spamd -M race condition

Sat, 30 Jun 2007 06:00:48 -0700 

Hello list,

I've been bitten by a race condition in spamd. I've got a low-prio MX
configured as an MX trap with spamd -M:
bzero.se.               900     IN      MX      10 mx.bzero.se.
bzero.se.               900     IN      MX      99 mxtrap.bzero.se.

In the log below, a re-attempt at delivery arrived before the grey
entry got whitelisted in pf, but after the grey entry was deleted from
the database. It was then falsely trapped and black-listed for trying
the low-prio MX first.

Apparently this has been fixed in -current, but not in -stable. Anyone
out there using out of order MX trapping should probably update spamd.
I've got a very low-traffic mail server, so I guess the chance of
false positives are higher on higher traffic servers.

Are there any plans on also fixing this in -stable?

[EMAIL PROTECTED]:~$ grep 1.1.1.1 /var/log/spamd
Jun 29 14:39:00 bzero spamd[25406]: 1.1.1.1: connected (1/0)
Jun 29 14:39:11 bzero spamd[25406]: (GREY) 1.1.1.1:
<[EMAIL PROTECTED]> -> <[EMAIL PROTECTED]>
Jun 29 14:39:11 bzero spamd[25406]: 1.1.1.1: disconnected after 11 seconds.
Jun 29 14:39:11 bzero spamd[25406]: 1.1.1.1: connected (1/0)
Jun 29 14:39:22 bzero spamd[25406]: (GREY) 1.1.1.1:
<[EMAIL PROTECTED]> -> <[EMAIL PROTECTED]>
Jun 29 14:39:22 bzero spamd[25406]: 1.1.1.1: disconnected after 11 seconds.
Jun 29 16:25:02 bzero spamd[25406]: 1.1.1.1: connected (1/0)
Jun 29 16:25:13 bzero spamd[25406]: (GREY) 1.1.1.1:
<[EMAIL PROTECTED]> -> <[EMAIL PROTECTED]>
Jun 29 16:25:13 bzero spamd[25406]: 1.1.1.1: disconnected after 11 seconds.
Jun 29 16:25:13 bzero spamd[25406]: 1.1.1.1: connected (1/0)
Jun 29 16:25:22 bzero spamd[9752]: queueing deletion of 1.1.1.1
mail3.example.com <[EMAIL PROTECTED]> <[EMAIL PROTECTED]>
Jun 29 16:25:22 bzero spamd[9752]: queueing add of 1.1.1.1
Jun 29 16:25:22 bzero spamd[9752]: whitelisting 1.1.1.1 in /var/db/spamd
Jun 29 16:25:24 bzero spamd[25406]: (GREY) 1.1.1.1:
<[EMAIL PROTECTED]> -> <[EMAIL PROTECTED]>
Jun 29 16:25:24 bzero spamd[10127]: Trapping 1.1.1.1 for trying
83.168.236.120 first for tuple 1.1.1.1 mail3.example.com
<[EMAIL PROTECTED]> <[EMAIL PROTECTED]>
Jun 29 16:25:24 bzero spamd[25406]: 1.1.1.1: disconnected after 11 seconds.
Jun 29 17:25:21 bzero spamd[25406]: 1.1.1.1: connected (2/1), lists:
spamd-greytrap
Jun 29 17:28:54 bzero spamd[25406]: (BLACK) 1.1.1.1:
<[EMAIL PROTECTED]> -> <[EMAIL PROTECTED]>
Jun 29 17:30:37 bzero spamd[25406]: 1.1.1.1: Subject: Re: Kivik

Reply via email to