Oh, I see what I was doing wrong: I was having spampd relay back to
OpenSMTPD for delivery rather than on towards Dovecot. And of course,
OpenSMTPD does not speak LMTP inwardly.
Thank you for your help!
On 12/02/2016 01:18 PM, Jake Hartz wrote:
I ran into a similar issue, and I ended up having OpenSMTPD deliver the
mail to spampd via LMTP, then spampd delivers it (in my case, to
Dovecot). This way, smtpd can still reject invalid recipients with a 550
before it ships the mail thru spamassassin.
If you want to try it this way, I have Dovecot configured to listen
(LMTP) on some port, e.g. 1024, and spampd listening via LMTP on some
port, e.g. 1026:
spampd_flags="--port=1026 --relayhost=127.0.0.1:1024 --tagall"
Dovecot can be configured (/etc/dovecot/conf.d/10-master.conf) to listen
on LMTP on a certain port, e.g. 1024.
Then, in smtpd.conf, I deliver straight to spampd:
accept from any for domain <domains> virtual <users> \
deliver to lmtp localhost:1026 rcpt-to
(spampd then relays it to Dovecot after checking).
Hope this helps! spampd's LMTP relaying seems to be working fine for me
with this setup; do you have any specific issues you're running in to?
--Jake
On 12/02/2016 03:26 PM, Simon McFarlane wrote:
For those unfamiliar:
Backscatter bounces are Non-Delivery Notifications, but they're for
email you didn't send. A spammer sends out some of his spew with one
or more of your addresses as the From, and poorly configured servers
don't properly reject it, instead they send an NDN to the forged From
address.
I'm trying to integrate SpamAssassin into my setup, but I accidentally
got myself on a couple blacklists because my setup was producing
backscatter. The relevant lines of my smtpd.conf:
listen on lo0 port 10026 tag SPAMCHECK
accept tagged SPAMCHECK for domain <domains> virtual <users> \
deliver to lmtp "/var/dovecot/lmtp" rcpt-to
accept from any for domain <domains> \
deliver to smtp://127.0.0.1:10025
and from rc.conf.local:
spampd_flags=--port=10025 --relayhost=127.0.0.1:10026
Without the relay to spampd, OpenSMTPD just sends back a 550 Invalid
recipient as it should, but when relaying to spampd, it sends a bounce
to the forged From address.
I've tried delivering via LMTP to spampd instead, but spampd's LMTP
support seems to be broken (I'm not sure it would fix the problem
anyway). I could filter only valid recipients through the initial
relay, but the table-sqlite manpage seems to indicate that there's no
way to set up a recipients table with sqlite.
Does anybody know how to fix this problem?
Thanks,
Simon
--
You received this mail because you are subscribed to [email protected]
To unsubscribe, send a mail to: [email protected]
