* Bob Maple <[EMAIL PROTECTED]> wrote:
> Hi all - I'm new to qmail and the list. I'm just getting it setup this
> weekend to replace a very old homegrown mail system at my domain.
Hello Bob,
>
<snip>
>
> Here is the basic logic of my current homegrown SMTPd:
>
> <-- HELO whatever.com
> --> (howdy back - remember address)
> <-- MAIL FROM:<[EMAIL PROTECTED]>
> --> (OK - remember address)
> <-- RCPT TO:<[EMAIL PROTECTED]>
>
> At this point, I do a bunch of checks:
>
> Is the RCPT a valid person? If no, reject with 'user unknown'; else
qmail does that for you
> Is the RCPT mailbox unfiltered? If yes, allow the message; else
That qmail doesn't do for you, it's more of an MDA kinda task. see [1]
> Is the FROM address on the "nice list"? If yes, allow the message; else
See [1] as well.
> Is the HELO domain on the banned list? If yes, reject the message; else
I think some RFC says that this is a no-no, Charles wrote on that subject somewhere in
the
past few weeks. Check the archives.
> Is the FROM on the banned list? If yes, reject the message; else
~qmail/control/badmailfrom . Rulez!
> So basically my SMTPd has a concept of "filtered" and "unfiltered" mailboxes,
> but this is done on the SMTP end before the message data is ever received. I
> know I can filter my head off with procmail or similar, but I don't even want
> to waste the bandwidth on the crap in the first place.
>
> I prefer to be a hard-nose and reject everything that matches something on my
> filters, whereas a couple of people get mail at my domain that need to bypass
> the filters (they actually get legitimate mail from people at hotmail! The
> horrors!).
>
> With all of this, I'd still like some smarter spam tools than what I have now,
> such as verifying the HELO hostname and FROM envelope as valid domains (I
> reject lots of mail based on bogus and ill-formed HELO hostnames which are
> sure signs of spammers who don't know what they are doing, even though the
> HELO hostname isn't terribly important rfc-wise last I checked)
I'll check the archives as well, blocking based on HELO AFAIK is a no-no RFC-wise.
> So, anything like this exist without post-processing after the message has
> already been received, or should I pull up my text editor and get cracking?
Before you do that have a look at [1], it realy shines and development is fast
> Thanks in advance for any suggestions. So far I'm loving qmail; I started
> with a sendmail book, but decided I didn't need that kind of angst in my life
> and downloaded qmail. I got it setup in less than an hour, and am just now
> trying to work out these spam issues before I switch it on live.
Dave sill (of lifewithqmail.net fame) has written a Qmail book, with all sorts
of niceties surrounding Qmail.
[1] http://tmda.sf.net
Tagged Message Delivery Agent is a great way of blocking spam and avoiding spam
by introducing time restricted mail-adresses. go check it out.
>
> : Bob Maple (Brazilian) : When love is gone, there's always justice. :
> : bobm at burner dot com : And when justice is gone, there's always :
> : : force. And when force is gone, there's :
> : http: burner.com : always Mom. Hi, Mom! - Laurie Anderson :
>
>
--
Quidquid latine dictum sit, altum viditur.
PGP signature
