Re: spamd

Sat, 01 Aug 2015 17:03:06 -0700 

thanks for Hansteen

On 2015e9408f01f% 22:47, Peter N. M. Hansteen wrote:
http://www.bsdly.net/~peter/nospamd, based on various episodes and some digging out of spf records (dig -ttxt domain.tld). 
first
wget http://www.bsdly.net/~peter/nospamd
and follow http://technoquarter.blogspot.jp/2015/02/openbsd-mail-server-part-2-opensmtpd.html 

1) no spamd setting

mail+nginx-server.bat-openSMTPD
----------------------------------------------
pfctl -f /etc/pf.conf
pfctl -sr
/etc/rc.d/smtpd         restart
/etc/rc.d/dovecot       restart
/etc/rc.d/spamd         stop
/etc/rc.d/spamlogd      stop


2) spamd setting

mail+nginx-server.bat-openSMTPD-spam
----------------------------------------------------
pfctl -f /etc/mail/black.pf
pfctl -sr
/etc/rc.d/smtpd         restart
/etc/rc.d/dovecot       restart
/etc/rc.d/spamd restart
/etc/rc.d/spamlogd      -f restart
/usr/libexec/spamd-setup


 /etc/mail/black.pf
-------------------------------------
ext_if="em0"
tcp_services="{  22,     80,      143 }"
icmp_types="echoreq"
set block-policy return
set loginterface $ext_if
set skip on lo
set reassemble yes no-df
block in log
pass out quick
antispoof quick for { lo }
pass in on $ext_if proto tcp to any port submission
table <spamd-white> persist
table <nospamd> persist file "/etc/mail/nospamd"
pass in on $ext_if proto tcp from any to any port smtp rdr-to 127.0.0.1 port spamd 
pass in on $ext_if proto tcp from <nospamd> to any port smtp
pass in log on $ext_if proto tcp from <spamd-white> to any port smtp
pass out log on $ext_if proto tcp to any port smtp
pass in on $ext_if inet proto tcp from any to ( $ext_if:0 ) port $tcp_services 
pass in inet proto icmp all icmp-type $icmp_types
pass in on $ext_if proto tcp to port 21
pass in on $ext_if proto tcp to port > 4915



3) commons file in both no-spamd setting and spamed setting are

 /etc/rc.conf.local
--------------------------------
ftpd_flags="-llUSA"
smtpd_flags=""
pf=YES                  # Packet filter / NAT
pf_rules=/etc/pf.conf           # Packet filter rules file



/etc/mail/smtpd.conf
---------------------------------
pki mail.aoiyuma.mydns.jp certificate "/etc/ssl/mail.aoiyuma.mydns.jp.crt"
pki mail.aoiyuma.mydns.jp key "/etc/ssl/private/mail.aoiyuma.mydns.jp.key"
listen on lo0
listen on em0 tls pki mail.aoiyuma.mydns.jp auth-optional 
listen on em0 port submission tls-require pki mail.aoiyuma.mydns.jp   auth
table aliases db:/etc/mail/aliases.db
accept from any for domain "aoiyuma.mydns.jp" deliver to maildir accept for local alias <aliases> deliver to maildir 
accept from local


(conclusion )
i send mail to gmail and recieve mail from gmail .

but there is profound defect .
at the site http://www.rbl.jp/svcheck.php

>>> QUIT
<<< 221 aoiyuma.mydns.jp

All tests performed, 20 relays accepted.<----------*****************

spamd is difficult .





--
You received this mail because you are subscribed to misc@opensmtpd.org
To unsubscribe, send a mail to: misc+unsubscr...@opensmtpd.org

Reply via email to