Jeff Koch wrote: > > Hi Jason: > > We are having a problem using qmail-scanner with vpopmail. It appears that > when vpopmail is configured for roaming users (i.e. pop before smptd) the > IP addresses of users that pop in get listed in tcp.smtp.cbd and are then > bypassed by the qmail-scanner.
Actually qmail-scanner is being bypassed by tcp.smtp.cdb. > A look at the 'open-smtp' file which is used along with tcp.smtp to build > tcp.smtp.cdb shows entries like: > > 64.112.201.248:allow,RELAYCLIENT="",RBLSMTPD="" 1075391824 > 162.84.132.21:allow,RELAYCLIENT="",RBLSMTPD="" 1075391878 > 24.73.81.14:allow,RELAYCLIENT="",RBLSMTPD="" 1075391923 > > Then, it seems, for the period of time these entries stay in the database > email that comes from these IP addresses bypasses the qmail-scanner virus > filter. > > Is there a way to correct this problem? It is letting viruses through our > mailserver. Mr. Koch, This is a problem with vpopmail, not qmail-scanner. If you have compiled your vpopmail from source then you can find where vpopmail is setting RELAYCLIENT and RBLSMTPD and add a QMAILQUEUE variable to the mix then recompile EVERYTHING that relies on vpopmail. This is what we do on our systems. Otherwise you're pretty much out of luck. I suppose you could also try the qmail SMTP AUTH patches as a workaround, but you're still going to have to recompile things (you're just recompiling qmail instead of vpopmail & friends). -- Jesse Guardiani, Systems Administrator WingNET Internet Services, P.O. Box 2605 // Cleveland, TN 37320-2605 423-559-LINK (v) 423-559-5145 (f) http://www.wingnet.net ------------------------------------------------------- The SF.Net email is sponsored by EclipseCon 2004 Premiere Conference on Open Tools Development and Integration See the breadth of Eclipse activity. February 3-5 in Anaheim, CA. http://www.eclipsecon.org/osdn _______________________________________________ Qmail-scanner-general mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/qmail-scanner-general
