Re: [courier-users] avoid blacklist query for localnets

Sun, 28 Mar 2010 14:53:43 -0700 

 
> Then I don't know what you mean by "black list query".

by quering zen.spamhaus.org,cbl.abuseat.org,b.barracudacentral.org so courier 
can block bad IPs.
 
> You'll have to provide more information: what you set in
> your esmtpd configuration file, log files entries, etc.

this is my esmtpd file:

PATH=/usr/lib/courier/bin:/bin:/usr/bin:/usr/local/bin
SHELL=/bin/sh
ULIMIT=16384
BOFHCHECKDNS=1
BOFHNOEXPN=0
BOFHCHECKHELO=0
BOFHSPFFROM=all
BOFHSPFTRUSTME=0
BOFHNOVRFY=0
NOADDMSGID=1
NOADDDATE=0
ESMTP_LOG_DIALOG=2
AUTH_REQUIRED=0
COURIERTLS=/usr/lib/courier/bin/couriertls
TLS_KX_LIST=ALL
TLS_CERTS=X509
TLS_CERTFILE=/.../.../.../.../courier_server.pem
TLS_TRUSTCERTS=/etc/pki/tls/cert.pem
TLS_VERIFYPEER=NONE
PORT=smtp
BLACKLISTS='-block=zen.spamhaus.org,BLOCK -block=cbl.abuseat.org,BLOCK 
-block=barracudacentral.org,BLOCK'
DROP="-drop"
ACCESSFILE=${sysconfdir}/smtpaccess
MAXDAEMONS=40
MAXPERC=5
MAXPERIP=5
PIDFILE=/var/spool/courier/tmp/esmtpd.pid
TCPDOPTS="-stderrlogger=/usr/sbin/courierlogger -nodnslookup -noidentlookup"

> 
> Another thing is that not all of 172.0.0.0/8 is reserved
> for private use, only 172.16.0.0/20. There are plenty of
> perfectly routable netblocks elsewhere in 172.0.0.0/8, over the internet

ok I tried fixing it to:

172.16.0{TAB} 
allow,RELAYCLIENT,AUTH_REQUIRED=1,BOFHCHECKHELO=1,BOFHSPFTRUSTME=1,BOFHCHECKDNS=1

to test for one segment only and courier still does "Blacklist queries" from 
servers described on BLACKLISTS on file esmtpd.

What I don't understand is why if I set 172.16.0 to do relay and also to trust 
localip after a successful authentication, courier does blacklist query 
checking if the localnetip is listed. Perhaps there may be a bad config, i'll 
do some test and comment out here.

>And you've just allowed every one of them to
> spam through your server.

ops!, hopefully courier have stopped spams successfully by itself and also 
through some scrips, thanks for making it note.


      
____________________________________________________________________________________
¡Obtén la mejor experiencia en la web!
Descarga gratis el nuevo Internet Explorer 8. 
http://downloads.yahoo.com/ieak8/?l=e1

------------------------------------------------------------------------------
Download Intel® Parallel Studio Eval
Try the new software tools for yourself. Speed compiling, find bugs
proactively, and fine-tune applications for parallel performance.
See why Intel Parallel Studio got high marks during beta.
http://p.sf.net/sfu/intel-sw-dev
_______________________________________________
courier-users mailing list
[email protected]
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users

Reply via email to