On Tue, 19 Nov 2002 12:58 am, Gordon Rowell wrote: > On Tue, Nov 19, 2002 at 12:09:26AM +1100, Rasjid Wilcox <[EMAIL PROTECTED]> wrote: > > I have been looking at 'qpsmtpd' (http://develooper.com/code/qpsmtpd/) > > as a possible replacement for mailfront (or qmail-smtpd, depending > > on how you view things). > > > > It is written in Perl, and can potentially do the 'drop spam at > > the doorstep' thing that many people (including myself) would like. > > [...] > > The mailfront version in 5.6 has sender/recipient pattern matching, > which should be able to provide what you are after (once you develop > the appropriate match rules).
I installed mailfront 0.81 on SME 5.5 and gave it a test. It does not quite do what I would expect. In detail: # rpm -Uvh mailfront-0.81-1.i386.rpm # touch /etc/mailrules # echo "/etc/mailrules" > /service/smtpfront-qmail/env/MAILRULES Edit /etc/mailrules to: k*:[EMAIL PROTECTED] d*:*:There is no mailbox for that user here. Result: All mail is rejected, even stuff address to [EMAIL PROTECTED] The d*:* trumps the k*:[EMAIL PROTECTED] So I'm afraid that mailfront (as it currently stands) will not do the job, unless something can think of some other config to use. > Be aware that simple sender/recipient > matching will almost certainly drop some legitimate mail. qpsmtpd can do blocking by IP address, with quite complicated arrangements. It can forward mail through a virus scanner before placing it in the mail queue. It can be integrated with spamassassin. It is written in Perl and has an OO design for the easy creation of custom plugins. It can bake bread and then toast it for you. It is very cool. I was planning to do sender, recipient, date and IP logging of all mail, possibly to a MySQL table, and build up my own 'blacklist'. I may or may not use a third-party blacklist datasource. Hopefully I can set things up so that all mail to postmaster gets through regardless, so a legitimate user can complain (and get put on a whitelist) in the case that it is not their fault that their ISP allows spammers on its network. > > [...] > > Is the choice about whether to act as a relay (ie, if talking to > > someone on a local IP address, then I'll relay mail anywhere, > > otherwise I'll only deliver internally) decided by mailfront, or > > some other part of the qmail system?? > > It's done by mailfront (as a direct replacement for qmail-smtpd) > based on the setting of RELAYCLIENT. Thanks Gordon. I take it that is what /etc/tcprules/tcp.smtp does. I think it all makes sense now. I just need to merge the existing run script for mailfront with the one for qpsmtpd, and I think it will all work. Cheers, Rasjid. -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Searchable archive at http://www.mail-archive.com/devinfo%40lists.e-smith.org
