7x31
/
mailcow-dockerized
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

ClamAV virus scanning

This commit is contained in:
Michael Kuron 2017-04-16 18:29:13 +02:00
parent 9633a34f9f
commit d7656608a3
4 changed files with 38 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
data/Dockerfiles/clamav/Dockerfile
View File

@ -33,9 +33,6 @@ RUN sed -i 's/^Foreground .*$/Foreground true/g' /etc/clamav/clamd.conf && \
echo "TCPSocket 3310" >> /etc/clamav/clamd.conf && \ echo "TCPSocket 3310" >> /etc/clamav/clamd.conf && \
sed -i 's/^Foreground .*$/Foreground true/g' /etc/clamav/freshclam.conf sed -i 's/^Foreground .*$/Foreground true/g' /etc/clamav/freshclam.conf
# volume provision
VOLUME ["/var/lib/clamav"]
# port provision # port provision
EXPOSE 3310 EXPOSE 3310

4
data/Dockerfiles/clamav/bootstrap.sh
View File

@ -15,7 +15,7 @@ latest_exit=0
# define shutdown helper # define shutdown helper
function shutdown() { function shutdown() {
trap "" SUBS trap "" EXIT
for single in $pidlist; do for single in $pidlist; do
if ! kill -0 $pidlist 2>/dev/null; then if ! kill -0 $pidlist 2>/dev/null; then
@ -28,7 +28,7 @@ function shutdown() {
} }
# run shutdown # run shutdown
trap terminate SUBS trap terminate EXIT
wait wait
# return received result # return received result

19
data/conf/rspamd/local.d/antivirus.conf Normal file
View File

@ -0,0 +1,19 @@
clamav {
# If set force this action if any virus is found (default unset: no action is forced)
action = "reject";
# if `true` only messages with non-image attachments will be checked (default true)
attachments_only = true;
# If `max_size` is set, messages > n bytes in size are not scanned
#max_size = 20000000;
# symbol to add (add it to metric if you want non-zero weight)
symbol = "CLAM_VIRUS";
# type of scanner: "clamav", "fprot", "sophos" or "savapi"
type = "clamav";
# If set true, log message is emitted for clean messages
#log_clean = false;
# servers to query (if port is unspecified, scanner-specific default is used)
# can be specified multiple times to pool servers
# can be set to a path to a unix socket
servers = "clamav:3310";
timeout = 5;
}

17
docker-compose.yml
View File

@ -253,6 +253,22 @@ services:
aliases: aliases:
- nginx - nginx
clamav-mailcow:
image: mailcow/clamav
depends_on:
- bind9-mailcow
build: ./data/Dockerfiles/clamav
volumes:
- clamav-vol-1:/var/lib/clamav
restart: always
dns:
- 172.22.1.254
dns_search: mailcow-network
networks:
mailcow-network:
aliases:
- clamav
networks: networks:
mailcow-network: mailcow-network:
driver: bridge driver: bridge
@ -269,3 +285,4 @@ volumes:
rspamd-vol-1: rspamd-vol-1:
postfix-vol-1: postfix-vol-1:
crypt-vol-1: crypt-vol-1:
clamav-vol-1: