垃圾邮件,SQUID 惹的麻烦 |
| 发表者:分类:应用服务2012-03-23 20:20:33 阅读[4358] |
今天接到电信通知,说我服务器发送垃圾邮件要封IP,赶紧检查,果然发现有600多个发送列表,只能马上关闭POSTFIX,但是我的POSTFIX是要验证才能发送MAIL的呀,原来是SQUID 惹的麻烦,最后得到高人指点,修改了SQUID的配置才,把问题解决了.
########## Base control ##########
cache_mgr webmaster
cache_effective_user squid
cache_effective_group squid
http_port 61.152.246.142:80
icp_port 0
cache_dir ufs /tmp/squid 300 16 256
error_directory /usr/local/etc/squid/errors/Simplify_Chinese
icon_directory /usr/local/etc/squid/icons
mime_table /usr/local/etc/squid/mime.conf
coredump_dir /usr/local/squid
pid_filename /usr/local/squid/logs/squid.pid
hosts_file /etc/hosts
########## Performance control ##########
cache_mem 128 MB #\xb8\xfc\xb8\xc4\xce\xaa\xc4\xe3\xd0\xe8\xd2\xaa\xbb\xba\xb3\xe5\xb5\xc4\xc4\xda\xb4\xe6\xb4\xf3\xd0\xa1\xa3\xac\xb5\xab\xb
d\xa8\xd2\xe9\xb2\xbb\xb4\xf3\xd3\xda\xc4\xda\xb4\xe6\xb5\xc41/3
cache_swap_low 90
cache_swap_high 95
maximum_object_size 4096 KB
minimum_object_size 0 KB
maximum_object_size_in_memory 8 KB
ipcache_size 1024
ipcache_low 90
ipcache_high 95
fqdncache_size 1024
cache_replacement_policy lru
memory_replacement_policy lru
log_ip_on_direct on
dns_timeout 2 minutes
request_header_max_size 10 KB
request_body_max_size 0 KB
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern . 0 20% 4320
negative_ttl 5 minute
positive_dns_ttl 6 hour
negative_dns_ttl 1 minute
connect_timeout 1 minute
read_timeout 15 minute
request_timeout 5 minute
client_lifetime 1 day
maximum_single_addr_tries 1
uri_whitespace strip
ie_refresh off
########## Access control ############
# acl all src 0.0.0.0/0.0.0.0
# http_access allow all
# http_reply_access allow all
# hierarchy_stoplist cgi-bin ?
########## Accelator control ############
httpd_accel_host virtual
httpd_accel_port 81
httpd_accel_with_proxy on
httpd_accel_uses_host_header on
# accelerater my domain only
acl acceleratedHostA dstdomain .baobaoi.com
acl acceleratedHostB dstdomain .51wanyouxi.com
acl acceleratedHostC dstdomain .cha114.cn
acl acceleratedHostD dstdomain .wanwanyouxi.com
acl acceleratedHostE dstdomain .1qw.cn
acl acceleratedHostF dstdomain .51wanyouxi.cn
acl acceleratedHostG dstdomain .gamepop.cn
acl acceleratedHostH dstdomain .haha99.com
# accelerater http protocol on port 80
acl acceleratedProtocol protocol HTTP
acl acceleratedPort port 81
# access arc
acl all src 0.0.0.0/0.0.0.0
# Allow requests when they are to the accelerated machine AND to the
# right port with right protocol
http_access allow acceleratedProtocol acceleratedPort acceleratedHostA
http_access allow acceleratedProtocol acceleratedPort acceleratedHostB
http_access allow acceleratedProtocol acceleratedPort acceleratedHostC
http_access allow acceleratedProtocol acceleratedPort acceleratedHostD
http_access allow acceleratedProtocol acceleratedPort acceleratedHostE
http_access allow acceleratedProtocol acceleratedPort acceleratedHostF
http_access allow acceleratedProtocol acceleratedPort acceleratedHostG
http_access allow acceleratedProtocol acceleratedPort acceleratedHostH
########## Misc control ###########
#ftp_user Squid@
#ftp_list_width 32
#ftp_passive on
#ftp_sanitycheck on
httpd_accel_single_host off
########## Base control ##########
cache_mgr webmaster
cache_effective_user squid
cache_effective_group squid
http_port 61.152.246.142:80
icp_port 0
cache_dir ufs /tmp/squid 300 16 256
error_directory /usr/local/etc/squid/errors/Simplify_Chinese
icon_directory /usr/local/etc/squid/icons
mime_table /usr/local/etc/squid/mime.conf
coredump_dir /usr/local/squid
pid_filename /usr/local/squid/logs/squid.pid
hosts_file /etc/hosts
########## Performance control ##########
cache_mem 128 MB #\xb8\xfc\xb8\xc4\xce\xaa\xc4\xe3\xd0\xe8\xd2\xaa\xbb\xba\xb3\xe5\xb5\xc4\xc4\xda\xb4\xe6\xb4\xf3\xd0\xa1\xa3\xac\xb5\xab\xb
d\xa8\xd2\xe9\xb2\xbb\xb4\xf3\xd3\xda\xc4\xda\xb4\xe6\xb5\xc41/3
cache_swap_low 90
cache_swap_high 95
maximum_object_size 4096 KB
minimum_object_size 0 KB
maximum_object_size_in_memory 8 KB
ipcache_size 1024
ipcache_low 90
ipcache_high 95
fqdncache_size 1024
cache_replacement_policy lru
memory_replacement_policy lru
log_ip_on_direct on
dns_timeout 2 minutes
request_header_max_size 10 KB
request_body_max_size 0 KB
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern . 0 20% 4320
negative_ttl 5 minute
positive_dns_ttl 6 hour
negative_dns_ttl 1 minute
connect_timeout 1 minute
read_timeout 15 minute
request_timeout 5 minute
client_lifetime 1 day
maximum_single_addr_tries 1
uri_whitespace strip
ie_refresh off
########## Access control ############
# acl all src 0.0.0.0/0.0.0.0
# http_access allow all
# http_reply_access allow all
# hierarchy_stoplist cgi-bin ?
########## Accelator control ############
httpd_accel_host virtual
httpd_accel_port 81
httpd_accel_with_proxy on
httpd_accel_uses_host_header on
# accelerater my domain only
acl acceleratedHostA dstdomain .baobaoi.com
acl acceleratedHostB dstdomain .51wanyouxi.com
acl acceleratedHostC dstdomain .cha114.cn
acl acceleratedHostD dstdomain .wanwanyouxi.com
acl acceleratedHostE dstdomain .1qw.cn
acl acceleratedHostF dstdomain .51wanyouxi.cn
acl acceleratedHostG dstdomain .gamepop.cn
acl acceleratedHostH dstdomain .haha99.com
# accelerater http protocol on port 80
acl acceleratedProtocol protocol HTTP
acl acceleratedPort port 81
# access arc
acl all src 0.0.0.0/0.0.0.0
# Allow requests when they are to the accelerated machine AND to the
# right port with right protocol
http_access allow acceleratedProtocol acceleratedPort acceleratedHostA
http_access allow acceleratedProtocol acceleratedPort acceleratedHostB
http_access allow acceleratedProtocol acceleratedPort acceleratedHostC
http_access allow acceleratedProtocol acceleratedPort acceleratedHostD
http_access allow acceleratedProtocol acceleratedPort acceleratedHostE
http_access allow acceleratedProtocol acceleratedPort acceleratedHostF
http_access allow acceleratedProtocol acceleratedPort acceleratedHostG
http_access allow acceleratedProtocol acceleratedPort acceleratedHostH
########## Misc control ###########
#ftp_user Squid@
#ftp_list_width 32
#ftp_passive on
#ftp_sanitycheck on
httpd_accel_single_host off
转载请标明出处【垃圾邮件,SQUID 惹的麻烦】。
《www.micoder.cc》
虚拟化云计算,系统运维,安全技术服务.
| Tags: | [阅读全文...] |
最新评论