments No Match for argument: bind9 Nothing to do |
|
#yum install bind-9
Setting up Install Process Setting up repositories Reading repository metadata in from local files Parsing package install arguments No Match for argument: bind-9 Nothing to do |
|
#yum install bind
Setting up Install Process Setting up repositories Reading repository metadata in from local files Parsing package install arguments Resolving Dependencies --> Populating transaction set with selected packages. Please wait. ---> Downloading header for bind to pack into transaction set. bind-9.3.1-20.FC4.i386.rp 100% |=========================| 39 kB 00:01 ---> Package bind.i386 24:9.3.1-20.FC4 set to be updated --> Running transaction check ... Running Transaction Test Finished Transaction Test Transaction Test Succeeded Running Transaction Installing: bind-libs ######################### [1/3] Installing: bind-utils ######################### [2/3] Installing: bind ######################### [3/3] Installed: bind.i386 24:9.3.1-20.FC4 Dependency Installed: bind-libs.i386 24:9.3.1-20.FC4 bind-utils.i386 24:9.3.1-20.FC4 Complete! |
| Время первой команды журнала | 21:58:52 2006-10-27 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| Время последней команды журнала | 22:54:56 2006-10-27 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| Количество командных строк в журнале | 101 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| Процент команд с ненулевым кодом завершения, % | 3.96 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| Процент синтаксически неверно набранных команд, % | 0.99 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| Суммарное время работы с терминалом *, час | 0.93 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| Количество командных строк в единицу времени, команда/мин | 1.80 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| Частота использования команд |
|
В журнал автоматически попадают все команды, данные в любом терминале системы.
Для того чтобы убедиться, что журнал на текущем терминале ведётся, и команды записываются, дайте команду w. В поле WHAT, соответствующем текущему терминалу, должна быть указана программа script.
Команды, при наборе которых были допущены синтаксические ошибки, выводятся перечёркнутым текстом:
$ l s-l bash: l: command not found |
Если код завершения команды равен нулю, команда была выполнена без ошибок. Команды, код завершения которых отличен от нуля, выделяются цветом.
$ test 5 -lt 4 |
Команды, ход выполнения которых был прерван пользователем, выделяются цветом.
$ find / -name abc find: /home/devi-orig/.gnome2: Keine Berechtigung find: /home/devi-orig/.gnome2_private: Keine Berechtigung find: /home/devi-orig/.nautilus/metafiles: Keine Berechtigung find: /home/devi-orig/.metacity: Keine Berechtigung find: /home/devi-orig/.inkscape: Keine Berechtigung ^C |
Команды, выполненные с привилегиями суперпользователя, выделяются слева красной чертой.
# id uid=0(root) gid=0(root) Gruppen=0(root) |
Изменения, внесённые в текстовый файл с помощью редактора, запоминаются и показываются в журнале в формате ed. Строки, начинающиеся символом "<", удалены, а строки, начинающиеся символом ">" -- добавлены.
$ vi ~/.bashrc
|
Для того чтобы изменить файл в соответствии с показанными в диффшоте изменениями, можно воспользоваться командой patch. Нужно скопировать изменения, запустить программу patch, указав в качестве её аргумента файл, к которому применяются изменения, и всавить скопированный текст:
$ patch ~/.bashrc |
Для того чтобы получить краткую справочную информацию о команде, нужно подвести к ней мышь. Во всплывающей подсказке появится краткое описание команды.
Если справочная информация о команде есть, команда выделяется голубым фоном, например: vi. Если справочная информация отсутствует, команда выделяется розовым фоном, например: notepad.exe. Справочная информация может отсутствовать в том случае, если (1) команда введена неверно; (2) если распознавание команды LiLaLo выполнено неверно; (3) если информация о команде неизвестна LiLaLo. Последнее возможно для редких команд.
Большие, в особенности многострочные, всплывающие подсказки лучше всего показываются браузерами KDE Konqueror, Apple Safari и Microsoft Internet Explorer. В браузерах Mozilla и Firefox они отображаются не полностью, а вместо перевода строки выводится специальный символ.
Время ввода команды, показанное в журнале, соответствует времени начала ввода командной строки, которое равно тому моменту, когда на терминале появилось приглашение интерпретатора
Имя терминала, на котором была введена команда, показано в специальном блоке. Этот блок показывается только в том случае, если терминал текущей команды отличается от терминала предыдущей.
Вывод не интересующих вас в настоящий момент элементов журнала, таких как время, имя терминала и других, можно отключить. Для этого нужно воспользоваться формой управления журналом вверху страницы.
Небольшие комментарии к командам можно вставлять прямо из командной строки. Комментарий вводится прямо в командную строку, после символов #^ или #v. Символы ^ и v показывают направление выбора команды, к которой относится комментарий: ^ - к предыдущей, v - к следующей. Например, если в командной строке было введено:
$ whoami
user
$ #^ Интересно, кто я?в журнале это будет выглядеть так:
$ whoami
user
| Интересно, кто я? |
Если комментарий содержит несколько строк, его можно вставить в журнал следующим образом:
$ whoami
user
$ cat > /dev/null #^ Интересно, кто я?
Программа whoami выводит имя пользователя, под которым мы зарегистрировались в системе. - Она не может ответить на вопрос о нашем назначении в этом мире.В журнале это будет выглядеть так:
$ whoami user
|
Комментарии, не относящиеся непосредственно ни к какой из команд, добавляются точно таким же способом, только вместо симолов #^ или #v нужно использовать символы #=
1
2
3
4
Группы команд, выполненных на разных терминалах, разделяются специальной линией.
Под этой линией в правом углу показано имя терминала, на котором выполнялись команды.
Для того чтобы посмотреть команды только одного сенса,
нужно щёкнуть по этому названию.
LiLaLo (L3) расшифровывается как Live Lab Log.
Программа разработана для повышения эффективности обучения Unix/Linux-системам.
(c) Игорь Чубин, 2004-2008