 |  |
 |
 |
|
Topic: Virus list and weekly graphic errors. |
reyman | I guess my previous post was not came out.. I dont know why. 
Anyway, this is my problem. Here's my log from qsstats Mail stats since: Oct 26 12:33:53 Total mail scanned: 43 Total viruses stopped: 1285 Total spam found: 1094 Spam percentage: 2544.19 Page last generated: Fri Nov 18 08:50:18 2005 Scan starts every 5 minutes. TOP 10 viruses Exploit.HTML.IFrame : 899 Worm.SomeFool.P : 149 SPAM exceeds "quarantine" threshold - hits=4.9/3.0 : 61 SPAM exceeds "quarantine" threshold - hits=4.8/3.0 : 33 SPAM exceeds "quarantine" threshold - hits=5.9/3.0 : 14 SPAM exceeds "quarantine" threshold - hits=7.1/3.0 : 13 SPAM exceeds "quarantine" threshold - hits=4.4/3.0 : 13 SPAM exceeds "quarantine" threshold - hits=7.0/3.0 : 12 SPAM exceeds "quarantine" threshold - hits=5.0/3.0 : 11 SPAM exceeds "quarantine" threshold - hits=5.3/3.0 : 8 It seems there are only 43 mail scanned, i think it should be more than that. We receive like 200 more mails. And in graphic charts, there's no Weekly Graph, and Clean mail is not ploted (green chart). But we actually got clean mails. I really hope this script can run well, cause I think this one is good, just need a 'little' help from you guys |
Seitan | Please post you qsstats.conf file. It seems, that you are using invalid 'message_string' directive. Also, what version of qmail-scanner do you use (qmail-scanner, o qmail-scanner- st)? |
reyman | Hi Seitan, I'm using qmail-scanner-1.25-st and here's my qsstat.conf rescan_time=5 cache_dir=/var/qsstats/cache/ htdocs=/home/kosmo/public_html/mailstats/ logfile=/var/log/mail virlog=/var/spool/qmailscan/quarantine.log virlog_rotates=no message_string=processing_message rbl_enable=no clear_time=3 refresh=500 mail_line=33CC22 mail_fill=00DD00 spam_line=ED20FF spam_fill=ED20FF rbl_line=6117B5 rbl_fill=4E1292 vir_line=990000 vir_fill=990000 maximum_virus_lines=10 maximum_sender_names=10 maximum_local_domains=10 language=en Regards, |
Seitan | Look at your mail logfile, I'm positive, that incoming mail deffinition is not "processing message" but "checking message". edit your config file. After that delete all cache file, and restart script. |
reyman | Hey, I think it work. Now, i can see there're clean mails coming to our server. But I still have some points here. 1. Top 10 viruses still show 'SPAM exceeds "quarantine".. ' 2. There's still no weekly statistic. TOP 10 viruses Exploit.HTML.IFrame : 2082 Worm.SomeFool.P : 2001 SPAM exceeds "quarantine" threshold - hits=4.9/3.0 : 155 SPAM exceeds "quarantine" threshold - hits=4.8/3.0 : 73 SPAM exceeds "quarantine" threshold - hits=7.0/3.0 : 56 SPAM exceeds "quarantine" threshold - hits=4.5/3.0 : 36 SPAM exceeds "quarantine" threshold - hits=6.9/3.0 : 31 HTML.Phishing.Bank-1 : 28 SPAM exceeds "quarantine" threshold - hits=5.9/3.0 : 25 SPAM exceeds "quarantine" threshold - hits=5.0/3.0 : 23 TOP 10 virus domains yahoo.com : 584 topica.com : 284 returns.groups.yahoo.com : 280 yahoogroups.com : 256 kosmojaya.com : 199 hotmail.com : 176 www.karir.com : 88 playboy.com : 74 indosat.net.id : 72 cbn.net.id : 40 TOP 10 receiving domains regards, |
Seitan | Stop qsstats. Delete all cache files. Start qsstats. - This shuld fix your "spam exceeds" issue. As for empty weekly gpraphs, - what version of rrdtool do you use? - qsstats has a problem with new release of rrdtool (1.2x). |
| | |
Legacy forum 2.02Omega|Lin_ver
Code:Tadas Ustinavičius
powered by LegacySystems.org 2003
