Re: greylist patch

Fri, 26 Jan 2007 03:52:31 -0800 

On Tuesday 23 January 2007 13:37, Hugo Monteiro wrote:
> Nuno Pais Fernandes wrote:
> > Hi,
> >
> > I'm in the process of testing :)
> >
> > Two remarks
> >
> > 1 - If user is authenticated via SMTP, GREYLIST should be disabled.
> >      Check qmail-smtp.c
> >
> >     if (flagauthok==1) env_unset("GREYLIST");
>
> Hello Nuno,
>
> Thanks for the input and i hope that all the testing goes well :)
>
> About the first remark you made, you haven't tested it yet since the
> only server i'm using the solution ATM doesn't allow relaying from the
> internet. Never the less, i've experimented setting the GREYLIST var on
> an already allowed relay source, and what happens is that if RELAYCLIENT
> is set, the greylisting feature is disregarded. Also from the
> qmail-smtpd.c code, i read the following;
>
>   /* check if we are authenticated, if yes enable relaying */
>   if (flagauthok && relayclient == 0) {
>     relayclient = "";
>     if (!env_put("RELAYCLIENT=")) die_nomem();
>   }
>
> So the relay authorization, after successfull authentication, is
> obtained by setting the RELAYCLIENT var. All points that this is enough
> to also disable greylisting, working as a side effect, but like i said i
> haven't tested it yet so i couldn't tell right now.
True, but with my selective relay path for qmail-ldap user only gets 
RELAYCLIENT var if its allowed to send emails to outside domains. This is 
only for my servers... everyone's else are ok. Nevertheless i've coded a 
patch do remove GREYLIST from authenticated users.

Regarding mysql db, user and pass, you can set them on-the-fly using:

echo "greylist" > /var/qmail/boot/qmail-smtpd/env/MYSQLDB
echo "greyuser" > /var/qmail/boot/qmail-smtpd/env/MYSQLUSER
echo "greypass" > /var/qmail/boot/qmail-smtpd/env/MYSQLPASS

and svc -du /service/qmail-smtpd

I'm still working on these two :)

> greylist-cleanup.pl
> greylist-whitelist.pl

I'v been out of office so.. no time to work on this..

Thanks
Nuno Fernandes

-- 
Nuno Miguel Pais Fernandes <[EMAIL PROTECTED]>
Cisco Certified Network Associate
Oracle Certified Professional
Eurotux Informática, S.A. [http://eurotux.com]
Rua Rosalvo de Almeida, 5. 4710-429 BRAGA PORTUGAL
Tel: (+351) 253 257395 - Fax: (+351) 253 257396

Attachment: pgpiJ5VZNFvoL.pgp
Description: PGP signature

Reply via email to