I ran into a similar issue, and I ended up having OpenSMTPD deliver the
mail to spampd via LMTP, then spampd delivers it (in my case, to
Dovecot). This way, smtpd can still reject invalid recipients with a 550
before it ships the mail thru spamassassin.
If you want to try it this way, I have Dovecot configured to listen
(LMTP) on some port, e.g. 1024, and spampd listening via LMTP on some
port, e.g. 1026:
spampd_flags="--port=1026 --relayhost=127.0.0.1:1024 --tagall"
Dovecot can be configured (/etc/dovecot/conf.d/10-master.conf) to listen
on LMTP on a certain port, e.g. 1024.
Then, in smtpd.conf, I deliver straight to spampd:
accept from any for domain <domains> virtual <users> \
deliver to lmtp localhost:1026 rcpt-to
(spampd then relays it to Dovecot after checking).
Hope this helps! spampd's LMTP relaying seems to be working fine for me
with this setup; do you have any specific issues you're running in to?
--Jake
On 12/02/2016 03:26 PM, Simon McFarlane wrote:
> For those unfamiliar:
>
> > Backscatter bounces are Non-Delivery Notifications, but they're for
> > email you didn't send. A spammer sends out some of his spew with one
> > or more of your addresses as the From, and poorly configured servers
> > don't properly reject it, instead they send an NDN to the forged From
> > address.
>
> I'm trying to integrate SpamAssassin into my setup, but I accidentally
> got myself on a couple blacklists because my setup was producing
> backscatter. The relevant lines of my smtpd.conf:
>
> listen on lo0 port 10026 tag SPAMCHECK
>
> accept tagged SPAMCHECK for domain <domains> virtual <users> \
> deliver to lmtp "/var/dovecot/lmtp" rcpt-to
>
> accept from any for domain <domains> \
> deliver to smtp://127.0.0.1:10025
>
> and from rc.conf.local:
> spampd_flags=--port=10025 --relayhost=127.0.0.1:10026
>
> Without the relay to spampd, OpenSMTPD just sends back a 550 Invalid
> recipient as it should, but when relaying to spampd, it sends a bounce
> to the forged From address.
>
> I've tried delivering via LMTP to spampd instead, but spampd's LMTP
> support seems to be broken (I'm not sure it would fix the problem
> anyway). I could filter only valid recipients through the initial
> relay, but the table-sqlite manpage seems to indicate that there's no
> way to set up a recipients table with sqlite.
>
> Does anybody know how to fix this problem?
>
> Thanks,
> Simon
>
--
You received this mail because you are subscribed to [email protected]
To unsubscribe, send a mail to: [email protected]
