Re: greylist patch

Mon, 22 Jan 2007 08:23:37 -0800 

Hi,

I'm in the process of testing :)

Two remarks

1 - If user is authenticated via SMTP, GREYLIST should be disabled.
     Check qmail-smtp.c

        if (flagauthok==1) env_unset("GREYLIST");

2 - Mysql host, user and password should come from Makefile and not hardcoded 
in

dbdef.sql
greylist-cleanup.pl
greylist-whitelist.pl
local_scan.c

Rgs
Nuno Fernandes

P.S. - É bom ver que em PT se mexe nisto.. 


On Monday 22 January 2007 11:10, you wrote:
> Hello all,
>
> for some days now i've been looking into the best way to make
> greylisting work with qmail-ldap. I've come to the conclusion that the
> more common ways around where to use an rblsmtpd drop in replacement
> program, that would greylist by incoming ip address.
>
> It doesn't take much to come to the conclusion that such approach is far
> from perfect since it takes a test condition to the three IP, MAIL FROM
> and RCPT TO triplets to have a solid ground for greylisting.
>
> Looking around a bit longer i was able to find a page which could
> provide a starting ground for the solution.
> http://www.digitaleveryware.com/projects/greylisting/ had, in theory, a
> solution for qmail. I noticed then that there was already a patch for
> netqmail that would benefit from the digitaleveryware solution. Although
> the patch didn't apply cleanly, i was able to identify the differences
> and port it to qmail-ldap. I also took the chance to add support for
> on-the-fly enabling by using the GREYLIST env var in the tcpserver rules
> file.
>
> More detailed information is available in the README.greylist file which
> is part of the patch.
>
> I've been running this solution for a couple of days now and it seems
> very stable and fast. I had a reduction of Spam messages in the order of
> 80% since, and that at the level of SMTP talk, wasting almost no
> resources, and sparing my content filter solution which is working,
> after,  using the  ALTQUEUE enhancement.
>
> Also i'd like to take a chance to say that it would be rather nice if
> this, or something similar, would go into the mainstream qmail-ldap patch.
>
> If anyone uses this patch, please let me know how did it work for you.
>
> Cheers!
>
> Hugo Monteiro.

-- 
Nuno Miguel Pais Fernandes <[EMAIL PROTECTED]>
Cisco Certified Network Associate
Oracle Certified Professional
Eurotux Informática, S.A. [http://eurotux.com]
Rua Rosalvo de Almeida, 5. 4710-429 BRAGA PORTUGAL
Tel: (+351) 253 257395 - Fax: (+351) 253 257396

Attachment: pgpQFWGdedrOw.pgp
Description: PGP signature

Reply via email to