I wish there was a better howto for cPanel users on this ASSP. It looks interesting but the config is very convoluted.
The actual install is very simple. It's when you look at all of the possible settings that it can start to make your head spin.
The good news is the default settings are usually fine to start with.
I'll give you a basic "how to" for installing ASSP:
Download the latest stable version from sourceforge.net. Here's the URL:
http://sourceforge.net/project/showfiles.php?group_id=69172
Unzip the file and upload the ASSP folder to your servers root directory.
Log in via SSH and cd to the ASSP folder. Enter "perl assp.pl" This will start the assp service.
ASSP uses exim, so you have to tell exim to send to ASSP. Log into WHM, click on Exim Configuration Editor under Service Configuration. Click on the Advanced Editor button and add this at the very top of the first text box:
Code:
# Redirect MTA to port 125 to enable ASSP
local_interfaces = 127.0.0.1.125
Then click the Save button.
IF YOU USE APF - open the APF config file ( /etc/apf/conf.apf) and add 125 and 55555 to both the Common ingress and Common egress ports. Save the file and restart APF (/usr/local/sbin/apf -r)
Log onto the ASSP control panel at
http://yourserverIP:55555
The default login name can be anything, the password is nospam4me
Of course the first thing you'll want to do is change the password under the "Security" section.
Then go to the "TestModes" section and make sure everything is checked. The first couple of weeks ASSP will be learning what is spam and who should be on it's whitelist.
In the "Relaying" section add all domain names on your server in the "Local Domains" field.
The quickest way to make sure ASSP is working is to click the "SMTP Connections" tab and you should see a screen constantly updating with incoming and outgoing email messages. If it isn't, make sure that the "SMTP Destination" under Network Setup is set to: 127.0.0.1:125. In other words, make sure it's the same as the redirect you set in Exim config in WHM.
Your installation is now complete. But for the next couple of weeks you'll train ASSP to learn what is spam. ASSP puts email it thinks is spam in a folder called "Spam" and legitimate email in the "Notspam" folder. The documentation says to look in these folders and manually move any spam in the "Notspam" folder to the "Spam" folder and visa versa. I found it easier to use the "Copy All Spam" feature in the control panel. I set up a 'spamonly' email address for my domain and had ASSP just cc everything it thought was spam to that address. Then I would read each email header in my email client. If a legitimate email got caught I would just forward it to the "
[email protected]" address. ASSP would then automatically add that to the "Notspam" list and add the sender to the whitelist.
After a couple of weeks you will be sending very few email messages to the "Notspam" address and you can go live by simply unchecking all of the "TestMode" checkboxes, then SSH into your server's ASSP directory and run 'perl rebuildspamdb.pl'. (This process can initially take up to 20 or 30 minutes if you have a slow processor so do it during an appropriate time of day.)
[edit]
You can then disable SpamAssassin by going to WHM, in the "Service Configuration" section, click the Service Manager link and uncheck spamd under both the Enabled and Monitored columns.
Then (still in WHM), under "Server Configuration" click Tweak Settings and uncheck Spamassassn and Boxtrapper.
[/edit]
The only thing left to do is to set up a cron job to run "perl rebuildspamdb.pl" every day so that the spam database is kept current.
That's it! Keep in mind, these are my personal recommendations using ASSP with Cpanel. I am not responsible if you muck up your server playing around in SSH. (Although things can be brought back to your old status fairly easily by removing the redirect in exim manager and re-enabling Spamassassin and spamd in WHM).
There are a TON of options for you to customize ASSP I haven't even touched on, like being able to bypass entire domains if you're clients WANT to receive spam, email addresses clients can use to report spam or add email addresses to the whitelist, etc., etc, etc., all handled in the Web based control panel.
Finally, here are some helpful Web sites I use for reference:
http://sourceforge.net/forum/forum.php?forum_id=235333
http://www.asspsmtp.org/wiki/Recommended_settings
http://www.asspsmtp.org/wiki/Special:Allpages
http://www.nabble.com/Anti-Spam-SMTP-Proxy-Server-f3861.html
http://www.asspsmtp.org/wiki/BombRe_and_ScriptRe
and the excellent documentation inside of the ASSP folder itself: ASSP%20Documentation.htm
