\nHAVP \u662f HTTP Anti Virus Proxy \u7684\u7e2e\u5beb\uff0c\u6b64\u5957\u8edf\u9ad4follow GPL\u7cbe\u795e\u53ef\u4ee5\u514d\u8cbb\u5b89\u88dd\u4f7f\u7528\u3002
\n\u6b64\u8edf\u9ad4\u53ef\u4ee5\u8207\u6578\u7a2e\u9632\u6bd2\u8edf\u9ad4\u7d50\u5408\uff0c\u91dd\u5c0dHTTP\u8cc7\u6599\u50b3\u8f38\u9032\u884c\u5373\u4f7f\u6383\u7784\uff0c\u5c07\u75c5\u6bd2\u6514\u622a\u5728Server\u4e0a\u3002
\nHAVP\u5b98\u7db2URL\uff1ahttp:\/\/www.server-side.de\/<\/a><\/p>\n
\n\u4e8c\u3001 \u74b0\u5883
\nOS\u7684\u90e8\u4efd\u63a1\u7528 FreeBSD 6\uff0c\u9632\u6bd2\u8edf\u9ad4\u5247\u63a1\u7528\u514d\u8cbb\u7684Clamav\uff0c\u518d\u642d\u914dSquid Proxy\uff0c\u5c07 Squid\u50b3\u56de\u7684\u7db2\u9801\u6383\u7784\u5f8c\u518d\u6c7a\u5b9a\u662f\u5426\u653e\u884c\u3002
\n\u7279\u5225\u7559\u610fClamav\u662f\u5957\u514d\u8cbb\u7684\u9632\u6bd2\u8edf\u9ad4\uff0c\u53ea\u80fd\u91dd\u5c0d\u6709\u7121\u75c5\u6bd2\u9032\u884c\u6383\u7784\uff0c\u4e00\u65e6\u767c\u73fe\u75c5\u6bd2\u6642\uff0c\u4e26\u7121\u89e3\u6bd2\u529f\u80fd\u3002<\/p>\n
\u4e09\u3001 \u5b89\u88dd\u65b9\u5f0f
\n\u5728freeBSD\u4e0a\u53ef\u4ee5\u76f4\u63a5\u63a1\u7528port\u65b9\u5f0f\u5b89\u88dd\uff0c\u5b89\u88dd\u6b65\u9a5f\u5982\u4e0b\uff1a
\n1. # sudo su \u70ba root
\n2. # cd \/usr\/ports\/www\/havp
\n3. # make config \u9032\u884cconfig\uff0cconfig \u7684\u904e\u7a0b\u4e2d\u5fc5\u9808\u5728Enable SSL Proxying\u53caEnable libclamav Support\u5169\u500b\u9078\u9805\u4e2d\u6253V\uff0c\u624d\u53ef\u4ee5\u5c07SSL\u4e5fforward\uff0c\u53ca\u652f\u63f4\u4f7f\u7528Clamav\u6383\u7784\u3002<\/p>\n
4. # make ; make install
\n5. \u7de8\u8f2f \/usr\/local\/etc\/havp\/havp.conf \u6a94\u6848, \u4fee\u6539\u4ee5\u4e0b\u5167\u5bb9\uff1a<\/p>\n
### \u8a3b\u89e3\u4ee5\u4e0b\u9019\u884c\uff0c\u624d\u6703\u8b93\u8a2d\u5b9a\u751f\u6548
\n#REMOVETHISLINE deleteme<\/p>\n
### ClamAV Library Scanner (libclamav) \u2192 \u7531 HAVP \u76f4\u63a5\u53d6\u7528ClamAV \u7684\u75c5\u6bd2\u8cc7\u6599\u5eab
\nENABLECLAMLIB true<\/p>\n
### ClamAV Socket Scanner (clamd) \u2192 \u4ea4\u7531 clamd \u6383\u6bd2 (\u9808\u5148\u555f\u52d5 clamd), \u4ee5\u4e0a\u5169\u8005\u64c7\u4e00\u4f7f\u7528\u5373\u53ef
\nENABLECLAMD true
\nCLAMDSOCKET \/tmp\/clamd<\/p>\n
### \u56e0\u70ba\u4f7f\u7528 Squid Proxy, \u6240\u4ee5\u5728\u6b64\u4e0d\u505a\u901a\u900f
\nTRANSPARENT false<\/p>\n
### \u986f\u793a\u81ea\u5b9a\u7fa9\u7684\u6a23\u7248\uff0c\u4e00\u65e6\u767c\u751f\u932f\u8aa4\u6642\u6703\u986f\u793a\u8a72\u7db2\u9801
\nTEMPLATEPATH \/usr\/local\/etc\/havp\/templates\/en<\/p>\n
### \u7406\u8ad6\u4e0a\u8d8a\u591a\u7684\u57f7\u884c\u7dd2\u6548\u80fd\u6548\u80fd\u8d8a\u597d\uff0c\u4f46\u4ecd\u9700\u8996\u4f3a\u670d\u5668\u8cc7\u6e90\u800c\u5b9a
\nSERVERNUMBER 40
\nMAXSERVERS 400<\/p>\n
### LOG_OKS \u8a2d\u6210 false\uff0c\u53ea\u8a18\u9304\u767c\u73fe\u75c5\u6bd2\u7684log\uff0c\u5426\u5247log\u6a94\u6703\u592a\u5927
\nLOG_OKS false<\/p>\n
### \u53ea\u8a18\u9304 error log\u3002\u8f03\u5c11\u7684 Log \u8a18\u9304\u53ef\u6e1b\u8f15\u4f3a\u670d\u5668\u8ca0\u64d4
\nLOGLEVEL 0<\/p>\n
### \u4f7f\u7528 RAM Disk \u8655\u7406\u66ab\u5b58\u6a94\u6848\u53ef\u7372\u5f97\u6700\u4f73\u6548\u80fd\uff08\u53c3\u8003\u6548\u80fd\u8abf\u6574\uff09
\nTEMPDIR \/ramdisk<\/p>\n
### \u4e0d\u5c0d\u5716\u7247\u6a94\u6383\u6bd2, \u53ef\u6e1b\u8f15 CPU \u8ca0\u64d4
\nSCANIMAGES false<\/p>\n
6. \u7de8\u8f2f \/etc\/rc.conf \u6a94\u6848, \u65b0\u589e\u4e00\u884c\uff1a
\nhavp_enable=”YES”
\n\u9019\u6a23 havp \u5c31\u6703\u5728\u7cfb\u7d71\u958b\u6a5f\u6642\u81ea\u52d5\u555f\u52d5\u3002
\n7. \u90fd\u8a2d\u5b9a\u597d\u5f8c\u53ef\u4ee5\u5148\u624b\u52d5\u555f\u52d5havp:
\n# \/usr\/local\/etc\/rc.d\/havp
\n\u555f\u52d5\u6642\u6703\u770b\u5230\u5982\u4e0b\u8a0a\u606f\uff0c\u4ee3\u8868\u555f\u52d5\u6210\u529f\uff1a
\nStarting havp.
\nStarting HAVP Version: 0.89
\nMandatory locking disabled! KEEPBACK settings not used!<\/p>\n
8. Squid \u7684\u90e8\u4efd\u5247\u5fc5\u9808\u5728\u8a2d\u5b9a\u6a94 \/usr\/local\/etc\/squid\/squid.conf \u589e\u52a0\u5982\u4e0b\u8a2d\u5b9a\uff1a
\nacl all src 0.0.0.0\/0.0.0.0
\ncache_peer 127.0.0.1 parent 8080 0 no-query no-digest no-netdb-exchange default
\ncache_peer_access 127.0.0.1 allow all
\n# Only http traffic can be scanned
\nacl Scan_HTTP proto HTTP
\nnever_direct allow Scan_HTTP
\n9. \u8a2d\u5b9a\u597d\u5f8c\u91cd\u65b0\u8f09\u5165squid \u8a2d\u5b9a\u6a94\uff1a
\n# \/usr\/sbin\/squid \u2013k reconfigure<\/p>\n
\u56db\u3001 \u6548\u80fd\u8abf\u6574
\n\u4fee\u6539 \/etc\/fstab \u6a94\u6848\uff0c\u4f7f\u7528256MB \u7684ramdisk\u589e\u52a0\u6383\u7784\u6548\u7387\u3002
\nmd \/ramdisk mfs rw,noatime,-s256M 0 0<\/p>\n
\u539f2009\/01\/04\u767c\u8868\u65bc<\/em>UnixCafe<\/em><\/a><\/p>\n \u5b89\u88dd HAVP<\/p>\n \u4e00\u3001 \u8aaa\u660e HAVP \u662f HTTP Anti Virus Proxy \u7684\u7e2e\u5beb\uff0c\u6b64\u5957\u8edf\u9ad4follow GPL\u7cbe\u795e\u53ef\u4ee5\u514d\u8cbb\u5b89\u88dd\u4f7f\u7528\u3002 \u6b64\u8edf\u9ad4\u53ef\u4ee5\u8207\u6578\u7a2e\u9632\u6bd2\u8edf\u9ad4\u7d50\u5408\uff0c\u91dd\u5c0dHTTP\u8cc7\u6599\u50b3\u8f38\u9032\u884c\u5373\u4f7f\u6383\u7784\uff0c\u5c07\u75c5\u6bd2\u6514\u622a\u5728Server\u4e0a\u3002 HAVP\u5b98\u7db2URL\uff1ahttp:\/\/www.server-side.de\/<\/p>\n Share on […]<\/p>\n![\"Share](\"https:\/\/juan.tw\/wp-content\/plugins\/add-to-facebook-plugin\/facebook_share_icon.gif\" "\\"Share"){kind=icon}
<\/a>Share on Facebook<\/a><\/p>","protected":false},"excerpt":{"rendered":"<\/a>Share on Facebook<\/a><\/p>","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[5],"tags":[271,103,298],"class_list":["post-90","post","type-post","status-publish","format-standard","hentry","category-computer-networking","tag-clamav","tag-freebsd","tag-havp","odd"],"psp_head":"