I have read over Darrell May's how-to for restricting certain sites from my mail server, but it is not working for me.
I created the 10denylist template as shown in the how-to, but it is still allowing the site to send mail to my system. I would rather not create a bounce message, I just want to stop the server from ever getting a response other than something to the effect of "buzz off spammer!" without anything else - shuts them down at the door. Here is what I have for my 10denylist template fragment: # Block access to the SMTP server from: deny:lotsofmoney4me.com:ALL:ALL deny:networkpromotion.com:ALL:ALL deny:xmm.networkpromotion.com:ALL:ALL deny:xmmtracking.networkpromotion.com:ALL:ALL deny:64.5.230.0:ALL:ALL However, this is inserted at the top of the expanded template which is then overridden later on down the template by allowing the spammer to send to anyone at my domain. According to my logs I can see that mail is allowed by line 38 of smtpd_check_rules from this spammer (line 38 is near the bottom where it allows all mail to *@myserver.com), which then creates a circular bounce message because qmail is trying to respond to a non-existent mail server with the bounce message. I looked at and installed Darrell's contrib RPM so qmail will not allow spammers to e-mail non-existent accounts if I choose to do that, but I would much rather shut them down at the door instead of providing a bounce telling the spammer that user does not exist and then get a circular problem again when the qmail responses bounces back to me via the admin account. I have two motives here: 1) Be as rude as possible to spammers and their own mail servers (or their victim mail servers), and 2) To prevent spammers from mining my system to find valid accounts to spam. Do I need to change the number of the template file to something like 99zdenylist to ensure it goes at the bottom of the template? I wouldn't think so, because the docs says the process stops at the first rules that matches. In this case it does not appear to be true. I took the liberty to install Darrell's contrib RPM to reject mail for non-existent users, but I don't want that because if the spammer spoof's the IP I get a circular bounce message telling me the bounce couldn't not be delivered. I hope this makes sense... Thanks for your thoughts, Tom Carroll Dataware Computers -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
