Jake Vickers wrote:
> Quinn Comendant wrote:
>> Hey y'all
>>
>> An associate of mine has experience with postfix, and was wondering if
>> qmail blocks messages at SMTP that fail to meet valid criteria. See
>> the postfix log summary generated from his machine, below. I'm aware
>> the qmail toaster comes with support to use the following facilities
>> to block bad messages: RBLs, SPF, domainkeys, simscan, clamav,
>> spamassassin, SURBL. But does it block messages such as the "Host not
>> found" or other criteria? If not how to configure? I'm aware
>> Greylisting isn't part of the qmailtoaster.
>>
>> The second question, does anyone know of any utilities that can
>> generate reports like this from the qmail logs?
>>
>> Thanks!
>> Q
>>
>>
>> pflogsumm /var/log/mail.log
>> ...
>> message reject detail
>> ---------------------
>> RCPT
>> blocked using bl.spamcop.net (total: 19)
>> 12 ocn.ne.jp
>> 6 alpha-net.ne.jp
>> 1 btopenworld.com
>> cannot find your hostname (total: 25)
>> 23 72.35.236.66
>> 1 218.232.129.208
>> 1 221.141.51.93
>> Client host rejected: Greylisted (total: 7)
>> 3 horsepowerfreaks.com
>> 2 britecast.com
>> 2 campaignmonitor.com
>> Helo command rejected: Host not found (total: 4)
>> 2 80-219-113-121.dclient.hispeed.ch
>> 2 ocn.ne.jp
>> Helo command rejected: need fully-qualified hostname (total: 1)
>> 1 hinet.net
>>
>>
> Right now Toaster blocks at a SMTP level any connection that fails the
> RBL check defined by the servers in /var/qmail/control/blacklists. It
> will also dump the SMTP connection if any of the criteria are met in
> your CHKUSER options in /etc/tcprules.d/tcp.smtp.
> And no; you have the web page gui that shows some mail stats, but the
> logging has ALWAYS been clunky in Qmail itself. you can use some extra
> programs like qmail-analog, but even then they're crappy at best, IMHO.
> I guess you could write a script that would parse the log and count each
> type of entry. No one I know of has done so yet.
>
This is admittedly a weak spot in the toaster. Could be an issue with PHB
types. ;) It shouldn't be too difficult to write a script to produce such a
thing though. Nice project for a school, I would think. Note, pflogsumm
appears to do a dual-pass of some kind, as totals are listed before the detail.
Note, there are no log messages for SPF and/or domainkey rejections in the
toaster, so these stats would be impossible to track. BTW, this lack of log
message can be very frustrating for new toaster admins. I'd sure like to see
it fixed. Of course, if you don't check SPF or domainkeys, it's not an issue. ;)
--
-Eric 'shubes'
---------------------------------------------------------------------
QmailToaster hosted by: VR Hosted <http://www.vr.org>
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
