Blog

Scrollout F1 – The Unofficial Manual

Date March 31, 2016 Author By Category Scrollout

This information which I learned on the forum when I needed it or figured out on my own.  It is documented here to make it easier to find next time.

In No Particular Order…

Edit Aggressivity Levels

/var/www/cfg/agresivity

Need to Allow Blocked File Extensions from a Particular Domain

add the domain to the whitelist under Secure, Senders in the GUI [this doesn’t work]

you’ll have to delete the filetype in question under /var/www/cfg/agresivity/6/filetype

(the 6 corresponds to your setting on the Levels page)

Good Forum Post about Cryptolocker and Security

https://sourceforge.net/p/scrollout/discussion/1102835/thread/e2fdb645/?page=0

Edit RBL Domains and IPs

/var/www/rbldns

Whitelists:

  • reputation-domain-100
  • reputation-ip-100
  • reputation-ns-100

Blacklists:

  • reputation-domain-0
  • reputation-ip-0
  • reputation-ns-0

Scrollout is Blocking Emails Based on the Nameservers of the Sending Domain and Nothing Else

You’ll find these rbl servers listed under Secure / Levels / Rate Limits In

  • bl-ns.rbl.scrolloutf1.com
  • bl-ip.rbl.scrolloutf1.com

You can remove them if you won’t want this feature.  Or you can add the nameserver IP in question to the reputation-ns-100 file to unblock it.

How To Block Macro Attachments

In /etc/clamav/clamd.conf change:
OLE2BlockMacros false
into
OLE2BlockMacros true

/etc/init.d/clamav-daemon restart

Now, any MS Office document having a Macro VBA will be identified as infected.

Change Display Colors To Something Readable

You can adjust color and opacity in styles #text_hron, #text_off and #hron in /var/www/css/style.css

Modify the opacity from 0.5 to 0.8 and increase the font size

Make a copy because updates will overwrite your changes.

SPF Policy

If you want to change the SPF policy to allow Softfail:

edit: /etc/postfix-policyd-spf-python/policyd-spf.conf
Change HELO_reject = SPF_Not_Pass into
HELO_reject = Softfail
or
HELO_reject = Fail
You don’t need to restart any service.

Upgrade from Debian 7 to Debian 8

rm /etc/apt/sources.list.d/wheezy-backports.list
sed -i “s/wheezy/jessie/g” /etc/apt/sources.list
apt-get update
apt-get dist-upgrade -y

Will take some time: 30 minutes – 1 hour.
When you are asked, answer the default, press enter or “q” when you must read long info pages.

Update Scrollout

/var/www/bin/update.sh force

Fix SSL / Cert Issues

Scrollout F1 / Discussion / Get Help:Scrollout postfix/smtpd[13461]: SSL_accept error

Try to recreate the certificates by running these 2 commands:
rm /etc/postfix/certs/*
/var/www/bin/scrollout.sh traffic

Or:

Go to /var/www/cfg/agresivity/custom/ and edit postscreen_access.cidr
Input their IP or IP subnet based on the predefined values there.

Go to GUI, Route or Secure and click Apply.

View Mail In Queue

mailq

remove all mail from queue:

postsuper -d ALL

tips on clearing the mail queue

Amavis 100% CPU

problem continues even after a reboot

you probably have some bad messages stuck in the queue – check the queue and then clear it if there is nothing you care about

I usually stop the incoming mail flow (close port 25 on my firewall) and let the machine process the queue until it clears all but the bad messages.  Once the queue is clear, reboot again.

Clear Postfix Cache (good for clearing recipient verification cache)

/etc/init.d/postfix stop
rm -f /var/lib/postfix/verify_cache.db
/etc/init.d/postfix start

to reset the score for AM.IP_BAD_<ip-address> run:

redis-cli -n 1 FLUSHDB

Graph Stops Working Every Year on January 1

logrotate -f /etc/logrotate.conf
/etc/init.d/mailgraph restart

Tags: ,

Leave a Reply

Your email address will not be published.