Hello,
for those interested in using Sophos with Zimbra on Ubuntu, here is what I did:
install SAV and SAVDID (download here)
update the following in /usr/local/savdi/savdid.conf:
pidfile: /var/run/savdi/new.pid
user: zimbra
group: zimbra
...
virusdatadir: /opt/sophos-av/lib/sav
idedir: /opt/sophos-av/lib/sav
later in the file
# Define an IP channel for SSSP
#
channel {
commprotocol {
type: UNIX
socket: /var/run/savdi/sssp.sock
user: zimbra
...
scanprotocol {
type: SSSP
# Do we allow the client to use SCANFILE?
allowscanfile: SUBDIR
uncomment the following in /opt/zimbra/conf/amavisd.conf.in
['Sophos-SSSP',
\&ask_daemon, ["{}", 'sssp:/var/run/savdi/sssp.sock'],
# # or: ["{}", 'sssp:[127.0.0.1]:4010'],
qr/^DONE OK\b/m, qr/^VIRUS\b/m, qr/^VIRUS\s*(\S*)/m ],
and refresh conf with zmamavisdctl restart
to start savdi at boot, put savdid.conf in /etc/init
description "savdid"
author "Me <myself@i.com>"
# Stanzas
#
# Stanzas control when and how a process is started and stopped
# See a list of stanzas here: upstart.ubuntu.com/.../Stanzas
# When to start the service
start on runlevel [2345]
# When to stop the service
stop on runlevel [016]
# Automatically restart process if crashed
respawn
expect daemon
# Start the process
exec /usr/local/bin/savdid -d -s -f /var/run/savdid.pid
start savdid :)
to get savdi to update, put the following in /etc/cron.daily/savdiupdate
#!/bin/sh
latest=$(wget -O - -q downloads.sophos.com/.../latest_IDE.xml | awk -F '[<>]' '/name/{print $3}')
if [ ! -f /opt/sophos-av/lib/sav/$latest ]
then
/opt/sophos-av/bin/savupdate -v0
kill -1 `cat /var/run/savdid.pid`
echo $latest
fi
and you can stop sav-rms and sav-protect as they are not really used and disable them at boot with
echo manual > /etc/init/sav-protect.override
This thread was automatically locked due to age.
