£²£³¡¥¥á¡Ý¥ë¥·¥¹¥Æ¥àºÇ¸å¤Î¹½ÃÛ 23-1. ¥á¡Ý¥ë¥¹¥È¥¢¤Î²¾ÁÛ¥Þ¥·¥ó²½ `2b/06 (1) Mail-Store ¤òºÆ¹½ÃÛ¤¹¤ë¸¡Æ¤ `2b/04 -------------------------------------------------------------------------------- ºÇ¿·¥Ð¡Ý¥¸¥ç¥ó¤ÎInterScan ¤ò£È£Ð²¾ÁÛ¥µ¡Ý¥Ð¤Î²¾ÁÛ¥Þ¥·¥ó¤Ë¥¤¥ó¥¹¥È¡Ý¥ë¤·¤ÆÀßÄꤹ¤ë¡£ InterScan ¤Î¸½ºß¤Î¥ê¥ê¡Ý¥¹¤Ï¥Ð¡Ý¥¸¥ç¥ó 7.1 ¤Ç¤¢¤ë¡£ Àè¤Ë¥¤¥ó¥¹¥È¡Ý¥ë¤·¤Æ²ÔƯ¤µ¤» ¤Æ¤¤¤ë¤Î¤Ï InterScan7 ¤È¸Æ¤ó¤Ç¤¤¤ë¡£¿·¤·¤¤¤Î¤Ï InterScan7.1 ¤È¸Æ¤Ö¤³¤È¤Ë¤·¤è¤¦¡£ -------------------------------------------------------------------------------- * ¸¡Æ¤¤¢¤ì¤³¤ì InterScan ¤Î¸½ºß¤Î¥ê¥ê¡Ý¥¹¤Ï¤É¤¦¤Ê¤Ã¤Æ¤¤¤ë¤«¡£ > ¿·¤·¤¤¥Ð¡Ý¥¸¥ç¥ó¤¬½Ð¤Æ¤¤¤Þ¤¹¡£ºÇ¿·¤òÆþ¤ì¤ë¤³¤È¤Ë¤·¤è¤¦¡£ ¤³¤ì¤Þ¤Ç sendmail ¤À¤Ã¤¿¤Î¤ò Postfix ¤Ë¤·¤¿Êý¤¬¤¤¤¤¤«¡£ > ¤¤¤ä sendmail ¤Ç¤¤¤³¤¦¡£RHEL ¤â sendmail ¤¬¥Ç¥Õ¥©¥ë¥È¤À¡£ InterScan7.1 ¤Î²¾ÁÛ¥¢¥×¥é¥¤¥¢¥ó¥¹¤Ë¤Ï POP3 ¤ÏÆþ¤Ã¤Æ¤¤¤ë¤Î¤«¡£ > Æþ¤Ã¤Æ¤Ê¤¤¡£²¾ÁÛ¥¢¥×¥é¥¤¥¢¥ó¥¹¤Ï¤½¤Î¤Þ¤Þ¤Ç»È¤¦¤Î¤¬¿ä¾©¡£ sendmail ¤È Postfix ¤Ç¡¢¤É¤ì¤°¤é¤¤¥á¥â¥ê¤Î¾ÃÈñÎ̤¬°ã¤¦¤Î¤«¡£ > ²¾ÁÛ²½´Ä¶­¤Ç¤Ï¡¢¤Þ¤¢µ¤¤Ë¤¹¤ë¤³¤È¤Ï¤Ê¤¤¤«¡£ InterScan7.1 ¤Î Red Hat Enterprise Linux ¤Ç¤Î¼ÂÀӤϡ¢°ÂÄêÀ­¤Ï¡£ > ½½Ê¬¤¢¤ë¤È¤ß¤Æ¤¤¤¤¤À¤í¤¦¡£ InterScan7.1 ¤Î¥á¡Ý¥ë¥µ¡Ý¥Ð¤ò²¾ÁÛ²½´Ä¶­¤ÇÆ°¤«¤¹¤Î¤ÏÂç¾æÉפʤΤ«¡£ > Âç¾æÉפǤ·¤ç¤¦¡£ ¥Ç¡Ý¥¿¥Ù¡Ý¥¹¤¬ÈîÂç²½¤¹¤ë¥Ð¥°¤Ï²ò¾Ã¤µ¤ì¤¿¤Î¤«¡£ > Í׳Îǧ¤Î¤³¤È¡£¤Þ¤À²ò¾Ã¤µ¤ì¤Æ¤Ê¤«¤Ã¤¿¡£ ¥á¡Ý¥ë¥¹¥È¥¢¤È¥á¡Ý¥ë¥ê¥ì¡Ý¤òºî¤Ã¤Æ¡¢¥á¡Ý¥ë¤ÎÇÛ¿®¤Î³Îǧ¤ò¤·¤¿¤¤¡£ > ¥Õ¥¡¥¤¥¢¥¦¥©¡Ý¥ë¤Ï FortiGate-80C ¤Ë¤·¤Æ¡£ * ¥á¥â ¿·¤·¤¤¥Ð¡Ý¥¸¥ç¥ó¤òÆþ¤ì¤ë¤Ê¤É¤·¤Æ¡¢¤ª¤«¤·¤«¤Ã¤¿¤é¸µ¤ËÌ᤻¤ë¤è¤¦¤Ë¡£Red Hat ¤Î²¾ÁÛ ¥Þ¥·¥ó¤ò¤â¤¦£±¤Äºî¤Ã¤Æ¤ß¤ë¡£¤È¤â¤«¤¯¿¨¤Ã¤Æ¤ß¤è¤¦¡£ Red Hat ¤Î²¾ÁÛ¥Þ¥·¥ó¤ò¤â¤¦£±¤Äºî¤Ã¤Æ¤ß¤ë¤È¤¹¤ë¤«¡£¤½¤ì¤Ë¥¤¥ó¥¹¥È¡Ý¥ë¤·¤Æ¤ß¤ë¤È¤· ¤è¤¦¡£¤È»×¤Ã¤¿¤Î¤À¤¬¥¯¥í¡Ý¥ó¤Çºî¤Ã¤¿ REHL ¤Ë¤¤¤ì¤ë¤³¤È¤Ë¤¹¤ë¡£ ¥¯¥í¡Ý¥ó¤òºî¤ë»þ¤Ë¤Ï¡¢¸µ¤Î²¾ÁÛ¥Þ¥·¥ó¤Ï»ß¤á¤Æ¤ä¤ë¤ó¤À¤Ã¤¿¤±¡£²¾ÁÛ¥Þ¥·¥ó¤Ï IPv6 ¤â Âбþ¤Ë¤·¤Æ¤¤¤ë¤Î¤«¤Ê¡£IPv4 ¤À¤±¤Ë¤·¤¿Êý¤¬¤¤¤¤¤Î¤Ç¤Ê¤¤¤«¡£ ¤Ò¤ç¤Ã¤È¤·¤Æ¥·¥ó¥×¥í¥Ó¥¸¥ç¥Ë¥ó¥°¤Ë¤Ê¤Ã¤Æ¤¤¤Ê¤¤¤«¡¢¥Ç¥£¥¹¥¯¤Ï¡£¥·¥ó¥×¥í¥Ó¥¸¥ç¥Ë¥ó ¥°¤Ï¥Æ¥¹¥È»ÈÍѤλþ¤ËÀßÄꤹ¤ë»ö¤È¡¢¸À¤¦¤³¤È¤é¤·¤¤¡£ ¸½¹Ô¤Î Solaris 9 ¤«¤é /etc/passwd ¤Î¥¢¥«¥¦¥ó¥È¤ò°Ü¹Ô¤¹¤ë¤Î¤Ë¡¢¤Á¤ç¤Ã¤È¹Í¤¨¤Ê¤¤¤È ¤¤¤±¤Ê¤¤¤Î¤Ç¤Ê¤¤¤«¡£UID ¤òƱ¤¸ÈÖ¹æ¤òÉÕ¤±¤ë¤³¤È¤¬¤Ç¤­¤ë¤Î¤«¡£ InterScan7.1 ¤Ï£²£°£°£¸Ç¯¤Ë¥¤¥ó¥¹¥È¡Ý¥ë¤·¤ÆÀßÄꤷ¤¿ºÝ¤Î¤È¡¢ ¤Û¤È¤ó¤ÉÊѤï¤Ã¤Æ¤Ê¤¤ ¤ß¤¿¤¤¡£sendmail ¤ÎÀ©¸æ¥Õ¥¡¥¤¥ë¤Î¥Þ¥Ë¥å¥¢¥ë¤Îµ­½Ò¤Î¤È¤³¤â¤Þ¤Ã¤¿¤¯Æ±¤¸¤À¤·¡£ ²¾ÁÛ¥Þ¥·¥ó¤Ç¤Î InterScan7.1 ¤òËÜÈÖµ¡¤Î£É£Ð¥¢¥É¥ì¥¹¤ËÊѹ¹¤¹¤ë¤Î¤Ï¡¢¤³¤ì¤Þ¤Ç¤ÈƱ¤¸ ¤³¤È¤«¤Ê¡£PostgreSQL ¤Ë¥¢¥¯¥»¥¹¤·¤Æ¡£Æ±¤¸¤Ç¤¹¡£ À½Éʥ饤¥»¥ó¥¹¡£InterScan MSS ¤Ç£±¤Ä¤Î¥¢¥¯¥Æ¥£¥Ù¡Ý¥·¥ç¥ó¥³¡Ý¥É¡£¥¹¥Ñ¥à¥á¡Ý¥ëÂкö (¥³¥ó¥Æ¥ó¥Ä¸¡º÷) ¤Ë¤â¤¦£±¤Ä¥³¡Ý¥É¤òÆþ¤ì¤ë¡¢Æ±»þ¤ËIP¥Õ¥£¥ë¥¿ ¤â¥¢¥¯¥Æ¥£¥Ù¡Ý¥ÈºÑ¤ß ¤Ë¤Ê¤ë¡£ À褺¤Ï Mail-Store ¤ÎͽÈ÷µ¡¤È¤·¤ÆÀßÄꤷ¤Æ¤ß¤ë¡£¥á¡Ý¥ë¤Ï²ÔƯ¤·¤Æ¤¤¤ë Mail-Relay ¤ò Ä̤·¤Æ³°¤Ë¤â½Ð¤¹¤³¤È¤Ï¤Ç¤­¤ë¡£ InterScan ¤Î¸¡º÷¥¨¥ó¥¸¥ó¤Ê¤É¤Î¥¢¥Ã¥×¥Ç¡Ý¥È¤Ï¥×¥í¥­¥·¥µ¡Ý¥Ð·Ðͳ¤Ç¼è¤Ã¤ÆÍè¤ë¤è¤¦¤Ë ¤·¤¿¡£¤³¤ì¤Ë¤Ï£Ä£Î£Ó¤Ï´Ø·¸¤Ê¤¤¡£¤Ä¤Þ¤ê /etc/resolv.conf ¤Ê¤É¤Ï´Ø·¸¤Ê¤·¡£ ¥Ç¡Ý¥¿¥Ù¡Ý¥¹¤Î¥Ç¡Ý¥¿¤ÎÈîÂç²½¤ÎÌäÂê¤Ï²ò¾Ã¤µ¤ì¤Æ¤¤¤Ê¤¤¡£¥¢¥Ã¥×¥Ç¡Ý¥È¥¹¥±¥¸¥å¡Ý¥ë¤ò ̵¤·¤Ë¤·¤Æ¤½¤ÎÅÔÅÙ¥³¥Þ¥ó¥É¤òÁö¤é¤»¤ë¤«¡£¥¯¥í¡Ý¥ó¤ÇÄê´üŪ¤Ë°µ½Ì¤¹¤ë¤è¤¦¤Ë¤¹¤ë¤«¡£ * Mail-Store ¤Ï FireWall ¤Ç£Î£Á£Ô¤¹¤ë¡© ¢£MR ¥Õ¥¡¥¤¥¢¥¦¥©¡Ý¥ë¤¬ FireWall-1 ¤Î¾ì¹ç¡¢MS¤ò£Î£Á£Ô e¤¬MX¥ì¥³¡Ý¥É e¡Ã²¾ÁۣɣРÊÑ´¹¤Î Hide behind IP Address »ØÄꤷ¤Æ¤¤¤ë¤È£Ð£Ã ---------------------- ¥á¡Ý¥ë¥½¥Õ¥È¤«¤é³°¤Ø¤Î¥á¡Ý¥ë¤Ï¡¢a-->b-->c-->e--> ¡Ã ¢¢MR ¤È¤¤¤¦·ÐÏ©¤òé¤ë¡£³°¤«¤éÆâ¤ËÆþ¤Ã¤Æ¤¯¤ë¥á¡Ý¥ë¤Ç¤Ï c¡ÃNAT d¡Ã -->e-->b ¤È¤Ê¤ë¡£ £Ð£Ã¤«¤é³°¤Î¸Ä¿Í¤ÇÆþ¤Ã¤Æ¤¤¤ë¥× FireWall¢¢------------ ¥í¥Ð¥¤¥À¤Ç¤Þ¤¿¼«Ê¬°¸¤ËžÁ÷¤¹¤ë¤è¤¦¤Ë¤·¤Æ¡¢¥á¡Ý¥ë Proxy¡þ ¡Ã Inter¢¢MS ¢¤£Ð£Ã ¤òÁ÷¤ë¤È¡¢Ê֤äƤ­¤¿¥á¡Ý¥ë¤Ë¤Ï¤½¤Î´Ö¤Î¥í¥°¤¬Á´Éô ¡Ã ¡Ã Scan ¡Ãb ¡Ãa µ­Ï¿¤µ¤ì¤ë¡£¥í¥°¤Ï²¼¤«¤é¾å¤Ëµ­Ï¿¤µ¤ì¤Æ¤¤¤ë¡£ ---------------------------- InterScan ¤Î¸¡º÷¥¨¥ó¥¸¥ó¤Ê¤É¤Î¥¢¥Ã¥×¥Ç¡Ý¥È¤Ë¥×¥í¥­¥·¥µ¡Ý¥Ð¤ò²ð¤µ¤Ê¤¤¤è¤¦¤Ë¤¹¤ë¤Ë ¤Ï¡¢¤Ä¤Þ¤ê MS ¤«¤éľÀÜ¥¤¥ó¥¿¡Ý¥Í¥Ã¥È¤Ë¥¢¥¯¥»¥¹¤¹¤ë¤Ë¤Ï¡¢ MS ¥Û¥¹¥È¤ò FireWall ¤Ç £Î£Á£ÔÊÑ´¹¤¹¤ë¤è¤¦ÀßÄꤹ¤ë¡£¤É¤Ã¤Á¤¬¤¤¤¤¤«¡£¥×¥í¥­¥·¥µ¡Ý¥Ð¤Ï¼ÒÆâ¤Î¥Ñ¥½¥³¥ó¤Î¥Ö¥é ¥¦¥¶ÍøÍѤǤÏɬ¿Ü¤Ç¤¢¤ë¡£³°¤Î¥Û¡Ý¥à¥Ú¡Ý¥¸¤Î¥µ¥¤¥È¤Ø¤Ï¡¢ÂçÊý¤Î¼ÒÆâ¤Î¥Ñ¥½¥³¥ó¤Ç¤Ï¥× ¥í¥­¥·¥µ¡Ý¥Ð¤ò·Ðͳ¤·¤Ê¤¤¤È¥¢¥¯¥»¥¹¤Ç¤­¤Ê¤¤¤è¤¦¤Ë¤·¤Æ¤¤¤ë¡£ ¥á¡Ý¥ë¤Î InterScan ¤Ë ¤Ä¤¤¤Æ¤Ï¡¢Ä¾ÀÜ¥¤¥ó¥¿¡Ý¥Í¥Ã¥È¤Ë¥¢¥¯¥»¥¹¤Ç¤­¤ë¤è¤¦¤Ë¤·¤Æ¤ª¤±¤Ð¡¢Î㤨¥×¥í¥­¥·¥µ¡Ý¥Ð ¤¬Ää»ß¤·¤Æ¤â´Ø·¸¤Ê¤¯ÄÌ¿®¤Ï¤Ç¤­¤ë¡£¥×¥í¥­¥·¥µ¡Ý¥Ð¤òÍøÍѤ·¤Ê¤¤¤Î¤Ç¤¢¤ì¤Ð¡¢£Î£Á£ÔÊÑ ´¹¤¬É¬ÍפǤ¢¤ë¡££Î£Á£ÔÊÑ´¹¤ò¤¹¤ë¤È¥á¡Ý¥ë¤Î³°¥Ø¤Î·ÐÏ©¤¬ÅÓÃ棱¤Ä²Ã¤ï¤ë¤³¤È¤Ë¤Ê¤ë¤¬¡¢ ºÇ½ªÅª¤Ë¤Ï£É£Ð¥¢¥É¥ì¥¹(e) ¤Ç½Ð¤Æ¤¤¤¯¡£³°¥Ø¤Îȯ¿®¸µ£É£Ð¥¢¥É¥ì¥¹¤¬£Ä£Î£Ó¤Î£Í£Ø¥ì¥³ ¡Ý¥É¤È°ìÃפ·¤Ê¤¯¤Ê¤ë¤³¤È¤Ï¤Ê¤¤¡£ ¤¢¤È¤Ï sendmail ¤Ê¤ê Postfix ¤Ê¤ê¤¬£Ä£Î£Ó¤ò¸«¤ë ¸«¤Ê¤¤¤È¤¤¤¦Èù̯¤ÊÀßÄê¤È¤ÎÍí¤ß¤ò¹Íθ¤·¤Æ¡¢£Î£Á£Ô¤ò¤É¤¦¤¹¤ë¤«¤Ç¤¢¤ë¡£ * »²¹Í»ñÎÁ Red Hat Enterprise Linux ¤Î²¾ÁÛ¥Þ¥·¥ó¤Ë¥á¡Ý¥ë¥¹¥È¥¢¤òÀßÄꤹ¤ë¤Î¤Ë¤Ï¡¢CentOS ¤â»² ¹Í¤Ë¤Ê¤ë¡£CentOS ¤Î¤³¤ì¤Þ¤Ç¤Î»¨»ïµ­»ö¤â½¦¤Ã¤Æ¤ß¤ë¤³¤È¡£ ¡ÖNETWORK magazine¡× 2008/11, P.82¡Á91, "ÆüËÜ°ì¤ä¤µ¤·¤¤LinuxÆþÌç Â裹²ó¥á¡Ý¥ë¥µ¡Ý > ¥Ð¹½ÃۤδðËÜ"¡£CentOS ɸ½à¤Î sendmail/Dovecot ¤Ç¤ÎÀßÄê¤Ë¤Ä¤¤¤Æ¡£ ¡ÖNETWORK magazine¡× 2008/12, P.82¡Á91, "ÆüËÜ°ì¤ä¤µ¤·¤¤LinuxÆþÌç Â裱£°²ó¤è¤ê¥»¥­ > ¥å¥¢¤Ê¥á¡Ý¥ë¥·¥¹¥Æ¥à¤ÎÀßÄê"¡£ CentOS ¤Ë¤Ï sendmail ¤È Postfix ¤É¤Á¤é¤Ç¤â»È¤¨¤ë¡£ sendmail ¤ÏÁ´ÌÌŪ¤Ë²þÎɤµ¤ìº£¤Ç¤â»È¤Ã¤Æ¤â¤¤¤¤¡£system-switch-mail ¤ÇÁªÂò¤¹¤ë¡£ ¡ÖLinux ¤Çºî¤ë´°Á´¥á¡Ý¥ë¥·¥¹¥Æ¥à¹½ÃÛ¥¬¥¤¥É sendmail/Postfix/qmailÂбþ¡× > Ãø¼Ô:(³ô)¥Ç¡Ý¥¸¡Ý¥Í¥Ã¥È¡¢3,800±ß¡ÜÀÇ¡¢½¨ÏÂ¥·¥¹¥Æ¥à¡£2007/11 ȯÇä¡£ (2) InterScan7.1 ¤ò²¾ÁÛ¥Þ¥·¥ó¤ËÆþ¤ì¤ë `2b/06 * ¤Á¤ã¤Á¤ã¤Ã¤È¤ä¤Ã¤Æ¤ß¤è¤¦Æþ¤ì¤Æ¤ß¤è¤¦ http://www.trendmicro.co.jp/download/ ¤Î¥²¡Ý¥È¥¦¥§¥¤Âкö¤Î¤È¤³¤í¥½¥Õ¥È¥¦¥§¥¢¤Ï¤¢ ¤ë¡£¥á¥Ë¥å¡Ý¤¬¤¢¤Ã¤Á¤³¤Ã¤Á¤ËÈô¤ó¤Çʬ¤«¤ê¤Ë¤¯¤¤¤Ç¤¹¡£ [1] InterScan Messaging Security Appliance £Ã£Ä¤Î¥¤¥á¡Ý¥¸¥Õ¥¡¥¤¥ë [2] InterScan Messaging Security Suite ¥Þ¥¹¥¿¡Ý¥×¥í¥°¥é¥à [3] InterScan Messaging Security Virtual Appliance ²¾ÁÛ¥¢¥×¥é¥¤¥¢¥ó¥¹ ¤É¤ì¤ò¥¤¥ó¥¹¥È¡Ý¥ë¤·¤¿¤é¤¤¤¤¤Î¡£[3] ¤Ï°ã¤¦¤È¤·¤Æ¡£[1] zip ¥Õ¥¡¥¤¥ë¡¢446.84MB¡£Ê¸ »ú¤É¤ª¤ê¤Î¥¢¥×¥é¥¤¥¢¥ó¥¹À½ÉʤÀ¤Ã¤¿¡££²£Õ¤ÎÁõÃÖ¤À¤Ã¤¿¤â¤Î¤Ç£²£°£°£¸Ç¯£¹·î£³£°Æü¤Ë ¿·µ¬ÈÎÇ佪λ¤·¤Æ¤¤¤ë¡£»È¤¨¤â¤·¤Ê¤¤²¿¤Ç¤³¤ó¤Ê¥½¥Õ¥È¤ò¤ª¤¤¤Æ¤¤¤ë¤Î¤À¡£Ê¶¤é¤ï¤·¤¤¤À ¤±¤À¡£[2] tar.gz ¥Õ¥¡¥¤¥ë¡¢490.42MB ¤Ç LinuxÈÇ¥Þ¥¹¥¿¡Ý¥×¥í¥°¥é¥à ¥Ñ¥½¥³¥ó¤Ë InterScan7-Linux ¤È¤¤¤¦¥Õ¥©¥ë¥À¤òºî¤Ã¤Æ¡¢ imss71-lin-b12410-r1.tar.gz ¤ò¥À¥¦¥ó¥í¡Ý¥É¤·¤Æ¤­¤¿¡£¥ê¥ê¡Ý¥¹ÆüÉÕ 2009-09-30 ¤³¤ì¤ò¥Ç¡Ý¥¿¥¹¥È¥¢¤ÎÎΰè¤Ë¤É¤¦¤ä ¤Ã¤Æ¤â¤Ã¤Æ¤¤¤Ã¤¿¤«¤Ê¡£¥À¥¦¥ó¥í¡Ý¥É¤·¤¿¤é¥µ¥¤¥º¤¬ 502,191 KB ¤Ë¤Ê¤Ã¤Æ¤¤¤¿¡££±£°Ê¬ °Ì¤«¤«¤Ã¤¿¡£¥Ñ¥Ã¥Á¤â¤¢¤Ã¤Æ¡¢¥ê¥ê¡Ý¥¹ÆüÉÕ 2011-01-11 38.8MB¡¢£²Ê¬°Ì¤Ç¼è¤Ã¤Æ¤­¤¿¡£ ¥¤¥ó¥¹¥È¡Ý¥ë¥¬¥¤¥É 4.24MB ¤â¥À¥¦¥ó¥í¡Ý¥É¤·¤Æ¤­¤¿¡£Æä˥ץê¥ó¥È¤·¤ÆÆɤà¤Þ¤Ç¤â¤Ê¤« ¤Ã¤¿¡£¤¶¤Ã¤Èµ­»ö¤ò½¦¤Ã¤¿¡£InterScan7 ¤Î£É£Ð¥×¥í¥Õ¥¡¥¤¥é¤È¤Ï¡¢Mail-Relay ¤Ç»È¤¦µ¡ ǽ¤Î¤³¤È¡£TrendMicro Control Manager ¤ÏÂ絬ÌϤʴĶ­¤Ç»È¤¦¥½¥Õ¥È¡£ ξ¼ÔÉÔÍפǤ¢¤ë¡£ ´ÉÍý¼Ô¥¬¥¤¥É¤â°ì±þ¥À¥¦¥ó¥í¡Ý¥É¤·¤Æ¤­¤¿¡¢£²£µ£¸¥Ú¡Ý¥¸¡£¤¶¤Ã¤ÈÌܤòÄ̤·¤Æ¤ª¤¯¡£ * InterScan7.1 ¤Î Readme ¤Î¤á¤Ü¤·¤¤µ­½Ò¤ò½¦¤Ã¤¿ Red Hat ¾å¤Î SELinux ¤Ë¤Ï¥¤¥ó¥¹¥È¡Ý¥ë¤Ç¤­¤Ê¤¤¡£(Security-Enhanced Linux)¡£ ÍÑ°Õ¤·¤¿ Red Hat Enterprise Linux ¤Ï²¾ÁÛ¥Þ¥·¥ó¤Î RHEL/5.6¡£ Red Hat Enterprise Linux 6 ¤À¤È¤¤¤í¤¤¤í¾ò·ï¤¬½ñ¤«¤ì¤Æ¤¤¤ë¡£ Office 2007 ¤È PDF 8 ¥Õ¥¡¥¤¥ë¤Î¸¡º÷¤ò¥µ¥Ý¡Ý¥È¤·¤¿¡£ ¥¤¥ó¥¹¥È¡Ý¥ë¤ÎºÇ¾®Í×·ï 2GB¤ÎRAM¡¢4GB¤Î¥¹¥ï¥Ã¥×Îΰ衢80GB°Ê¾å¤Î¥Ç¥£¥¹¥¯¶õÍÆÎÌ¡£ MTA ¤Ï Sendmail 8.2 °Ê¾å¡£Postfix(InterScan MSSÀìÍÑ) 2.1 °Ê¾å¡£ InterScan MSS ¤Ë¤Ï Postfix ¤Î¥¤¥ó¥¹¥È¡Ý¥ë¥Ñ¥Ã¥±¡Ý¥¸¤Ï´Þ¤Þ¤ì¤Þ¤»¤ó¡£ ÄɲäÇɬÍפʥ饤¥Ö¥é¥ê¡£glibc-2.3.4¡¢libstdc++-libc6.2-2.so.3(PostgreSQLÍÑ)¡£ * ¥À¥¦¥ó¥í¡Ý¥É¡õ¥¤¥ó¥¹¥È¡Ý¥ë # telnet 192.168.1.xx Red Hat Enterprise Linux Server release 5.6 (Tikanga) Kernel 2.6.18-238.el5PAE on an i686 login: tarou Password: $ su - tarou ¤È¤«¤Ç¥í¥°¥¤¥ó¤·¤Æ root ¤Ë¡£ # cd /usr/local/source;ls -l -rw-r--r-- 1 root root 514243050 6月 22 11:01 imss71_lin_b1241_r1.tar. # gzip -d imss* imss71_lin_b1241_r1.tar ¤Ë¤Ê¤ë¡£ # tar xf imss* imss71_lin_b1241_r1.tar ¤Ë¤Ê¤Ã¤¿¤Î¤òŸ³«¡£ # ls -F Document/ Program/ Readme_utf8.txt License.pdf Readme_sjis.txt imss71_lin_b1241_r1.tar # cd Program;ls -F ¥«¥ì¥ó¥È¥Ç¥£¥ì¥¯¥È¥ê¤Ï /usr/local/source/Program¡£ IMSS71_Linux.mib foxnrs.tar ipfilterinst.sh* igration/ Readme_utf8.txt imss.tar isinst.sh* [ ¥Ñ¥Ã¥Á¤âÅö¤Æ¤ë ] ( ¥ê¥ê¡Ý¥¹¤ÎÆüÉÕ 2011-01-11 ) # ls -l -rw-r--r-- 1 root root 40789369 ... imss_71_lx32_patch1_b13020.tar.gz # gzip -d imss_* # tar xf imss_* # cd imss_* # pwd /usr/local/source/imss_71_lx32_patch1_b13020 # ls -F PostgreSQL.tar.gz* imss/ ja_specific/ sedconf* aucmd* imssinst* libtmaseng.so.zip* spameng_ver* aucmd.sh* include_file.sh* license_en.txt* en_specific/ ipprofiler/ license_ja.txt* # ./imssinst << º£Æ°¤¤¤Æ¤¤¤ë¤Î¤ò»ß¤á¤Æ¥Ñ¥Ã¥Á¤òÅö¤Æ¤Æµ¯Æ°¤·¤Æ¤¯¤ë¡£ * InterScan7.1 ¤ÎÀßÄê¤ò¤ä¤Ã¤Æ¤¤¤¯¤³¤È InterScan7 ¤È¤Ï¥á¥Ë¥å¡Ý²èÌ̤¬¤Á¤ç¤Ã¤ÈÊѤï¤Ã¤¿¤ß¤¿¤¤¡£ ¤À¤¤¤¿¤¤ÊѤï¤Ã¤¿¤È¤³¤í¤Ïʬ ¤«¤ë¤·¡¢Æ±¤¸¤è¤¦¤ËÀßÄê¤Ç¤­¤ë¤È¤³¤í¤ÎÀâÌÀ¤Ï¤¤¤¤¤«¡£ÀßÄê¤ÎÆ°ºî¤Î³Îǧ¤ò£±¤Ä¤º¤Ä¤ä¤Ã ¤Æ¤¤¤¯¤³¤È¡£¥á¡Ý¥ë¤Î¥µ¥¤¥º¤Ç¤Î¥Ö¥í¥Ã¥¯¤È¤«¡£¿·¤·¤¤¥á¡Ý¥ë¤Î¥Á¥§¥Ã¥¯¤¬¤¢¤ë¡£Áý¤¨¤Æ ¤¤¤ë¡£¤³¤ì¤é°ìÂβ¿¤ò¤ä¤Ã¤Æ¤¯¤ì¤ë¤Î¤«¡£°ì±þµ¡Ç½¤ò³Îǧ¤·¤Æ¤ª¤­¤¿¤¤¡£ [ ¥á¥Ë¥å¡Ý²èÌÌ ] ³µÍ× >¥Ý¥ê¥·¡Ý ¥Ý¥ê¥·¡Ý¥ê¥¹¥È ¸¡º÷¤Î½ü³° ¶¦Ä̤Υݥꥷ¡Ý¥ª¥Ö¥¸¥§¥¯¥È ¥¢¥É¥ì¥¹¥°¥ë¡Ý¥× ¥­¡Ý¥ï¡Ý¥É¤ª¤è¤Ó¼° ¥Ý¥ê¥·¡ÝÄÌÃÎ ¥¹¥¿¥ó¥× DKIM¾µÇ§ºÑ¤ß¥ê¥¹¥È Web¥ì¥Ô¥å¥Æ¡Ý¥·¥ç¥ó¾µÇ§ºÑ¤ß¥ê¥¹¥È ÆâÉô¥¢¥É¥ì¥¹ >¥ì¥Ý¡Ý¥È >¥í¥° >³ÖÎ¥¤ª¤è¤Ó¥¢¡Ý¥«¥¤¥Ö >´ÉÍý * ¥¤¥ó¥¹¥È¡Ý¥ë¤·¤¿¤é¥Ç¡Ý¥â¥óÎà¤Ï¤â¤¦Æ°¤¤¤Æ¤¤¤¿ # ps -ef UID PID PPID C STIME TTY TIME CMD root 1 0 0 Jun21 ? 00:00:00 init [5] root 2 1 0 Jun21 ? 00:00:00 [migration/0] root 3 1 0 Jun21 ? 00:00:00 [ksoftirqd/0] | imss 8504 1 0 14:31 ? 00:00:00 /opt/trend/imss/PostgreSQL/bin/p imss 8506 8504 0 14:31 ? 00:00:00 postgres: writer process imss 8507 8504 0 14:31 ? 00:00:00 postgres: stats buffer process imss 8508 8507 0 14:31 ? 00:00:00 postgres: stats collector proces root 9547 1 2 14:31 pts/1 00:00:17 /opt/trend/imss/UI/javaJRE/bin/j root 9549 1 0 14:31 pts/1 00:00:00 /opt/trend/imss/bin/imsstasks root 9590 1 0 14:31 ? 00:00:00 /opt/trend/imss/bin/imssmgrmon root 9636 1 0 14:31 ? 00:00:00 /opt/trend/imss/bin/imssmgr imss 9640 8504 0 14:31 ? 00:00:00 postgres: sa imss ::ffff:127.0.0 imss 9829 8504 0 14:34 ? 00:00:00 postgres: sa imss ::ffff:127.0.0 imss 10026 8504 0 14:41 ? 00:00:00 postgres: sa imss ::ffff:127.0.0 imss 10028 8504 0 14:41 ? 00:00:00 postgres: sa imss ::ffff:127.0.0 ¢¨IPv6 ¤Îɽ¼¨¤Ë¤Ê¤Ã¤Æ¤¤¤ë¤è¤¦¤À¡£IPv6 ¤¬Í­¸ú¤Ë¤Ê¤Ã¤Æ¤¤¤ë¤Î¤«Í׳Îǧ¤Î¤³¤È¡£ /etc/passwd /etc/group ------------------------------------------------ ---------------- | | | | |tarou:x:502:100:Tarou Kun:/home/tarou:/bin/bash |tarou:x:500: |imss:x:503:502::/etc/imss:/bin/sh |people:x:501: ºî¤Ã¤¿¤«¤Ê¡©¡£ |imss:x:502:imss * InterScan7.1 ¤¬¥¤¥ó¥¹¥È¡Ý¥ë¤µ¤ì¤¿ÍÍ»Ò # cd /opt/trend;ls -F ¸åÀè¤Ë¤Ê¤Ã¤Æ¤·¤Þ¤¦¤¬Â¿Ê¬¡¢¤Þ¤À¥Ñ¥Ã¥Á¤ÏÆþ¤ì¤Æ¤Ê¤¤¾õÂÖ¡£ imss/ installlog/ # cd imss;ls -F PostgreSQL/ bin/ config/ lib/ man/ script/ temp/ UI/ cdt/ ldap/ log/ queue/ sql/ # ls -F bin aucmd* forceUpdate* imssmgr* imsstasks.pid testdb* cgiCmdNotify* foxdns* imssmgr.pid pemverify* wrsagent* db_maintain* imp_exp* imssmgrmon* purge_time_bookmark digest/ imssausched* imssmgrmon.pid rc4* euqlimpexp* imsscmagent* imssps* report/ euqutil* imssd* imsstasks* rptgraph/ # ls -F config Agent.ini* euqodbc.ini imss.ini.db odbcinst.ini* template/ ProductUI.zip* foxdns.ini* imssps.pem* pslist.ini* SLF2.ldf* imss.dat* krb5.ini* root.res* database.ini* imss.ini odbc.ini* scanner.info* # ls -F script S99ADMINUI* S99FOXDNS* S99REPORT* dbctl.sh* imssstop.sh* S99CLEANEUQ* S99IMSS* S99SCHEDULED* euqtrans* postfixctl.sh* S99CLEANEXPIRE* S99MANAGER* S99UPDATE* forceUpdate.sh* regippro.sh* S99CMAGENT* S99MONITOR* S99WRSAGENT* imp_exp.sh* S99DIGEST* S99POLICY* db_maintain.sh* imssstart.sh* # ls -F queue archive/ handoff/ malform/ postpone/ reprocess/ unnotify/ deliver/ handoffbig/ notify/ postponebig/ reprocessbig/ deliverbig/ handoffretry/ notifybig/ quarantine/ undeliverable/ # ls -l queue drwxrw---- 2 imss imss 4096 8 4 2009 postpone << ´Ø·¸¤¹¤ë¤â¤Î¤Î¤ß¡£ # ls -F PostgreSQL bin/ doc/ include/ lib/ man/ share/ # cd PostgreSQL/bin;ls -F clusterdb dropdb initdb pg_ctl pg_restore reindexdb createdb droplang ipcclean pg_dump postgres vacuumdb createlang dropuser pg_config pg_dumpall postmaster createuser ecpg pg_controldata pg_resetxlog psql # ./psql imss sa << ¥Ñ¥¹¥ï¡Ý¥É¤òʹ¤¤¤Æ¤¯¤ë¡£InterScan7.1 ¤ò¥¤¥ó¥¹¥È¡Ý¥ë¤¹¤ëºÝ ¤Ë¼«Ê¬¤¬·è¤á¤ÆÆþÎϤ·¤¿¤â¤Î¤òÆþ¤ì¤ë¡£ * Äɲ䵤줿¥Ç¡Ý¥â¥óµ¯Æ°¥¹¥¯¥ê¥×¥È # cd /etc/rc2.d;ls K00ipmievd K44rawdevices K89iscsid S25pcscd K01dnsmasq K50netconsole K89netplugd S26acpid K01setroubleshoot K50vsftpd K89pand S26apmd K02NetworkManager K50xinetd K89rdisc S26hidd K02avahi-daemon K69rpcsvcgssd K95firstboot S26lm_sensors K02avahi-dnsconfd K72autofs K95kudzu S26lvm2-monitor K03rhnsd K73ypbind K99readahead_later S55sshd K05atd K74haldaemon S00microcode_ctl S56cups K05conman K74ipmi S03vmware-tools S80sendmail K05saslauthd K74nscd S04readahead_early S85gpm K05wdaemon K74ntpd S08ip6tables S90crond K10psacct K75netfs S08iptables S90xfs K15httpd K85mdmpd S08mcstrans S95anacron K15svnserve K85messagebus S10network S97yum-updatesd K20nfs K85rpcgssd S11auditd S98dbctl K20rwhod K85rpcidmapd S12restorecond S99CMAGENT K24irda K86nfslock S12syslog S99IMSSUI K35dovecot K87multipathd S13cpuspeed S99MONITOR K35smb K87portmap S13irqbalance S99SCHEDULED K35vncserver K88wpa_supplicant S15mdmonitor S99local K35winbind K89dund S20kdump S99smartd K36lisa K89iscsi S25bluetooth # ls -l lrwxrwxrwx 1 root root 17 6 23 11:04 K35dovecot -> ../init.d/dovecot lrwxrwxrwx 1 root root 25 6 22 14:31 S98dbctl -> /etc/rc.d/init.d/S98dbctl lrwxrwxrwx 1 root root 27 6 22 14:31 S99CMAGENT -> /etc/rc.d/init.d/S99CMAGENT lrwxrwxrwx 1 root root 26 6 22 14:31 S99IMSSUI -> /etc/rc.d/init.d/S99IMSSUI lrwxrwxrwx 1 root root 27 6 22 14:31 S99MONIOTOR -> /etc/rc.d/init.d/S99MONITOR lrwxrwxrwx 1 root root 29 6 22 14:31 S99SCHEDULED -> /etc/rc.d/init.d/S99SCHEDULED # cd /etc/init.d;ls -l -rwxrwxr-x 1 root root 1093 6 22 14:31 S98dbctl /etc/init.d ¤Ë¤Ï¤³¤ì¤À¤± -rwxrwxr-x 1 root root 3577 6 22 14:31 S99CMAGENT Äɲ䵤ì¤Æ¤¤¤¿¡£ -rwxr-x--x 1 root root 4514 6 22 14:31 S99IMSSUI -rwxr-x--x 1 root root 4319 6 22 14:31 S99MONITOR -rwxrwxr-x 1 root root 788 6 22 14:31 S99SCHEDULED lrwxrwxrwx 1 root root 34 6 22 14:31 imssstop -> /opt/trend/imss/script/imssstop.sh # cd /etc/rc0.d;ls -l lrwxrwxrwx 1 root root 17 6 23 11:04 K35dovecot -> ../init.d/dovecot lrwxrwxrwx 1 root root 25 6 22 14:31 K00IMSSSTOP -> /etc/rc.d/init.d/imssstop lrwxrwxrwx 1 root root 26 6 22 14:31 K01IMSSUI -> /etc/rc.d/init.d/S99IMSSUI lrwxrwxrwx 1 root root 27 6 22 14:31 K01MONIOTOR -> /etc/rc.d/init.d/S99MONITOR lrwxrwxrwx 1 root root 27 6 22 14:31 K02CMAGENT -> /etc/rc.d/init.d/S99CMAGENT lrwxrwxrwx 1 root root 29 6 22 14:31 K02SCHEDULED -> /etc/rc.d/init.d/S99SCHEDULED lrwxrwxrwx 1 root root 25 6 22 14:31 K03dbctl -> /etc/rc.d/init.d/S98dbctl # cd /var/spool/cron root ¥Õ¥¡¥¤¥ë¤Ë¥³¥Þ¥ó¥É¤¬½ñ¤«¤ì¤Æ¤¤¤¿¡£ # cat root 0 * * * * /opt/trend/imss/script/S99SCHEDULED start >/dev/null 2>&1 (3) Mail-Store ¤È¤·¤Æ¤Î½àÈ÷¤ò¤¹¤ë * ´ðËܥͥåȥï¡Ý¥¯ÀßÄê # hostname akbou /etc/hosts ------------------------------------------------- ping localhost ¤Ï 127.0.0.1¡¢ |127.0.0.1 localhost.localdomain localhost ping akbou ¤Ï 192.168.1.9¤ò |::1 localhost6.localdomain6 localhost6 ÊÖ¤¹¤è¤¦¤Ë¤·¤¿¡£ |192.168.1.9 akbou akbou.nix.co.jj loghost /etc/nsswitch.conf /etc/host.conf /etc/resolv.conf host.conf ¤Ï´Ø·¸¤Ê¤¤ ------------------ -------------- ---------------- ¤È»×¤¦¤¬Ç°¤Î¤¿¤á dns |hosts: files |order hosts |¶õ ¤Îµ­½Ò¤òÈ´¤¤¤¿¡£ hosts ¥Õ¥¡¥¤¥ë¡¢nsswitch.conf ¥Õ¥¡¥¤¥ë¤ÎÊѹ¹¤Ïľ¤Á¤ËÍ­¸ú¤Ë¤Ê¤ë¡£ping¤Ï¤¹¤°¤Ë¸ú¤¯¡£ /etc/init.d/network restart ¤Ï¤ä¤é¤Ê¤¯¤Æ¤â¤³¤ì¤é¤ÎÊѹ¹¤Ë ping ¤ÏÈ¿±þ¤·¤¿¡£¤¢¤ë»þ /etc/hosts ¥Õ¥¡¥¤¥ë¤ËÄɵ­¤·¤¿¤¬Ä¾¤Á¤ËÍ­¸ú¤Ë¤Ê¤é¤Ê¤«¤Ã¤¿¡£ ¥Ö¥é¥ó¥¯¤¬¤¢¤Ã¤¿¤È¤«Ê¸ »úÎó¤ÎºÇ¸å¤Ë¤ª¤«¤·¤Ê¥³¡Ý¥É¤¬Æþ¤Ã¤¿¤Î¤«¤âÃΤì¤Ê¤¤¡£¥Ñ¥½¥³¥ó¤«¤é TeraTerm ¤Çtelnet ¤·¤Æ vi ÊÔ½¸¤·¤Æ¤Î¤³¤È¡£¹Ô¤Î¥Ö¥é¥ó¥¯¤ò¤Ê¤¯¤·¤¿¤ê¥ê¥¿¡Ý¥ó¤ò²¡¤·¤¿¤ê¤·¤¿¤é¤Ç¤­¤¿¡£ /etc/sysconfig/network ---------------------- NETWORKING_IPV6=yes ¤ò no ¤Ë¤·¤Æ IPv6 ¤ò»È¤ï¤Ê¤¤¤è¤¦ |NETWORKING=yes ¤·¤¿¤Ä¤â¤ê¤À¤¬¤Þ¤ÀÍ­¸ú¤Ë¤Ê¤Ã¤Æ¤¤¤ë¤ß¤¿¤¤¤Ç¤¢¤ë¡£¤½¤ì |NETWORKING_IPV6=no ¤ò³Îǧ¤¹¤ë¤Î¤¬ # lsmod ¥³¥Þ¥ó¥É¤é¤·¤¤¡£IPv6 ¤Ë´Ø¤¹¤ë |HOSTNAME=akbou ɽ¼¨¤¬£²¤Ä½Ð¤Æ¤¤¤ë¡£¤·¤«¤· IPv6 ¤ÏÍ­¸ú¤Ë¤Ê¤Ã¤Æ¤¤¤¿¤« ¤é¤È¸À¤Ã¤Æ¡¢Æä˰­¤µ¤ò¤¹¤ë¤â¤Î¤Ç¤Ï¤Ê¤¤¤È¤Î¤³¤È¤Ç¤¢¤ë¡£ # lsmod | grep ipv6 ²¿¤¬¤·¤« IPv6 ¤Î¥Ñ¥±¥Ã¥È¤¬½Ð¤¿¤ê¡¢PostgreSQL¤Î¥×¥í¥» ipv6 270049 37 cnic ¥¹¤¬"postgres: sa imss ::ffff:127.0.0.1(51423) idle" xfrm_nalgo 13381 1 ipv6 ¤È½Ð¤¿¤ê¤¹¤ë¤¬¡¢¤Û¤«¤Ã¤Æ¤ª¤¤¤Æ¤â¹½¤ï¤Ê¤¤¡£ * sendmail ¤Î cf À©¸æ¥Õ¥¡¥¤¥ë¤òÀ¸À®¤¹¤ë # ls sendmail-cf* /mnt/tarou/Server ¤Ë¤Æ°ú¤­Â³¤­Áàºî¡£ sendmail-cf-8.13.8-8.el5.i386.rpm # rpm -ivh sendmail-cf* # rpm -qa | grep sendmail sendmail ¤Î¥Ñ¥Ã¥±¡Ý¥¸¤Ï£²¤ÄÆþ¤Ã¤¿¡£ sendmail-8.13.8-8.el5 sendmail-cf-8.13.8-8.el5 # cd /etc/mail Solaris 9 ¤Ç»È¤Ã¤Æ¤­¤¿¤½¤Î¤Þ¤Þ¤ÎÀ©¸æ¥Õ¥¡¥¤¥ë¤Ç¤Ï¥À¥á¤À¤Ã # m4 RRR.mc > RRR.cf ¤¿¡£¤Þ¤¿¤Ï #make RRR.cf ¤Ç¤âƱ¤¸¥Õ¥¡¥¤¥ë¤¬¤Ç¤­¤ë¡££±£°¹Ô °Ì¤Î¤Îû¤¤¥Õ¥¡¥¤¥ë¤¬¤Ç¤­¤ë¡£¤ª¤«¤·¤¤¡£ ----------------------------------------------- RRR.mc ¤È TTT.mc ¤Ë¤³¤ì¤À¤±¥Õ¥¡ |include(`/usr/share/sendmail-cf/m4/cf.m4')dnl ¥¤¥ë¤ÎƬ¤ËÄɲä·¤¿¤é¡¢ ¤Á¤ã¤ó¤È |VERSIONID(`setup for linux')dnl ¤Ç¤­¤ë¤è¤¦¤Ë¤Ê¤Ã¤¿¡£ |OSTYPE(`linux')dnl | | # make TTT.cf /etc/mail ¥Ç¥£¥ì¥¯¥È¥ê¤Î Makefile ¤ò¸«¤Æ¤¤¤ë¡£ # make RRR.cf *** WARNING: FEATURE(`promiscuous_relay') configures your system as open relay. Do NOT use it on a server that is connected to the Internet! # cd /etc/mail # cp TTT.cf sendmail-tx.cf # cp RRR.cf sendmail-rx.cf # ls -l -rw-r--r-- 1 root root 1048 ... Makefile -rw-r--r-- 1 root root 38139 ... RRR.cf -rw-r--r-- 1 root root 2649 ... RRR.mc -rw-r--r-- 1 root root 39757 ... TTT.cf -rw-r--r-- 1 root root 972 ... TTT.mc -rw-r--r-- 1 root root 38139 ... sendmail-rx.cf -rw-r--r-- 1 root root 39757 ... sendmail-tx.cf [ sendmail-cf-8.13.8-8.el5 ¤òÆþ¤ì¤¿ ] # ls -F /usr/share/sendmail-cf ¤³¤Î¥Ç¥£¥ì¥¯¥È¥ê¤¬¤Ç¤­¤¿¡£ README domain/ hack/ mailer/ sendmail.schema siteconfig/ cf/ feature/ m4/ ostype/ sh/ * sendmail ¤òÀßÄꤹ¤ë # cd /etc/mail local-host-names ----------------------------------------------------------------- |# local-host-names - include all aliases for your machine here. |nix.co.jj # rm access access ¥Õ¥¡¥¤¥ë¤Ï¶õ¤Ë¤¹¤ë¡£ # touch access access.db ¤Î¥µ¥¤¥º¤Ï¤³¤ì¤Þ¤Ç # makemap hash access.db < access ¤ÈƱ¤¸¤¯ 12288 ¤À¤Ã¤¿¡£ # ls -l /var/spool mqueue-rx ¥Ç¥£¥ì¥¯¥È¥ê¤òºî¤ë¡£ drwx------ 2 root mail 4096 Jun 27 13:13 mqueue-rx ¤³¤ì¤Ç sendmail ¤ò¥¹¥¿¡Ý¥È¤µ¤»¤¿¡£¤â¤¦¥á¡Ý¥ëÁ÷¿®¤¬¤Ç¤­¤ë¤È»×¤¤¤­¤ä¥À¥á¤À¤Ã¤¿¡£ * ³ sendmail ¤òÀßÄꤹ¤ë /etc/mail/service.switch ¤È¤â¤«¤¯¤³¤ÎÀßÄê¤ò¤¹¤ë¤³¤È¡£ ------------------------- |hosts files << hosts ¤È files ¤Î´Ö¤Ï¥¿¥Ö¤Î¤³¤È¡£ /etc/mail/sendmail-rx.cf ¤Ç¤­¤¿ cf À©¸æ¥Õ¥¡¥¤¥ë¤Ç¡¢¼¡ ---------------------------------------------- ¤Î¤È¤³¤í¤Î¥³¥á¥ó¥È¤ò³°¤·¤¿¡£ |O ServiceSwitchFile=/etc/mail/service.switch /etc/mail/sendmail-tx.cf ---------------------------------------------- |O ServiceSwitchFile=/etc/mail/service.switch /usr/share/sendmail-cf/README ------------------------------------------------------------------------------- |accept_unresolvable_domains | Normally, MAIL FROM: commands in the SMTP session will be refused if the | host part of the argument to MAIL FROM: cannot be located in the host name | service (e.g., an A or MX record in DNS). If you are inside a firewall | that has only a limited view of the Internet host name space, this could | cause problems. In this case you probably want to use this feature to | accept all domains on input, even if they are unresolvable. | |confSERVICE_SWITCH_FILE ServiceSwitchFile | [/etc/mail/service.switch] The file to use for the service switch on | systems that do not have a system-defined switch. ¤É¤¦¤â¤¢¤ë¥Ð¡Ý¥¸¥ç¥ó¤«¤é¤Î sendmail ¤Ï¥Ç¥Õ¥©¥ë¥È¤Ç£Ä£Î£Ó¤ò¸«¤ëÀßÄê¤Ë¤Ê¤Ã¤Æ¤¤¤ë¤è ¤¦¤Ç¤¢¤ë¡£/etc/nsswitch.conf ¤Î "hosts: files dns" ¤Îµ­½Ò¤Ï¸«¤Ê¤¤¡¢ ´Ø·¸¤Ê¤¤¤è¤¦ ¤Ç¤¢¤ë¡£¤½¤ÎÂå¤ï¤êÆȼ«¤ÎÀ©¸æ¥Õ¥¡¥¤¥ë service.switch ¤ò¸«¤ë¡£¤³¤Î¥Õ¥¡¥¤¥ë¤Ï¤½¤â¤½ ¤â̵¤¤¤Î¤Ç¼«Ê¬¤ÇºîÀ®¤¹¤ë¡£ ¤½¤·¤Æ cf À©¸æ¥Õ¥¡¥¤¥ë¤Î ServiceSwitchFile ¤¬¥³¥á¥ó¥È ¤Ë¤Ê¤Ã¤Æ¤¤¤ë¤Î¤Ç¡¢¥³¥á¥ó¥È¤ò³°¤·Í­¸ú¤Ë¤¹¤ë¡£ mc À©¸æ¥Õ¥¡¥¤¥ë¤Ë¤Ï»Ø¼¨¤¹¤ë¥³¥Þ¥ó¥É ¤Ï¤Ê¤¤¤è¤¦¤Ç¤¢¤ë¡£¤¤¤í¤¤¤íÄ´¤Ù¤ë¤È¡¢¤³¤Î¤è¤¦¤Ë sendmail ¤Ç£Ä£Î£Ó¤ò¸«¤Ê¤¤ÀßÄê¤Ë¤¹ ¤ë¾ì¹ç¤Ï accept_unresolvable_domains ¤âÍ­¸ú¤Ë¤¹¤ë¤³¤È¤È½ñ¤«¤ì¤Æ¤¤¤ë¡£ * /etc/init.d/sendmail ¤Î½¤Àµ [¸µ¡¹¤Î] /etc/init.d/sendmail --------------------------------------------------------------------- |start() { | daemon /usr/sbin/sendmail $([ "x$DAEMON" = xyes ] && echo -bd) \ | $([ -n "$QUEUE" ] && echo -q$QUEUE) $SENDMAIL_OPTARG |} |reload() { | daemon /usr/sbin/sendmail $([ "x$DAEMON" = xyes ] && echo -bd) \ | $([ -n "$QUEUE" ] && echo -q$QUEUE) [Êѹ¹¸å] /etc/init.d/sendmail --------------------------------------------------------------------- |RETVAL=0 |prog="sendmail" |start() { |# daemon /usr/sbin/sendmail $([ "x$DAEMON" = xyes ] && echo -bd) \ |# $([ -n "$QUEUE" ] && echo -q$QUEUE) $SENDMAIL_OPTARG | daemon /usr/sbin/sendmail -bd -q1h -C/etc/mail/sendmail-rx.cf << Äɲᣠ| daemon /usr/sbin/sendmail -bd -q1h -C/etc/mail/sendmail-tx.cf << Äɲᣠ|} |reload() { ¤³¤ì¤Ï»È¤ï¤Ê¤¤¤è¤¦¤Ë¤·¤è¤¦¤«¡£½¤Àµ¤·¤Ê¤¤¡£ | daemon /usr/sbin/sendmail $([ "x$DAEMON" = xyes ] && echo -bd) \ | $([ -n "$QUEUE" ] && echo -q$QUEUE) |} |stop() { | # Stop daemons. | if test -f /var/run/sm-client.pid ; then | | | fi | echo -n $"Shutting down $prog: " | killproc sendmail | killproc sendmail << Äɲá£Äɲ䷤ʤ¤¤È£²¤Ä¤¢¤ë sendmail¥Ç¡Ý¥â¥ó¤¬¾Ã¤¨¤Ê¤¤¡£ | RETVAL=$? | echo | [ $RETVAL -eq 0 ] && rm -f /var/lock/subsys/sendmail | return $RETVAL |} /etc/sysconfig/network/sendmail ------------------------------- ¤³¤Î¥Õ¥¡¥¤¥ë¤Î QUEUE=1h »ØÄê¤Ï¿ʬ´Ø·¸¤Ê¤¯¤Ê¤ë¡£ |DAEMON=yes ľÀÜ daemon /usr/sbin/sendmail -bd -q1h ¤È»ØÄê |QUEUE=1h ¤·¤Æ¤¤¤ë¤Î¤Ç¡£ * ¤È¤ê¤¢¤¨¤º°Ê¾å¤ÎÀßÄê¤Ç¤è¤í¤·¤¤ # /etc/init.d/sendmail start sendmail ¤òµ¯Æ°Ãæ: [OK] sm-client ¤òµ¯Æ°Ãæ: [OK] # ps -ef | grep sendmail root 12966 1 0 13:40 ? 00:00:00 sendmail: accepting connections root 12969 1 0 13:40 ? 00:00:00 sendmail: accepting connections smmsp 12976 1 0 13:40 ? 00:00:00 sendmail: Queue runner@01:00:00 for /var/spool/ clientmqueue [ sendmail ¤Î¥Ç¥Õ¥©¥ë¥È¤Ç¤ÎÀßÄê ] /etc/nsswitch.conf /etc/resolv.conf /etc/mail/service.switch ------------------ ------------------------- ¥Õ¥¡¥¤¥ë¤Ï¤Ê¤·¤Ç¡£ |hosts: files dns |nameserver 202.241.128.3 service.switch ¥Õ¥¡¥¤¥ë¤¬¤Ê¤¤¤È¡¢sendmail ¤ÏÆâÉôŪ¤Ë¤Ï£Ä£Î£Ó¤ò»²¾È¤¹¤ë¤è¤¦¤Ë¤Ê¤Ã ¤Æ¤¤¤ë¡£¤½¤Î¤Þ¤Þ¤¹¤ó¤Ê¤ê£Ä£Î£Ó¤ò¸«¤ë¤³¤È¤¬¤Ç¤­¤ë¤è¤¦ÀßÄꤹ¤ì¤Ð¡¢ÁÇľ¤Ë¥á¡Ý¥ë¤ÎÁ÷ ¿®¤Ï¤Ç¤­¤¿¡£¤·¤«¤·¥á¡Ý¥ë¥¹¥È¥¢¤Ï£Ä£Î£Ó¤Ï´Ø·¸¤·¤Ê¤¤¤è¤¦¤Ë¤·¤¿¤¤¡£¼ÒÆâ¤Î¥æ¡Ý¥¶¤Ë¥á ¡Ý¥ë¤òÁ÷¤ë¤À¤±¤Ë£Ä£Î£Ó¥µ¡Ý¥Ð¤¬Æ°¤¤¤Æ¤Ê¤¤¤È¤À¤á¤È¤¤¤¦¤Î¤Ï¡¢¤ª¤«¤·¤¤¤È»×¤¦¡£ a) ¤³¤³¤Þ¤Ç¤ÎÀßÄê¤Ç¼ÒÆâ´Ö¤Î¥á¡Ý¥ë¤ÎÁ÷¼õ¿®¤Ï¤Ç¤­¤ë¤è¤¦¤Ë¤Ê¤ë¡£ b) ³°¤Ø¥á¡Ý¥ë¤òÁ÷¤ë¤Ë¤Ï¡¢¤³¤Î¥Û¥¹¥È¤ò FireWall-1 ¤ËÅÐÏ¿¤¹¤ë¡£ (4) sendmail ¤Î xxx.mc À©¸æ¥Õ¥¡¥¤¥ë * ¥ª¥ê¥¸¥Ê¥ë¤Î¥Õ¥¡¥¤¥ë /etc/mail/sendmail.mc << RHEL ¤ËÆþ¤Ã¤Æ¤¤¤¿¸µ¡¹¤Î¥Õ¥¡¥¤¥ë¡£ ---------------------- |divert(-1)dnl << °Ê²¼ divert(0)dnl ¤È¤¤¤¦¤Î¤Ï½Ð¤Æ¤³¤Ê¤¤¡£ |dnl # |dnl # This is the sendmail macro config file for m4. If you make changes to |dnl # /etc/mail/sendmail.mc, you will need to regenerate the |dnl # /etc/mail/sendmail.cf file by confirming that the sendmail-cf package is |dnl # installed and then performing a |dnl # |dnl # make -C /etc/mail |dnl # |include(`/usr/share/sendmail-cf/m4/cf.m4')dnl |VERSIONID(`setup for linux')dnl |OSTYPE(`linux')dnl |dnl # |dnl # Do not advertize sendmail version. | | | | |dnl # The following causes sendmail to only listen on the IPv4 loopback address |dnl # 127.0.0.1 and not on any other network devices. Remove the loopback |dnl # address restriction to accept email from the internet or intranet. |dnl # |DAEMON_OPTIONS(`Port=smtp,Addr=127.0.0.1, Name=MTA')dnl |dnl # | | # cd /etc/mail ¸µ¡¹¤Î sendmail.cf ¤È submit.cf ¤Ï¤É¤¦¤À¤Ã¤¿¤«¡£ # grep DaemonP * sendmail.cf:O DaemonPortOptions=Port=smtp,Addr=127.0.0.1, Name=MTA submit.cf:O DaemonPortOptions=Name=NoMTA, Addr=127.0.0.1, M=E ¤Ê¤ó¤ä¥Ç¥Õ¥©¥ë¥È¤Ç¤Ï¼«Ê¬¼«¿È¤Î¥Þ¥·¥ó¤«¤é¤·¤«¥á¡Ý¥ë¤ò½Ð¤¹¤³¤È¤¬¤Ç¤­¤Ê¤¤ÀßÄê¤Ë¤Ê¤Ã ¤Æ¤¤¤ë¤È¤«¡£DAEMON_OPTIONS ¤ò¥³¥á¥ó¥È¤Ë dnl DAEMON_OPTIONS( ... ¤È¤¹¤ë¤È¡¢Â¾¤Î¥Þ ¥·¥ó¤Ä¤Þ¤ê¥Ñ¥½¥³¥ó¤Î¥á¡Ý¥ë¥½¥Õ¥È¤«¤é¤âÁ÷¿®¤ò¼õ¤±ÉÕ¤±¤ë¤³¤È¤¬¤Ç¤­¤ë¤è¤¦¤Ë¤Ê¤ë¤È¤«¡£ ¤Ç¤â¡¢¤½¤Î¤Þ¤Þ¤Ç¤â¥á¡Ý¥ë¤ÏÁ÷¿®¤Ç¤­¤¿¡£¥³¥á¥ó¥È¤Ë¤·¤Æ¤â¤Ç¤­¤¿¡£¤³¤³¤Ç¤Ï´Ø·¸¤·¤Ê¤¤¡£ # grep LogLevel *.cf sendmail.cf:O LogLevel=9 submit.cf:O LogLevel=9 * RRR.mc ¤ÎÆâÍÆ °Ê²¼¤Ï»²¹Í¤Þ¤Ç¡£dnl ¤Ç»Ï¤Þ¤ë¥³¥á¥ó¥È¤Î¤È¤³¤í¤Ï¾Ê¤¤¤Æɽ¼¨¤·¤¿¡£¤·¤«¤· mc À©¸æ¥Õ¥¡ ¥¤¥ë¤È¤¤¤¦¤Î¤Ï¡¢dnl ¤Ïñ½ã¤Ë¥³¥á¥ó¥È¤È¤¤¤¦¤³¤È¤Ç¤Ï¤Ê¤¤Éôʬ¤¬¤¢¤ë¤ß¤¿¤¤¡£¤ª¤«¤·¤Ê ɽ¸½¤¬ÀâÌÀ¤Ë¤µ¤ì¤Æ¤¤¤Æ¡¢¤É¤¦¤â¤è¤¯Ê¬¤«¤é¤Ê¤¤¡£ ²¿¤Ç FEATURE(`use_cw_file')dnl ¤Ê ¤É¤È¤¤¤¦¤è¤¦¤Ë¡¢¸å¤í¤Ë¥³¥á¥ó¥È¤òÉÕ¤±¤Æ¤¤¤ë¤Î¤«Íý²ò¤Ë¶ì¤·¤à¡£ include(`/usr/share/sendmail-cf/m4/cf.m4') VERSIONID(`setup for linux') OSTYPE(`linux') Dwakbou Dmnix.co.jj define(`confDOMAIN_NAME',`$w.$m') LOCAL_DOMAIN(`$m') MASQUERADE_AS(`nix.co.jj') MASQUERADE_DOMAIN(`nix.co.jj') FEATURE(`masquerade_entire_domain') define(`confTO_IDENT',`0s') FEATURE(`use_cw_file') FEATURE(`promiscuous_relay') FEATURE(`accept_unqualified_senders') FEATURE(`accept_unresolvable_domains') define(`confPID_FILE',`/var/run/sendmail-rx.pid') define(`STATUS_FILE',`/etc/mail/statistics-rx') define(`QUEUE_DIR',`/var/spool/mqueue-rx') << /var/spool/mqueue ¤ÈƱ¤¸¥Ñ¡Ý FEATURE(stickyhost) ¥ß¥Ã¥·¥ç¥ó¤Î¤³¤È¡£ define(`MAIL_HUB',`esmtp:[127.0.0.1]') define(`SMART_HOST',`esmtp:[127.0.0.1]') define(`SMTP_MAILER_FLAGS',`k') define(`LOCAL_MAILER_FLAGS',`k') define(`LOCAL_MAILER_ARGS',`TCP [127.0.0.1] 10025') ¡À define(`ESMTP_MAILER_ARGS',`TCP [127.0.0.1] 10025') ¡Ã"service.switch"¤òÀßÄꤷ define(`SMTP_MAILER_ARGS', `TCP [127.0.0.1] 10025') ¡Ã¤Æ¥á¡Ý¥ëÁ÷¿®¤ËÀ®¸ù¤·¤¿»þ define(`SMTP8_MAILER_ARGS',`TCP [127.0.0.1] 10025') ¡ÃÅÀ¤Ç¡¢³ç¸Ì¤Ê¤·¤Ç¤â¤Ç¤­¤¿¡£ define(`DSMTP_MAILER_ARGS',`TCP [127.0.0.1] 10025') ¡Ã define(`RELAY_MAILER_ARGS',`TCP [127.0.0.1] 10025') ¡¿ `TCP 127.0.0.1 10025' define(`SMTP_MAILER_MAXMSGS',`10') define(`confTO_DATAFINAL',`20m') DAEMON_OPTIONS(`Name=MTA-RX') undefine(`ALIAS_FILE') define(`confFORWARD_PATH') MAILER(`smtp') * TTT.mc ¤ÎÆâÍÆ include(`/usr/share/sendmail-cf/m4/cf.m4') VERSIONID(`setup for linux') OSTYPE(`linux') Dwakbou Dmnix.co.jj define(`confDOMAIN_NAME',`$w.$m') LOCAL_DOMAIN(`$m') ¢¨FEATURE(`no_default_msa') ¤¬¤¢¤ë¤È xxx.cf ¤Ë MASQUERADE_AS(`nix.co.jj') "O DaemonPortOptions=Port=587, Name=MSA,M=E" MASQUERADE_DOMAIN(`nix.co.jj') ¤È¤¤¤¦µ­½Ò¤¬Æþ¤é¤Ê¤¤¡£ FEATURE(`masquerade_entire_domain') FEATURE(`no_default_msa') DAEMON_OPTIONS(`Port=10026,Addr=127.0.0.1,Name=MTA') define(`confTO_IDENT',`0s') FEATURE(`use_cw_file') FEATURE(`accept_unqualified_senders') FEATURE(`accept_unresolvable_domains') ¢¨¤³¤³¤Îµ­½Ò¤Ï¼ÂºÝ¤Ë¤Ï¥¿¥Ö¥³¡Ý¥É¤¬Æþ define(`SMART_HOST',`smtp:[192.168.2.1]') ¤Ã¤Æ¤¤¤ë¡£¤³¤Î¤Þ¤Þ»È¤¦»ö¤Ï¤Ç¤­¤Ê¤¤¡£ LOCAL_NET_CONFIG ¢­ R$* < @ $* .$m. > $* $#smtp $@ $2.$m. $: $1 < @ $2.$m. > $3 MAILER(`local') MAILER(`smtp') (5) ¥á¡Ý¥ë¥¹¥È¥¢¤È¤·¤Æ¤ÎÆ°ºî³Îǧ * ¥Û¥¹¥ÈÀßÃ֤ξõ¶·¤ò³Îǧ¤·¤Æ¤ª¤¯ Mail-Relay ¢¢hosA' sendmail BIND akbou ¤Ï²¾ÁÛ¥Þ¥·¥ó¤Ç¡¢¿·¤·¤¤Mail-Store ¡Ã.3 ¤òÀßÄꤹ¤ë¡£¤³¤Î¥Û¥¹¥È¤Ë¤Ï sendmail ¤Ë ---------------------- 202.241.128.0 dovecot ¤½¤ì¤ËInterScan 7.1 ¤òÅëºÜ¤¹¤ë¡£ ¡Ã ¢¢hostA ¡Ã.2 ¡Ã.1 Mail-Store PC Outlook Express ¤Ïakbou»ØÄê¡£ FireWall¢¢------- 192.168.2.0 ¢¢hostB ¢¢akbou ¢¤ Outlook ¤Ï hostB ¤ò»ØÄꤹ¤ë¡£ -1 ¡Ã.2 ¡Ã.1 ¡Ã.9 ¡Ã.7 ----------------------------------------------------------- 192.168.1.0 [ Æâ³°¤«¤é¥á¡Ý¥ë ] ¢­TCP/25 sendmail (sendmail-rx.cf) /var/spool/mqueue-rx ¢­TCP/10025 InterScan ¤Ç¥á¡Ý¥ë¤Î½èÍý /opt/trend/imss/queue/postpone ¢­TCP/10026 sendmail (sendmail-tx.cf) /var/spool/mqueue [ ¥Ç¡Ý¥â¥ó¤Îµ¯Æ° ] # sendmail -bd -q1h -C/etc/mail/sendmail-rx.cf << ¤³¤ì¤éºÇ¸å¤Ë & ¤ÈÉÕ¤± # sendmail -bd -q1h -C/etc/mail/sendmail-tx.cf ¤Ê¤¯¤Æ¤â¤¤¤¤¡£ * ¼«Ê¬°¸¤Ë¥á¡Ý¥ë¤òÁ÷¤ë¤Î¤Ç¥Æ¥¹¥È ¾ò·ï¤È¤·¤Æ¤Ï /etc/resolv.conf ¤Ê¤·¡¢¤³¤Î¥Õ¥¡¥¤¥ë¤Ï´Ø·¸¤·¤Ê¤¤¡£/etc/nsswitch.conf ¤Ë¤Ï "hosts: files" ¤Èµ­½Ò¡£¤³¤ì¤Ç tarou °¸¤Ë¥á¡Ý¥ë¤ò Outlook Express ¤ÇÁ÷¿®¤·¤¿¡£ ¥á¡Ý¥ë¤òÁ÷¤Ã¤Æ¤ß¤ë¤È /var/spool/mqueue-rx/ ¤Ëί¤Þ¤Ã¤¿¡£ # sendmail -bd -q1h -C/etc/mail/sendmail-rx.cf << ¤³¤ì¤À¤±µ¯Æ°¤¹¤ë¡£ [ ¤½¤Î£± ] MDeferred: 421 Internal configuration error ¤È½Ð¤¿¡£ ¤¤¤í¤¤¤í¥Æ¥¹¥È¤·¤Æ¤³¤ó¤¬¤é¤¬¤Ã¤Æ¤·¤Þ¤Ã¤¿¡£°ì±þ¡¢Æâ³°¤Ë¥á¡Ý¥ë¤ÎÁ÷¼õ¿®¤¬¤Ç¤­¤ë¤è¤¦ ¤Ë¤Ê¤Ã¤¿ÀßÄê¤Ç¡¢¤½¤³¤«¤éÀßÄê¤òÈ´¤¤¤Æ¤ß¤Æ¡¢¥¨¥é¡Ý¤ÎºÆ¸½¤ò»î¤ß¤Æ¤ß¤¿¤¤¤È»×¤¦¡£À褺 /etc/mail/service.switch ¤ò̵¤·¤Ë¡£¤È¤ê¤¢¤¨¤º¥Õ¥¡¥¤¥ë̾¤òÊѤ¨¤Æ̵¤·¤È¤¤¤¦¤³¤È¤Ë¡£ /etc/mail/sendmail-rx.cf ---------------------------------------------- |O ServiceSwitchFile=/etc/mail/service.switch << ¤³¤ì¤Ï¤½¤Î¤Þ¤Þ¤Ë¤·¤¿¡£ # cd /var/log # tail maillog | Jul 8 18:12:10 akbou sendmail[22095]: p689CAUp022095: from=, size=442, class=0, nrcpts=1, msgid=<001301cc3d4f$786b2420$070aa8c0@tarou>, proto=SMTP, daemon=MTA-RX, relay=[192.168.1.7] Jul 8 18:12:10 akbou sendmail[22097]: p689CAUp022095: to=, delay=00:00:00, xdelay=00:00:00, mailer=esmtp, pri=120442, relay=[127.0.0.1] [127.0.0.1], dsn=4.0.0, stat=Deferred: 421 Internal configuration error # cd /var/spool/mqueue-rx; ls -l -rw------- 1 root root 10 Jul 8 18:12 dfp689CAUp022095 -rw------- 1 root root 968 Jul 8 18:12 qfp689CAUp022095 # cat qf* MDeferred: 421 Internal configuration error << ñ¤Ê¤ëÀßÄꥨ¥é¡Ý¤È¤¤¤¦¤³¤È¡£ [ ¤½¤Î£² ] Mhost map: lookup (nix.co.jj): deferred ¤È½Ð¤¿¡£ /etc/mail/sendmail-rx.cf ----------------------------------------------- |#O ServiceSwitchFile=/etc/mail/service.switch << ¤½¤Î£±¤Ç¤³¤ì¤Ï¥³¥á¥ó¥È¤Ë¤·¤¿¡£ # cd /var/spool/mqueue-rx;ls -l -rw------- 1 root root 43 Jul 4 16:16 dfp647GxoE010929 -rw------- 1 root root 926 Jul 4 18:03 qfp647GxoE010929 # cat qfp* Mhost map: lookup (nix.co.jj): deferred << £Ä£Î£Ó¤ò¤ß¤è¤¦¤È¤·¤Æ¤¤¤ë¡£ [ ¤½¤Î£³ ] Host unknown ¤È½Ð¤¿¡£ *** ¤³¤ì¤Ï¤É¤¦¤¤¤¦¾õ¶·¤À¤Ã¤¿¤«¤Ê˺¤ì¤¿ *** # cd /var/spool/mqueue-rx;ls -l -rw------- 1 root root 818 Jul 7 09:37 Qfp670bOWu024388 -rw------- 1 root root 1640 Jul 7 09:37 dfp670bOWu024388 # cat Qf* H??Auto-Submitted: auto-generated (failure) # cat df* ----- The following addresses had permanent fatal errors ----- (reason: 550 Host unknown) ----- Transcript of session follows ----- 550 5.1.2 ... Host unknown (Name server: 127.0.0.1: host not test desu ËÜʸ¤¬¤¢¤ë found) * ³°¤Ë¥á¡Ý¥ë¤òÁ÷¤ë¤Î¤Ç¥Æ¥¹¥È Outlook Express ¤«¤é ikken@tcp.or.jj °¸¤ËÁ÷¤ë¡£ ¤³¤ì¤Þ¤Ç¤Ç¼ÒÆâ¤Ç¤Î¥á¡Ý¥ë¤Î¤ä¤ê¼è ¤ê¤Ï¼«Ê¬°¸¤ËÁ÷¤Ã¤ÆÆϤ¯¤³¤È¤ò³Îǧ¤·¤¿¡£¤³¤Î¾õÂ֤dz°¤Ë¥á¡Ý¥ë¤òÁ÷¤Ã¤Æ¤ß¤ë¤È¡¢¼¡¤Î¤è ¤¦¤Ë¥¨¥é¡Ý¤Ë¤Ê¤Ã¤Æ¤·¤Þ¤Ã¤¿¡£¥á¡Ý¥ë¥ê¥ì¡Ý¤Çµö²Ä¤¹¤ë»ØÄ꤬¤¢¤Ã¤¿¤Î¤Ç¤Ê¤¤¤«¡£¤½¤¦»× ¤Ã¤¿¤¬¡¢¤½¤ì¤Ï³°¤«¤éÍ褿¥á¡Ý¥ë¤ò¥á¡Ý¥ë¥ê¥ì¡Ý¤Ç¼õ¤±¤Æ¡¢¤½¤ì¤ò¼ÒÆâ¤Î¥á¡Ý¥ë¥µ¡Ý¥Ð¤Ç ¤¢¤ë¥á¡Ý¥ë¥¹¥È¥¢¤ØÁ÷¤ëºÝ¤Î¤³¤È¤Ç¤¢¤ë¡£¤À¤«¤é¼ÒÆ⤫¤é¥á¡Ý¥ë¤ò³°¤ËÁ÷¤ë¤Î¤Ë¤Ï´Ø·¸¤· ¤Ê¤¤¤³¤È¤Ç¤¢¤ë¡£²ø¤·¤¤¤È¤¹¤ì¤Ð¥Õ¥¡¥¤¥¢¥¦¥©¡Ý¥ë¤Ç²¿¤¬¤·¤«»ß¤á¤Æ¤¤¤ë¤Î¤Ç¤Ê¤¤¤«¡£ TTT.mc ²¼µ­¤Î while talking to [192.168.2.1]: ¤Ï¤³¤ì¤ò¸«¤Æ¤¤¤ë¡£ -------------------------------------------- |define(`SMART_HOST', `smtp:[192.168.2.1]') ¥¨¥é¡Ý¥á¡Ý¥ë¤ò Outlook Express ¤Ç¼è¤ê¹þ¤ó¤Ç¸«¤¿ÍÍ»Ò /var/mail/tarou ¥Õ¥¡¥¤¥ë --------------------------------------------------------- ¤ò¸«¤Æ¤â¤¤¤¤¡£ |Á÷¿®¼Ô: Mail Delivery Subsystem °¸Àè: ikken@tcp.or.jj |·ï̾: Returned mail: see transcript for details |-------------------------------------------------------------------- |The original message was received at Tue, 5 Jul 2011 11:08:50 +0900 |from localhost.localdomain [127.0.0.1] | | ----- The following addresses had permanent fatal errors ----- | | (reason: 550 5.7.1 ... Relaying denied. IP name lookup | failed [192.168.1.9]) | ----- Transcript of session follows ----- |... while talking to [192.168.2.1]: |>>> DATA |<<< 550 5.7.1 ... Relaying denied. IP name lookup failed |550 5.1.1 ... User unknown [192.168.1.9] |<<< 503 5.0.0 Need RCPT (recipient) | [ ¥á¡Ý¥ëÁ÷¿®¤Ç¤­¤¿ ] FireWall-1 ¤Ç akbou ¥Û¥¹¥È¤Î¥ª¥Ö¥¸¥§¥¯¥È¤òºîÀ®¤·¤¿¤é¥á¡Ý¥ë¤Ï¤¹¤°¤ËÄ̤ä¿¡£¥Û¥¹¥È akbou ¤Î Mail-Store ¤¬¼õ¤±¤Æ¡¢³°¤Î¥×¥í¥Ð¥¤¥À ikken@tcp.or.jj ¤ËÆϤ¤¤Æ¡¢ ¤½¤³¤«¤é žÁ÷¤Ë¤è¤ê tarou@nix.co.jj ¤Ø¡£Mail-Relay ¤¬¼õ¤±¤Æ hostB ¤Î Mail-Store¤ØÍ褿¡£¤½ ¤ì¤ò Outlook ¤Ç¼õ¤±¤¿¡£²¾ÁÛ¥Þ¥·¥ó¤Ëºî¤Ã¤¿ InterScan7.1 ¤Ç¥á¡Ý¥ë¤ÎÁ÷¼õ¿®¤¬¤Ç¤­¤¿¡£ FireWall-1 ¤ÎÀßÄê¤Ï Network Objects ¤ÎºîÀ®¤Ç Node->Host¡£¡ºAdd Automatic Address Translation rules¡¢Translation method ¤Ï Hide¡¢¡ýHide behind IP Address 202.241. 128.2¡£¤³¤Î¤è¤¦¤Ê¥ª¥Ö¥¸¥§¥¯¥È¤òºî¤Ã¤Æ¥Ý¥ê¥·¡Ý¤Î¥¤¥ó¥¹¥È¡Ý¥ë¤ò¤ä¤Ã¤¿¡£ ¤·¤«¤·¤É¤³ ¤«¤Ë¥ë¡Ý¥ë¤òŬÍѤ·¤¿¤È¤¤¤¦¤³¤È¤Ï¤Ê¤¤¡£¤Ä¤Þ¤ê£Î£Á£ÔÊÑ´¹¤µ¤»¤ë¤¿¤á¤Î¤ß¤Ëºî¤Ã¤¿¡£ Mail-Store ¤Î¥Þ¥·¥ó¤ò£Î£Á£Ô¤«¤±¤ë¤È¡¢ Mail-Relay ¤Ø¤Î¥á¡Ý¥ë¤Ï 202.241.128.2 ¤«¤é Íè¤Æ¤¤¤ë¤³¤È¤Ë¤Ê¤ë¡£ 202.241.128.2 ¤Ï£Ä£Î£Ó¥µ¡Ý¥Ð¤Î named.hosts ¤Ë¥¨¥ó¥È¥ê¤¬¤¢¤ë "hostG IN A 202.241.128.2"¡£¤³¤ì¤Ç Mail-Relay ¤Î sendmail ¤Ï¤É¤³¤«¤é¥á¡Ý¥ë¤¬Í褿 ¤«°ì±þ³Îǧ¤Ç¤­¤ëÌõ¤Ç¤¢¤ë¡£¥á¡Ý¥ë¤Î¥í¥°¤Ë hostG ¤È¤¤¤¦¤Î¤¬»Ä¤ë¡£ £Ä£Î£Ó¥µ¡Ý¥Ð¤Ç³Î ǧ¤¬¤Ç¤­¤ë¤·¡¢Mail-Relay ¤Î /etc/hosts ¤Ë¥¨¥ó¥È¥ê¤¬¤¢¤ì¤Ð¤³¤ì¤Ç¤â³Îǧ¤Ç¤­¤ë¡£ # cd /var/log # grep ikken maillog.1 ɽ¼¨¾Êά¤Ê¤·¤Ç Jul 8 10:31:28 akbou sendmail[2841]: p681VS9A002839: to=, delay=00:00:00, xdelay=00:00:00, mailer=esmtp, pri=120438, relay=[127.0.0.1] [127.0.0.1], dsn=2.0.0, stat=Sent (2.0.0 p681VS8g002842 Message accepted for delivery) Jul 8 10:31:29 akbou sendmail[2847]: p681VS8g002842: to=, ctladdr= (502/100), delay=00:00:01, xdelay=00:00:01, mailer=smtp, pri=120981, relay=[192.168.2.1] [192.168.2.1], dsn=2.0.0, stat=Sent (p681hhuR007848 Message accepted for delivery) * ¤³¤Î¥á¡Ý¥ë¤Ï°ìÂΤɤ¦¤¹¤ì¤Ð ¥á¡Ý¥ë¤Ï¤³¤Î¥Õ¥¡¥¤¥ë¤Ë½ñ¤­¹þ¤Þ¤ì¤ë¡£¥á¡Ý¥ë¤ò¥á¡Ý¥ë¥½¥Õ¥È¤ÇÆɤ߹þ¤ó¤Ç¤â¡¢¤³¤ì¤À¤± ¤Î¥Õ¥¡¥¤¥ë¤Ï»Ä¤Ã¤Æ¤¤¤ë¡£¤³¤ì¤Ï¾Ã¤µ¤º¤Ë¡¢¤½¤Î¤Þ¤Þ¤Û¤«¤Ã¤Æ¤ª¤±¤Ð¤¤¤¤¤Î¤«¡£ # cat /var/mail/tarou From MAILER_DAEMON Tue Jul 05 11:02:59 2011 Date: Tue, 05 Jul 2011 11:02:59 +0900 From: Mail System Internal Data Subject: DON'T DELETE THIS MESSAGE -- FOLDER INTERNAL DATA Message-ID: <1309831379@akbo2> X-IMAP: 1309222013 0000000011 Status: RO This text is part of the internal format of your mail folder, and is not a real message. It is created automatically by the mail system software. If deleted, important folder data will be lost, and it will be re-created with the data reset to initial values. * ¥á¡Ý¥ë¤ÎÅý·×¥Õ¥¡¥¤¥ë # cd /etc/mail # grep statis *.cf sendmail-rx.cf:O StatusFile=/etc/mail/statistics-rx sendmail-tx.cf:O StatusFile=/etc/mail/statistics << ¥Ç¥Õ¥©¥ë¥È¡£ # touch statistics ¤³¤ì¤é¥Õ¥¡¥¤¥ë¤¬Ìµ¤«¤Ã¤¿¤Î¤Çºî¤Ã¤¿¡£ # touch statistisc-rx # ls -l sta* -rw-r--r-- 1 root root 0 Jul 8 08:58 statistics -rw-r--r-- 1 root root 0 Jul 8 08:58 statistics-rx # mailstats mailstats: /etc/mail/sendmail.cf: No such file or directory mailstats ¥³¥Þ¥ó¥É¤Ï¥Ç¥Õ¥©¥ë¥È¤Ç /etc/mail/sendmail.cf¥Õ¥¡¥¤¥ë¤ò¸«¤ë¤è¤¦¤Ë¤Ê¤Ã¤Æ ¤¤¤ë¡£sendmail.cf ¥Õ¥¡¥¤¥ë¤Ï¤â¤¦»È¤ï¤Ê¤¤¤Î¤Ç¾Ã¤·¤¿¡£¸µ¥Õ¥¡¥¤¥ë¤Ï sendmail.cf.org ¤Ç¤È¤Ã¤Æ¤¢¤ë¤¬¡£mailstats -C ¤Ç cf À©¸æ¥Õ¥¡¥¤¥ë¤ò»ØÄꤹ¤ë¡£ # ls -l statis* -rw-r--r-- 1 root root 728 Jul 8 14:30 statistics -rw-r--r-- 1 root root 0 Jul 8 15:22 statistics-rx # mailstats -C /etc/mail/sendmail-tx.cf [1] Statistics from Fri Jul 8 10:31:28 2011 M msgsfr bytes_from msgsto bytes_to msgsrej msgsdis msgsqur Mailer 3 3 3K 2 2K 0 0 0 local 4 0 0K 1 2K 0 0 0 smtp ===================================================================== T 3 3K 3 4K 0 0 0 C 3 1 0 # mailstats -C /etc/mail/sendmail-rx.cf [2] Statistics from Fri Jul 8 15:23:21 2011 M msgsfr bytes_from msgsto bytes_to msgsrej msgsdis msgsqur Mailer ===================================================================== T 0 0K 0 0K 0 0 0 C 0 0 0 # mailstats -C /etc/mail/sendmail-rx.cf -f statistics ¤È¤ä¤ë¤È [1] ¤Î»Ø¼¨¤È°ì½ï¡£ * ÊÌ̾¥Õ¥¡¥¤¥ë¤Î´ÉÍý /etc/aliases µÍ¤á¤Æɽ¼¨¡£ -------------------------------------------------------------------------------- |# Basic system aliases -- these MUST be present. |mailer-daemon: postmaster |postmaster: root |# General redirections for pseudo accounts. |bin: root | | ¢¨ daemon,shutdown,halt,apache,dovecot,named,postgres,sshd, |mail: root postfix,system,manager,webmaster,security ¤Ê¤É¿¿ô¤¢¤ê¡£ |# trap decode to catch security attacks |decode: root |# Person who should get root's mail |#root: marc |root: tarou << Äɲä·¤¿¡£root°¸¤Î¥á¡Ý¥ë¤Ï¤Ë¤ï¤«´ÉÍý¼Ô¤Ç¤¢¤ë tarou ¤µ¤ó¤Ë žÁ÷¤¹¤ë¤è¤¦¤Ë¤·¤Æ¤ß¤¿¡£ # newaliases /etc/aliases: 77 aliases, longest 10 bytes, 774 bytes total root ¤Ç¥í¥°¥¤¥ó¤·¤Æºî¶È¤·¤Æ¤¤¤ë¡£# mail ¤È¤ä¤Ã¤¿¤é root °¸¤Î¥á¡Ý¥ë¤¬¥ê¥¹¥È¤µ¤ì¤ë¡£ root °¸¤Î¥á¡Ý¥ë¤¬¤¹¤°¤Ë tarou ¤Ë¹Ô¤¯¤è¤¦¤Ë¤Ê¤ëÌõ¤Ç¤Ê¤¤¡£¤·¤Ð¤é¤¯¤Û¤«¤Ã¤Æ¤¤¤¿¡¢¶â ÍËÆü¤Ë¤ä¤Ã¤Æ¡¢ÌÀ¤±¤Æ·îÍËÆü # mail ¥³¥Þ¥ó¥Éᤤ¤¿¤é "No mail for root" ¤È½Ð¤¿¡£ # mail Mail version 8.1 6/6/93. Type ? for help. "/var/spool/mail/root": 20 messages 20 unread >U 1 postmaster@nix ... Wed Jul 6 11:30 27/1067 "=?iso-2022-jp?B?SW50Z" U 2 postmaster@nix ... Wed Jul 6 16:15 27/1023 "=?iso-2022-jp?B?SW50Z" U 3 postmaster@nix ... Wed Jul 6 17:45 27/1025 "=?iso-2022-jp?B?SW50Z" | * ¥·¥¹¥Æ¥à¥í¥°¤Ë¤Ä¤¤¤Æ # cat /var/log/maillog Jul 8 16:00:12 akbou sendmail[16374]: p6870CEn016374: from=, proto=SMTP, daemon=MTA, relay=localhost.localdomain [127.0.0.1] Jul 8 16:00:12 akbou sendmail[16375]: p6870CEn016374: to=root, ... mailer=local, ... dsn=2.0.0, stat=Sent Jul 8 16:01:29 akbou dovecot: pop3-login: Login: user=, method=PLAIN, rip=::ffff:192.168.1.7, lip=::ffff:192.168.1.9 Jul 8 16:01:29 akbou dovecot: POP3(tarou): Disconnected: Logged out top=0/0, retr=0/0, del=0/0, size=0 Jul 8 16:31:29 akbou dovecot: pop3-login: Login: user=, method=PLAIN, rip=::ffff:192.168.1.7, lip=::ffff:192.168.1.9 Jul 8 16:31:29 akbou dovecot: POP3(tarou): Disconnected: Logged out top=0/0, retr=0/0, del=0/0, size=0 ------------------------------------------------------------------------------------ [ ÉÕÏ¿ ] ¤¤¤í¤¤¤í¤«¤¤¤í ¡ü ¥È¥ì¥ó¥É¥Þ¥¤¥¯¥í¤¤¤í¤¤¤í * ¥È¥ì¥ó¥É¥Þ¥¤¥¯¥í¤Î¥é¥¤¥»¥ó¥¹¤Ë¤Ä¤¤¤Æ ¥È¥ì¥ó¥É¥Þ¥¤¥¯¥í¤«¤é¤Î¥á¡Ý¥ë¤ÈÅÅÏäǤªÃΤ餻¤¬Í褿¡¢¥á¡Ý¥ë¤Ï£²£°£±£°Ç¯£¹·î£±£¶Æü ¤Ë [ £×£å£â¡¦¥á¡Ý¥ë¥»¥­¥å¥ê¥Æ¥£(¥²¡Ý¥È¥¦¥§¥¤)Âкö ²¾ÁÛ¥¢¥×¥é¥¤¥¢¥ó¥¹¤Ø¤Î¥Þ¥¤¥°¥ì ¡Ý¥·¥ç¥ó ] ¤È¤¤¤¦¤Î¡£¤½¤ì¤Þ¤Ç¤Ï°Ü¹Ô¤Î¤¿¤á¤ÎÇÛθ¤Ï¤Ê¤«¤Ã¤¿¡£ ²¾ÁÛ¥¢¥×¥é¥¤¥¢¥ó¥¹¤ò »È¤¤¤¿¤±¤ì¤Ð¿·µ¬¤Ë¥é¥¤¥»¥ó¥¹¤òÇ㤦¤·¤«¤Ê¤«¤Ã¤¿¡£¹¹¿·¤ÎȾ³Û¤È¸À¤¦¤Î¤â¤Ê¤«¤Ã¤¿¡£¤¹ ¤°¤µ¤Þ²¾ÁÛ¥¢¥×¥é¥¤¥¢¥ó¥¹¤Ë¤·¤Æ¤·¤Þ¤¦Ìõ¤Ë¤â¹Ô¤«¤Ê¤¤¤È¤Ê¤ë¤È¡¢Ã±½ã¤Ë¥é¥¤¥»¥ó¥¹Âå¤Ï ¤³¤ì¤Þ¤Ç¤ÎÇÜɬÍפÀ¤Ã¤¿¡£¤Þ¤¢¤½¤ì¤¬¼å´³¤ÎÇÛ褬¤Ê¤µ¤ì¤Æ¡¢È¾³Û¤Þ¤Ç¤Ï¤¤¤«¤Ê¤¤¤¬¥é¥¤ ¥»¥ó¥¹Âå¤ò°Â¤¯¤·¤Þ¤¹¤È¤Ê¤Ã¤¿¡£¤ä¤ê¤¿¤¤¤³¤È¤Ïµ¡Ç½Åª¤Ë¤Ï²¿¤âÊѤï¤ê¤¬¤Ê¤¤¤Î¤Ë¡¢¥é¥¤ ¥»¥ó¥¹Â夬¹â¤¯¤Ê¤ë¤È¤Ï¡£¤Á¤ç¤Ã¤È祤ËÍî¤Á¤Ê¤¤¤È»×¤Ã¤Æ¤¤¤¿¡£ ¸½ºß¤Î·ÀÌó InterScan VirusWall Enterprise Edition Plus ( ISVW EE )À½ÉÊ¥«¥Æ¥´¥ê£Å "E 250-499" ISVW EE ¥á¡Ý¥ë¤È£×£å£â¡¢Ç¯´ÖÈñÍÑ (4,710[ISVW-EE]/2)*400 = 824,500 ±ß << £Â¡¥¸½ºßÊÝÍ­À½ÉʤηÀÌ󹹿·»þ¤Ë²¾ÁÛ²½¥¢¥×¥é¥¤¥¢¥ó¥¹À½ÉÊ ¤â¤´´õ˾¤Î¥±¡Ý¥¹ >> ¤³¤ì¤Þ¤Ç¤Î IMSS¡¢IWSS ¤Ï¤½¤Î¤Þ¤ÞÍøÍѤ¬¤Ç¤­¤ë¡£¡Ö¥Þ¥¤¥°¥ì¡Ý¥É¥­¥Ã¥È¡×¤È¡Ö¥Þ¥¤¥°¥ì ¡Ý¥É¹¹¿·¡×¤ÎξÊý¤òÇ㤦¤³¤È¡£IWSVA ¤Ï IWSS ¤«¤éÀßÄê¤ò°ú¤­·Ñ¤²¤ë¡£º£¤Î¤È¤³¤í IMSVA ¤Ï IMSS¤«¤éÀßÄê¤Ï°ú¤­·Ñ¤²¤Ê¤¤¡¢£²£°£±£°Ç¯½©¥ê¥ê¡Ý¥¹¤Ç°ú¤­·Ñ¤²¤é¤ì¤ëͽÄê¡£ £Å ¿·µ¬ ¥Þ¥¤¥°¥ì¡Ý¥É -------------------------------------------------------------------------- ¹¹¿· InterScan VirusWall Enterprise Edition Plus ----- ISVW-EE 4,710 InterScan Messaging Security Suite Plus --------- IMSS 4,300 InterScan Web Security Suite Plus --------- IWSS 2,820 Trend Micro Enterprise Security for Gateway ----- TMESG 4,010 2,325 InterScan Messaging Security Virtual Appliance --- IMSVA 3,230 2,150 InterScan Web Security Virtual Appliance ------ IWSVA 2,540 1,410 ¡¦ISVW-EE ¤Ï IMSS ¤È IWSS ¤ÈξÊýÆþ¤Ã¤Æ¤¤¤ëÀ½ÉÊ¡£ ¡¦TMESG ¤Ï IMSVA ¤È IWSVA ¤ÈξÊýÆþ¤Ã¤Æ¤¤¤ëÀ½ÉÊ¡£ ¡¦IWSVA ¤Ï squid ¥½¥Õ¥È¥Ù¡Ý¥¹¤Î¥­¥ã¥Ã¥·¥å¤È¥×¥í¥­¥·¥µ¡Ý¥Ð¡£ ¡¦IWSVA ¤È IMSVA ¤Ï²¾ÁÛ¥¢¥×¥é¥¤¥¢¥ó¥¹¤Ç Linux £Ï£Ó¤ò´Þ¤à¡£ ¥Þ¥¤¥°¥ì¡Ý¥È¹¹¿·²Á³Ê¤Ï¸½ÊÝÍ­À½Éʤι¹¿·²Á³Ê¤ÈƱ¤¸¡£¥Þ¥¤¥°¥ì¡Ý¥È¥­¥Ã¥È¤ÎÃÍÃʤϣ±Ëü ±ß¡£¤³¤ì¤Þ¤Ç¤Î¤Ï¤¤¤é¤Ê¤¯¤Æ¡¢¿·¤·¤¤¤Î¤À¤±¤¤¤ë¤Ê¤é¿·µ¬Í¥ÂÔ¤ÇÇ㤨¤ë¡£¿·µ¬Í¥ÂԤȤϿ· µ¬¤ËÍøÍѤ¹¤ë²¾ÁÛ¥¢¥×¥é¥¤¥¢¥ó¥¹À½ÉʤβÁ³Ê¡¢¤É¤¦¤ä¤éȾ³Û¤ÇÇ㤨¤ë¤è¤¦¤À¡£ ¥á¡Ý¥ë¤Ï¤³¤ì¤Þ¤Ç¤Î¡¢£×£å£â¤Ï¿·µìÊ»ÍѤ¹¤ë¾ì¹ç¡££´£°£°¸Äʬ¤È¤·¤Æ 10,000[¥Þ¥¤¥°¥ì¡Ý¥È¥­¥Ã¥È] + (4,710[ISVW-EE]/2)*400 + 1,410*400 = 10,000 + 824500 + 564000 = 1,398,500 ¥á¡Ý¥ë¤Ï¤³¤ì¤Þ¤Ç¤Î¡¢£×£å£â¤Ï¿·¤·¤¤¤Î¤À¤±¤Ë¤¹¤ë¾ì¹ç¡£ 4,300*400 + 2,540*400 = 2,736,000 Á´Éô¿·µ¬·ÀÌó¤À¤Ã¤¿¤é¡£ (4,300/2)*400 + 2,540*400 = 1,876,000 ¥á¡Ý¥ë¤Ï¹¹¿·°·¤¤¤ÇȾ³Û¤À¤Ã¤¿¤é¡£ (4,300/2)*400 + (2,540/2)*400 = 1,368,000 ²Ã¤¨¤Æ£×£å£â¤Ï¿·µ¬Í¥ÂÔ°·¤¤¤ÇȾ³Û¤Ê¤é¡£ ¥«¥Æ¥´¥ê£Æ¤Ë¤·¤¿¤é¤É¤¦¤« 500-999 µì¥á¡Ý¥ë ¿·£×£å£â (2960/2)*500 + 990/500 = 740000+495000 = 1235000 ¤³¤ì¤Þ¤Ç£´£°£°¤À¤Ã¤¿¤Î¤ò£µ£°£°¤Ë¤·¤¿¤é¡£Äɲã±£°£°¸Äʬ¤Ï¿·µ¬°·¤¤¤Ë¤Ê¤ë¡£ * ¥È¥ì¥ó¥É¥Þ¥¤¥¯¥íÀ½ÉʤÎ̾¾Î¤ÎÊÑÁ« `28/11 £²£°£°£¸Ç¯£³·î¤Ë̾¾Î¤òÊѹ¹¤·¤Æ¤¤¤ë ¤¿¤À¤· NRS ¤È¤¤¤¦Ì¾¾Î¤â»È¤¦¤È¤¤¤¦ Network Reputation Services(NRS) --> Email Reputation Services(ERS) [ 2008/03 Æþ¼ê¤Î¥Ñ¥ó¥Õ¥ì¥Ã¥È¤Ç¤Ï ] Trend Micro Spam Prevention Solution( SPS ) > InterScan Messaging Security Suite ¤Î¥ª¥×¥·¥ç¥ó¥µ¡Ý¥Ó¥¹¡¢Ï¢·È¤¹¤ë¡£ `27/03 ÈÎÇ䳫»Ï 250¡Á499 ¤Ç°ìÈ̲Á³Ê 1,800±ß¡£¼¡Ç¯ÅٰʹߤâÊѤï¤é¤º¡£ Trend Micro Spam Prevention Solution Advanced > Á÷¿®¸µ¥µ¡Ý¥Ð¤Î£É£Ð¥¢¥É¥ì¥¹¤ò¸µ¤Ë¥Ö¥í¥Ã¥¯¤¹¤ë¡£ [ 2008/09 Æþ¼ê¤Î¥Ñ¥ó¥Õ¥ì¥Ã¥È¤Ç¤Ï ] Trend InterScan VirusWall Enterprise Edition Plus > SPS ¤¬Æþ¤Ã¤¿¡££Å¤Ç¿·µ¬ 4,710±ß¡¢¹¹¿· 2,355±ß¡£ Trend InterScan Messaging Security Suite Plus > SPS ¤¬Æþ¤Ã¤¿¡££Å¤Ç¿·µ¬ 4,300±ß¡¢¹¹¿· 2,150±ß¡£ Trend Micro Spam Prevention Solution > Trend Micro Spam Prevention Solution Advanced ¤¬Ì¾Á°¤òÊѤ¨¤¿¡£SPS ¤Î Email Rep utation Services(ERS) ¤À¤±Íߤ·¤¤¤ªµÒ¤â¤¤¤ë¤È¤Î¤³¤È¡££Å¤Ç¿·µ¬¤â¹¹¿·¤â1,000±ß¡£ ¡ü InterScan7.1 ¤Î¥Ç¥£¡Ý¥×¤Ê¤È¤³¤í * InterScan7.1 ¤¬ 10025 ¤ò»È¤Ã¤Æ¤¤¤ë¡© /opt/trend/imss/config/imss.ini ¥Ç¥Õ¥©¥ë¥ÈÃͤΤá¤Ü¤·¤¤¤È¤³¤íÈ´¿è ----------------------------------------------- |sys_log_path=/opt/trend/imss/log |temp_dir=/opt/trend/imss/temp |queue_postpone=/opt/trend/imss/queue/postpone |#downstream_smtp_server_addr=127.0.0.1 |#downstream_smtp_server_port=10026 |#proxy_service=SMTP_SERVICE |#proxy_port=10025 |#proxy_service=POP3_GENERIC_SERVICE |#proxy_port=110 |#proxy_service=SMTP_REPROCESS_SERVICE |#proxy_port=10024 |enable_postset_thd=yes << Postfix ¤ò»È¤ï¤Ê¤¤¤Ê¤é no ¤Ë¤¹¤ë¡£ InterScan7.1 ¤Î´ÉÍý²èÌ̤Ǹ«¤Æ¤¤¤¯¤È 10027 ¤È¤Ê¤Ã¤Æ¤¤¤ë¤È¤³¤í¤¬¤¢¤Ã¤¿¡£¤³¤ÎÈÖ¹æ¤Ï InterScan7 ¤Ç¤Ï 10025 ¤Ë¤Ê¤Ã¤Æ¤¤¤¿¡£¤½¤ì¤Ç 10025 ¤ÈÆþ¤ì¤Æ¤ß¤ë¤È¡¢ ÊѤ¨¤ë¤³¤È¤¬¤Ç ¤­¤º·Ù¹ð¥á¥Ã¥»¡Ý¥¸¤¬¤Ç¤Æ¤­¤¿¡£¤·¤«¤·¤³¤ì¤Ïñ¤Ê¤ëɽ¼¨¤ÎÌäÂê¤Çµ¡Ç½Åª¤Ë¤ÏÌäÂê¤Ê¤¤¡£ "¥Ý¡Ý¥È¤¬Ìµ¸ú¤Ç¤¹¡£¥Ý¡Ý¥È(10025)¤ÏͽÌ󤵤ì¤Æ¤¤¤ë¤«¡¢¸½ºß»ÈÍÑÃæ¤Ç¤¹¡£" # cd /opt/trend/imss/script imssstart.sh ¤Î¥¨¥Ã¥»¥ó¥¹ ------------------------------------------------- |IMSS_HOME=/opt/trend/imss |export IMSS_HOME |$IMSS_HOME/script/dbctl.sh start |$IMSS_HOME/script/S99ADMINUI start |$IMSS_HOME/script/S99MANAGER start |$IMSS_HOME/script/S99POLICY start |$IMSS_HOME/script/S99IMSS start |$IMSS_HOME/script/S99MONITOR start |$IMSS_HOME/script/S99CMAGENT start |$IMSS_HOME/script/S99EUQ start |$IMSS_HOME/script/S99FOXDNS start |$IMSS_HOME/bind/bindctl.sh start |$IMSS_HOME/../ipprofiler/script/foxproxyd start ¾å¤«¤é£±¤Ä¤º¤Äµ¯Æ°¤·¤Æ¤¤¤Ã¤Æ¡¢S99IMSS start ¤ä¤Ã¤¿¤é 10025 ¤È 10024 ÈÖ¤¬¤Ç¤Æ¤­¤¿¡£ # ./S99IMSS start /opt/trend/imss/bin/wrsagent has started. /opt/trend/imss/bin/imssd has started. # netstat -an Active Internet connections (servers and established) Proto Recv-Q Send-Q Local Address Foreign Address State tcp 0 0 0.0.0.0:5060 0.0.0.0:* LISTEN tcp 0 0 127.0.0.1:10024 0.0.0.0:* LISTEN tcp 0 0 127.0.0.1:10025 0.0.0.0:* LISTEN tcp 0 0 0.0.0.0:139 0.0.0.0:* LISTEN | * InterScan7.1 ¤Îµ¯Æ°¤ÈÄä»ß # cd /opt/trend/imss/script # ./imssstart.sh database directory exist! Database server is not running. Starting... waiting for postmaster to start.... done postmaster started Central Controller has started. imssmgr has started. /opt/trend/imss/bin/imssps has started. /opt/trend/imss/bin/wrsagent has started. /opt/trend/imss/bin/imssd has started. imssmgrmon has started. /opt/trend/imss/bin/imsscmagent has started. /opt/trend/imss/bin/foxdns has started. # ./imssstop.sh << PostgreSQL¤â»ß¤Þ¤ë¡£# netstat -an ¤Ç 10025 ¤È Central Controller stopped. 10024 ¤â¤Ê¤¯¤Ê¤Ã¤Æ¤¤¤¿¡£ Shutting down imssmgr 20248 ... Shutting down imssps 20307 ... Shutting down imssd daemon 22752 ... Shutting down wrsagent 22639 ... Shutting down imssmgrmon 20507 ... /opt/trend/imss/bin/imsscmagent.pid missing Shutting down foxdns daemon 20572 ... /opt/trend/imss/bin/imssausched.pid missing /opt/trend/imss/bin/smart_reporter.pid missing /opt/trend/imss/bin/predata_gen.pid missing /opt/trend/imss/bin/traffic_summary_gen.pid missing /opt/trend/imss/bin/dblog_janitor.pid missing waiting for postmaster to shut down.... done postmaster stopped # ./dbctl.sh stop waiting for postmaster to shut down.... done postmaster stopped * ¥Ñ¥Ã¥Á¤âÆþ¤ì¤Æ InterScan7.1 ²ÔƯ¤Î¾õÂÖ # cd /opt/trend/imss °Ê²¼É½¼¨¤Î(*)¤Ï¾Ê¤¤¤¿¡£Î㤨¤Ð Agent.ini* ¤ÏAgent.ini¡£ # ls -F Backup/ UI/ cdt/ ldap/ log/ queue/ sql/ PostgreSQL/ bin/ config/ lib/ man/ script/ temp/ # ls -F config Agent.ini foxdns.ini imss71.cert patchinfo tmfbe_guid ProductUI.zip imss.dat imssps.pem pslist.ini SLF2.ldf imss.ini krb5.ini root.res database.ini imss.ini.bak odbc.ini scanner.info euqodbc.ini imss.ini.db odbcinst.ini template/ # ls script S99ADMINUI S99IMSS S99UPDATE imp_exp.sh S99CLEANEUQ S99MANAGER S99WRSAGENT imssstart.sh S99CLEANEXPIRE S99MONITOR db_maintain.sh imssstop.sh S99CMAGENT S99POLICY dbctl.sh postfixctl.sh S99DIGEST S99REPORT euqtrans regippro.sh S99FOXDNS S99SCHEDULED forceUpdate.sh vacuum_pglargeobj.sh # ls -F bin Imss.shmid imp_exp imssps rptgraph/ aucmd imssausched imssps.pid sedconf cgiCmdNotify imsscmagent imsstasks system_event_bookmark db_maintain imssd imsstasks.pid testdb digest/ imssd.pid pemverify wrsagent euqlimpexp imssmgr policy_event_bookmark wrsagent.pid euqutil imssmgr.pid purge_time_bookmark forceUpdate imssmgrmon rc4 foxdns imssmgrmon.pid report/ # ls -F queue archive/ handoff/ malform/ postpone/ reprocess/ unnotify/ deliver/ handoffbig/ notify/ postponebig/ reprocessbig/ deliverbig/ handoffretry/ notifybig/ quarantine/ undeliverable/ # ls -F Backup Patch1_B13020/