Re: [eug-lug]Store and Forward
I'm having trouble getting Sendmail to understand I want it to talk to SpamassMilter. In poking around looking for an answer, I got to thinking that Procmail is already filtering the way I want. How do I have Procmail forward this filtered email to another box in the same domain? This section sends mail to a folder: :0: * ^X-Spam-Status: Yes $HOME/mail/caughtspam Can $HOME/mail/caughtspam be changed to: forwardto:[EMAIL PROTECTED] Dropping * ^X-Spam-Status: Yes of course. What's the correct syntax for: forwardto:[EMAIL PROTECTED] Thanks Bob Larry Price ([EMAIL PROTECTED]) wrote: there is a milter to call spamassassin On Monday, March 8, 2004, at 07:44 AM, Bob Crandell wrote: It's amazing how great minds think alike. This is exactly what I'm trying to do. What I'm not sure of is the how to part. How to have this intermediate box filter mail without having to create users. Ok, I don't need Procmail. How do I call SpamAssassin directly from Sendmail? Thanks John Sechrest ([EMAIL PROTECTED]) wrote: You can always use an intermediate spam filter on an intermediate machine. You first need to set up a linux/unix box with spam assasin on it as you want. Then you need to set the system up to deliver to the exchange server. Then you want to set the MX records for the domain of the exchange system to point at the linux/unix box. This is how we seperate the FrontEnd mail server from the BackEnd mail servers. The front end has the RBL code in it, and spam assassin and the Milter rules. You don't use procmail, because you are not delivering to a mail box. You use the initial spam filtering tools. If there are things in procmail, which you can't write in sendmail, then you can force it to process the messages. But almost everything that I would put into procmail is better put into the sendmail rules on the front end box. Bob Crandell [EMAIL PROTECTED] writes: % Hi, % % One of my clients is asking for a SPAM filter for his Exchange server. No % wise cracks. He's stuck and he knows it. % % What I was planning on putting in was Sendmail/Procmail/SpamAssassin store and % forward mail server. My question is can I and how do I do this without % creating users on the mail server? % % Thanks % Bob % % -- % Assured Computing, Inc. % When you need to be sure. % http://www.assuredcomp.com/ % P.O. Box 40814 % Eugene, OR 97404 % Voice - 541-868-0331 % FAX - 541-463-1627 % % % ___ % EuG-LUG mailing list % [EMAIL PROTECTED] % http://mailman.efn.org/cgi-bin/listinfo/eug-lug - John Sechrest . Helping people use . computers and the Internet .more effectively . . Internet: [EMAIL PROTECTED] . . http://www.peak.org/~sechrest ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug -- Assured Computing, Inc. When you need to be sure. http://www.assuredcomp.com/ P.O. Box 40814 Eugene, OR 97404 Voice - 541-868-0331 FAX - 541-463-1627 ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug you capturing runaway bulldozers:once is chance, twice coincidence, ... ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug -- Assured Computing, Inc. When you need to be sure. http://www.assuredcomp.com/ P.O. Box 40814 Eugene, OR 97404 Voice - 541-868-0331 FAX - 541-463-1627 ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
Re: [eug-lug]Store and Forward
On Fri, Mar 19, 2004 at 04:42:26PM +, Bob Crandell wrote: I'm having trouble getting Sendmail to understand I want it to talk to SpamassMilter. In poking around looking for an answer, I got to thinking that Procmail is already filtering the way I want. How do I have Procmail forward this filtered email to another box in the same domain? This section sends mail to a folder: :0: * ^X-Spam-Status: Yes $HOME/mail/caughtspam Can $HOME/mail/caughtspam be changed to: forwardto:[EMAIL PROTECTED] Dropping * ^X-Spam-Status: Yes of course. What's the correct syntax for: forwardto:[EMAIL PROTECTED] Dropping the X-Spam-Status header requires that you do a bunch of pipes. Just sending the message on would be :0--- no need to lock * ^X-Spam-Status:.*Yes--- technically you should have .* not [EMAIL PROTECTED] --- isn't that easy? =) ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
Re: [eug-lug]Store and Forward
T. Joseph Carter ([EMAIL PROTECTED]) wrote: On Fri, Mar 19, 2004 at 04:42:26PM +, Bob Crandell wrote: I'm having trouble getting Sendmail to understand I want it to talk to SpamassMilter. In poking around looking for an answer, I got to thinking that Procmail is already filtering the way I want. How do I have Procmail forward this filtered email to another box in the same domain? This section sends mail to a folder: :0: * ^X-Spam-Status: Yes $HOME/mail/caughtspam Can $HOME/mail/caughtspam be changed to: forwardto:[EMAIL PROTECTED] Dropping * ^X-Spam-Status: Yes of course. What's the correct syntax for: forwardto:[EMAIL PROTECTED] Dropping the X-Spam-Status header requires that you do a bunch of pipes. Just sending the message on would be :0--- no need to lock * ^X-Spam-Status:.*Yes--- technically you should have .* not [EMAIL PROTECTED] --- isn't that easy? =) ___ It looks easy. What's the catch? ;^ I'm dense. So * ^X-Spam-Status: Yes becomes * not There are no local users so 'other' needs to be a variable that I can attach to the front of @there.com so it will be delivered to the proper mailbox on the other server. Does Procmail have that stored? [EMAIL PROTECTED] BTW, the Milter is no longer incommunicado. It is happily fitering away. I would prefer doing it with Procmail because it will almost work out of the box. Thanks -- Assured Computing, Inc. When you need to be sure. http://www.assuredcomp.com/ P.O. Box 40814 Eugene, OR 97404 Voice - 541-868-0331 FAX - 541-463-1627 ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
Re: [eug-lug]Store and Forward
On Fri, Mar 19, 2004 at 08:53:02PM +, Bob Crandell wrote: Dropping the X-Spam-Status header requires that you do a bunch of pipes. Just sending the message on would be :0--- no need to lock * ^X-Spam-Status:.*Yes--- technically you should have .* not [EMAIL PROTECTED] --- isn't that easy? =) ___ It looks easy. What's the catch? ;^ I'm dense. So * ^X-Spam-Status: Yes becomes * not X-Spam-Status:Yes X-Spam-Status: Yes etc Since you know the only program to define something as spam in this manner is spamassasin, you can probably leave it. However, it will only match if that space is there and there's only one. Safer to look for the header and for the word yes in it. This is a regex after all, though it is by default a case-insensitive one. There are no local users so 'other' needs to be a variable that I can attach to the front of @there.com so it will be delivered to the proper mailbox on the other server. Does Procmail have that stored? [EMAIL PROTECTED] BTW, the Milter is no longer incommunicado. It is happily fitering away. I would prefer doing it with Procmail because it will almost work out of the box. Why are you trying to forward all spam to users' accounts at another box? ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
Re: [eug-lug]Store and Forward
On Fri, Mar 19, 2004 at 05:49:02PM -0800, Cory Petkovsek wrote: Also, with procmail, I used ! to forward mail: Cory's right and I'm apparently on drugs today. ;) ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
Re: [eug-lug]Store and Forward
T. Joseph Carter ([EMAIL PROTECTED]) wrote: On Fri, Mar 19, 2004 at 08:53:02PM +, Bob Crandell wrote: Dropping the X-Spam-Status header requires that you do a bunch of pipes. Just sending the message on would be :0--- no need to lock * ^X-Spam-Status:.*Yes--- technically you should have .* not [EMAIL PROTECTED] --- isn't that easy? =) ___ It looks easy. What's the catch? ;^ I'm dense. So * ^X-Spam-Status: Yes becomes * not X-Spam-Status:Yes X-Spam-Status: Yes etc Since you know the only program to define something as spam in this manner is spamassasin, you can probably leave it. However, it will only match if that space is there and there's only one. Safer to look for the header and for the word yes in it. This is a regex after all, though it is by default a case-insensitive one. There are no local users so 'other' needs to be a variable that I can attach to the front of @there.com so it will be delivered to the proper mailbox on the other server. Does Procmail have that stored? [EMAIL PROTECTED] BTW, the Milter is no longer incommunicado. It is happily fitering away. I would prefer doing it with Procmail because it will almost work out of the box. Why are you trying to forward all spam to users' accounts at another box? ___ I'm marking spam and passing all mail on to their server where the users collect their mail, and sort it based on spam on the subject line. -- Assured Computing, Inc. When you need to be sure. http://www.assuredcomp.com/ P.O. Box 40814 Eugene, OR 97404 Voice - 541-868-0331 FAX - 541-463-1627 ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
Re: [eug-lug]Store and Forward
On Mon, Mar 15, 2004 at 03:37:39PM +, Bob Crandell wrote:
What does your Mon alert look like?
Pretty simple. Here is the alert sans comments:
---
#!/bin/sh
if [ $1 == ]; then
echo Usage: $0 service_name
echo Returns 0 if service found, 1 otherwise
echo Uses \`ps\` command
exit 1
fi
# A good regex will use ^ at least, ie ^/usr/bin/named
A=`ps -o cmd -e |egrep -q $1`
exit $?
---
Here's an alert to restart a service:
#!/usr/bin/perl
use Getopt::Std;
getopts (f:c:s:g:h:t:l:u);
my $file = $opt_f if defined $opt_f;
my $cmd = $opt_c || restart;
if (-x /etc/init.d/$file) {
system(/etc/init.d/$file $cmd);
}
Then you can use both in a service definition:
watch servers
service sshd
interval 10m
monitor service.monitor ^/usr/sbin/sshd
period wd {Sun-Sat}
alertevery 1h
alert restart_svc.alert -f sshd -c restart
alert mail.alert -S sshd is down, attempting restart [EMAIL PROTECTED]
upalert mail.alert -S sshd is back up [EMAIL PROTECTED]
Cory
--
Cory Petkovsek Adapting Information
Adaptable IT ConsultingTechnology to Your
(858) 705-1655 Business
[EMAIL PROTECTED] www.AdaptableIT.com
___
EuG-LUG mailing list
[EMAIL PROTECTED]
http://mailman.efn.org/cgi-bin/listinfo/eug-lug
Re: [eug-lug]Store and Forward
Cory Petkovsek ([EMAIL PROTECTED]) wrote: On Wed, Mar 10, 2004 at 10:28:48PM -0800, Cory Petkovsek wrote: 1) Postfix+amavisd-new+spamassassin on one server 2) default exchange 5.5 on another server 3) script that dumps ldap entries from exchange to a text file that postfix reads. Easy as one, two, three. Bob, I'm actually in the process of setting up this exact system for one of my clients in portland. I'm setting it up with the above plus software mirroring and service monitoring. I made my own Mon alert to restart services if they fail. Cory Another client with a Novell server is going to want this too. That's part of the reason I was hoping for a solution that didn't require user names on the filter. What does your Mon alert look like? Bob ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
Re: [eug-lug]Store and Forward
Have you configured spamass-milter? I've read through some of the docs and it makes me feel dense. Thanks Larry Price ([EMAIL PROTECTED]) wrote: there is a milter to call spamassassin On Monday, March 8, 2004, at 07:44 AM, Bob Crandell wrote: It's amazing how great minds think alike. This is exactly what I'm trying to do. What I'm not sure of is the how to part. How to have this intermediate box filter mail without having to create users. Ok, I don't need Procmail. How do I call SpamAssassin directly from Sendmail? Thanks John Sechrest ([EMAIL PROTECTED]) wrote: You can always use an intermediate spam filter on an intermediate machine. You first need to set up a linux/unix box with spam assasin on it as you want. Then you need to set the system up to deliver to the exchange server. Then you want to set the MX records for the domain of the exchange system to point at the linux/unix box. This is how we seperate the FrontEnd mail server from the BackEnd mail servers. The front end has the RBL code in it, and spam assassin and the Milter rules. You don't use procmail, because you are not delivering to a mail box. You use the initial spam filtering tools. If there are things in procmail, which you can't write in sendmail, then you can force it to process the messages. But almost everything that I would put into procmail is better put into the sendmail rules on the front end box. Bob Crandell [EMAIL PROTECTED] writes: % Hi, % % One of my clients is asking for a SPAM filter for his Exchange server. No % wise cracks. He's stuck and he knows it. % % What I was planning on putting in was Sendmail/Procmail/SpamAssassin store and % forward mail server. My question is can I and how do I do this without % creating users on the mail server? % % Thanks % Bob % % -- % Assured Computing, Inc. % When you need to be sure. % http://www.assuredcomp.com/ % P.O. Box 40814 % Eugene, OR 97404 % Voice - 541-868-0331 % FAX - 541-463-1627 % % % ___ % EuG-LUG mailing list % [EMAIL PROTECTED] % http://mailman.efn.org/cgi-bin/listinfo/eug-lug - John Sechrest . Helping people use . computers and the Internet .more effectively . . Internet: [EMAIL PROTECTED] . . http://www.peak.org/~sechrest ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug -- Assured Computing, Inc. When you need to be sure. http://www.assuredcomp.com/ P.O. Box 40814 Eugene, OR 97404 Voice - 541-868-0331 FAX - 541-463-1627 ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug you capturing runaway bulldozers:once is chance, twice coincidence, ... ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug -- Assured Computing, Inc. When you need to be sure. http://www.assuredcomp.com/ P.O. Box 40814 Eugene, OR 97404 Voice - 541-868-0331 FAX - 541-463-1627 ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
Re: [eug-lug]Store and Forward
On Wed, Mar 10, 2004 at 10:28:48PM -0800, Cory Petkovsek wrote: 1) Postfix+amavisd-new+spamassassin on one server 2) default exchange 5.5 on another server 3) script that dumps ldap entries from exchange to a text file that postfix reads. Easy as one, two, three. Bob, I'm actually in the process of setting up this exact system for one of my clients in portland. I'm setting it up with the above plus software mirroring and service monitoring. I made my own Mon alert to restart services if they fail. Cory -- Cory Petkovsek Adapting Information Adaptable IT ConsultingTechnology to Your (858) 705-1655 Business [EMAIL PROTECTED] www.AdaptableIT.com ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
Re: [eug-lug]Store and Forward
Cory Petkovsek wrote: On Wed, Mar 10, 2004 at 08:49:57AM -0600, Christopher Forsythe wrote: y correct. Active directory is based on ldap, and exchange 2000 is dependent on active directory. Exchange is also an active directory aware system. Now if this person were to be using exchange 5.5 or below, then the assumption that ldap is there would be incorrect. For the most part you are right though. :D Excuse me? When's the last time you've looked at an Exchange 5.5 server. It has a built in ldap server that ties in to all of the entries in the server. Try pointing an ldapsearch at it and see what comes out. Cory Last I checked, it can be turned off on exchange 5.5, but can't on exchange 2000, as it has to be on for active directory. ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
Re: [eug-lug]Store and Forward
What he said. Cory Petkovsek ([EMAIL PROTECTED]) wrote: On Wed, Mar 10, 2004 at 11:48:20AM -0800, Jason wrote: Maybe a dumb question, but why does the customer want a separate box vs. installing something like netiq's mailmarshal right on the Exchange box? The customer probably wants a solution, not necessarily a separate box. How much does mailmarshall cost? I tried to find out, but apparently it costs too much to put the price tag on the website. Is the Exchange box the mx? (I hope not) Is this solution being planned for the mx? This is what I'd tend to recommend (anti-spam on either the mx or the Exchange box), since I don't see a reason to add another box to the mix (unless they have a ton of mail traffic). Here we are, $630 for 100 email boxes $230 for a 1 year upgrade plan for same. $65 for 1 year of tech support That price isn't bad, but I'd choose a separate box for the same reasons: - Because of more control, I find it more convenient to work in a unix environment. A client isn't going to work on it either way, so it doesn't matter to them. - Extended licensing costs are dollars they can pay me. They are likely going to pay me the same either way, commercial or OSS, so why not save them some money. - OSS is open source, completely trouble-shootable, free, Free, etc - Upgrades are free. - Additional mailboxes are free. - I can easily and quickly make the box a secure webserver too, add webmail for another hour. Want bar graphs of your internet traffic? - I can set it up or troubleshoot it remotely and securely with the default setup over a slow internet connection. You can do most of that with windows, but not all four. Cory EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug -- Assured Computing, Inc. When you need to be sure. http://www.assuredcomp.com/ P.O. Box 40814 Eugene, OR 97404 Voice - 541-868-0331 FAX - 541-463-1627 ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
Re: [eug-lug]Store and Forward
Hey: --- Cory Petkovsek [EMAIL PROTECTED] wrote: snip The customer probably wants a solution, not necessarily a separate box. How much does mailmarshall cost? I tried to find out, but apparently it costs too much to put the price tag on the website. No, my question was more to the separate box vs. separate app issue, just using mailmarshal as an example. There are other solutions and maybe oss anti-spam for windows (or not?). snip That price isn't bad, but I'd choose a separate box for the same reasons: Normally for a small customer I try to limit the # of devices/boxes, but Bob already mentioned that this box was not only the mx but also running sbs. In this case, I'd recommend either another box or that the customer move the mx to their isp. J __ Do you Yahoo!? Yahoo! Search - Find what youre looking for faster http://search.yahoo.com ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
Re: [eug-lug]Store and Forward
On Sun, Mar 07, 2004 at 11:02:39PM +, Bob Crandell wrote: Hi, One of my clients is asking for a SPAM filter for his Exchange server. No wise cracks. He's stuck and he knows it. What I was planning on putting in was Sendmail/Procmail/SpamAssassin store and forward mail server. My question is can I and how do I do this without creating users on the mail server? Bob, I've done it with exchange/postfix. With my setup, Postfix accepts email only for users found on the exchange server. New account? Add it in exchange. Postfix will use ldap, or one can have a script that dumps ldap to a hash file for postfix. LDAP is built in to exchange. Cory -- Cory Petkovsek Adapting Information Adaptable IT ConsultingTechnology to Your (858) 705-1655 Business [EMAIL PROTECTED] www.AdaptableIT.com ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
Re: [eug-lug]Store and Forward
On Sun, Mar 07, 2004 at 11:02:39PM +, Bob Crandell wrote: LDAP is built in to exchange. Cory Not totally correct. Active directory is based on ldap, and exchange 2000 is dependent on active directory. Exchange is also an active directory aware system. Now if this person were to be using exchange 5.5 or below, then the assumption that ldap is there would be incorrect. For the most part you are right though. :D Chris ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
Re: [eug-lug]Store and Forward
Cory Petkovsek ([EMAIL PROTECTED]) wrote: On Sun, Mar 07, 2004 at 11:02:39PM +, Bob Crandell wrote: Hi, One of my clients is asking for a SPAM filter for his Exchange server. No wise cracks. He's stuck and he knows it. What I was planning on putting in was Sendmail/Procmail/SpamAssassin store and forward mail server. My question is can I and how do I do this without creating users on the mail server? Bob, I've done it with exchange/postfix. With my setup, Postfix accepts email only for users found on the exchange server. New account? Add it in exchange. Postfix will use ldap, or one can have a script that dumps ldap to a hash file for postfix. LDAP is built in to exchange. Cory EuG-LUG mailing list Hi, I don't have LDAP installed anywhere. So what you're saying is I need to install the users on the spam filter box in order for it to filter the mail that passes through it? Not a big deal but I was hoping against it. Thanks -- Assured Computing, Inc. When you need to be sure. http://www.assuredcomp.com/ P.O. Box 40814 Eugene, OR 97404 Voice - 541-868-0331 FAX - 541-463-1627 ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
Re: [eug-lug]Store and Forward
Maybe a dumb question, but why does the customer want a separate box vs. installing something like netiq's mailmarshal right on the Exchange box? Is the Exchange box the mx? (I hope not) Is this solution being planned for the mx? This is what I'd tend to recommend (anti-spam on either the mx or the Exchange box), since I don't see a reason to add another box to the mix (unless they have a ton of mail traffic). J --- Bob Crandell [EMAIL PROTECTED] wrote: Cory Petkovsek ([EMAIL PROTECTED]) wrote: On Sun, Mar 07, 2004 at 11:02:39PM +, Bob Crandell wrote: Hi, One of my clients is asking for a SPAM filter for his Exchange server. No wise cracks. He's stuck and he knows it. What I was planning on putting in was Sendmail/Procmail/SpamAssassin store and forward mail server. My question is can I and how do I do this without creating users on the mail server? Bob, I've done it with exchange/postfix. With my setup, Postfix accepts email only for users found on the exchange server. New account? Add it in exchange. Postfix will use ldap, or one can have a script that dumps ldap to a hash file for postfix. LDAP is built in to exchange. Cory EuG-LUG mailing list Hi, I don't have LDAP installed anywhere. So what you're saying is I need to install the users on the spam filter box in order for it to filter the mail that passes through it? Not a big deal but I was hoping against it. Thanks -- Assured Computing, Inc. When you need to be sure. http://www.assuredcomp.com/ P.O. Box 40814 Eugene, OR 97404 Voice - 541-868-0331 FAX - 541-463-1627 ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug __ Do you Yahoo!? Yahoo! Search - Find what youre looking for faster http://search.yahoo.com ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
Re: [eug-lug]Store and Forward
On Sun, Mar 07, 2004 at 11:02:39PM +, Bob Crandell wrote: Hi, One of my clients is asking for a SPAM filter for his Exchange server. No wise cracks. He's stuck and he knows it. What I was planning on putting in was Sendmail/Procmail/SpamAssassin store and forward mail server. My question is can I and how do I do this without creating users on the mail server? When I was running the network at NCC oh so many years ago, I solved this by putting what you might call a mail proxy server (at that time, Qmail on an OpenBSD box) in front of the Exchange server. Exchange sat safely inside the firewall, and only saw the stuff that made it through our Qmail filters. No users needed on the Qmail server; it just filtered stuff and passed it on in. Saved our butts numerous times. Ken -- An intellect does not function on the premise of its own impotence. -- Ayn Rand, Capitalism: The Unknown Ideal ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
Re: [eug-lug]Store and Forward
I'm wanting a stand alone box more than he is. The Exchange server is SBS 2000 and is barely keeping up. My goal is to use them as a test bed to build a generic box that I can clone and plug into anybody's site and have it just work. The Exchange box is the mx. The spam filter is to become the mx. Thanks Jason ([EMAIL PROTECTED]) wrote: Maybe a dumb question, but why does the customer want a separate box vs. installing something like netiq's mailmarshal right on the Exchange box? Is the Exchange box the mx? (I hope not) Is this solution being planned for the mx? This is what I'd tend to recommend (anti-spam on either the mx or the Exchange box), since I don't see a reason to add another box to the mix (unless they have a ton of mail traffic). J --- Bob Crandell [EMAIL PROTECTED] wrote: Cory Petkovsek ([EMAIL PROTECTED]) wrote: On Sun, Mar 07, 2004 at 11:02:39PM +, Bob Crandell wrote: Hi, One of my clients is asking for a SPAM filter for his Exchange server. No wise cracks. He's stuck and he knows it. What I was planning on putting in was Sendmail/Procmail/SpamAssassin store and forward mail server. My question is can I and how do I do this without creating users on the mail server? Bob, I've done it with exchange/postfix. With my setup, Postfix accepts email only for users found on the exchange server. New account? Add it in exchange. Postfix will use ldap, or one can have a script that dumps ldap to a hash file for postfix. LDAP is built in to exchange. Cory EuG-LUG mailing list Hi, I don't have LDAP installed anywhere. So what you're saying is I need to install the users on the spam filter box in order for it to filter the mail that passes through it? Not a big deal but I was hoping against it. Thanks -- Assured Computing, Inc. When you need to be sure. http://www.assuredcomp.com/ P.O. Box 40814 Eugene, OR 97404 Voice - 541-868-0331 FAX - 541-463-1627 ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug __ Do you Yahoo!? Yahoo! Search - Find what youre looking for faster http://search.yahoo.com ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug -- Assured Computing, Inc. When you need to be sure. http://www.assuredcomp.com/ P.O. Box 40814 Eugene, OR 97404 Voice - 541-868-0331 FAX - 541-463-1627 ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
Re: [eug-lug]Store and Forward
Ah, SBS and Exchange is the mx. Zoinks! or, alternately, Yikes! Good plan for the spam/mx box; keep us posted (sorry I don't have any other assistance). J --- Bob Crandell [EMAIL PROTECTED] wrote: I'm wanting a stand alone box more than he is. The Exchange server is SBS 2000 and is barely keeping up. My goal is to use them as a test bed to build a generic box that I can clone and plug into anybody's site and have it just work. The Exchange box is the mx. The spam filter is to become the mx. Thanks Jason ([EMAIL PROTECTED]) wrote: Maybe a dumb question, but why does the customer want a separate box vs. installing something like netiq's mailmarshal right on the Exchange box? Is the Exchange box the mx? (I hope not) Is this solution being planned for the mx? This is what I'd tend to recommend (anti-spam on either the mx or the Exchange box), since I don't see a reason to add another box to the mix (unless they have a ton of mail traffic). J --- Bob Crandell [EMAIL PROTECTED] wrote: Cory Petkovsek ([EMAIL PROTECTED]) wrote: On Sun, Mar 07, 2004 at 11:02:39PM +, Bob Crandell wrote: Hi, One of my clients is asking for a SPAM filter for his Exchange server. No wise cracks. He's stuck and he knows it. What I was planning on putting in was Sendmail/Procmail/SpamAssassin store and forward mail server. My question is can I and how do I do this without creating users on the mail server? Bob, I've done it with exchange/postfix. With my setup, Postfix accepts email only for users found on the exchange server. New account? Add it in exchange. Postfix will use ldap, or one can have a script that dumps ldap to a hash file for postfix. LDAP is built in to exchange. Cory EuG-LUG mailing list Hi, I don't have LDAP installed anywhere. So what you're saying is I need to install the users on the spam filter box in order for it to filter the mail that passes through it? Not a big deal but I was hoping against it. Thanks -- Assured Computing, Inc. When you need to be sure. http://www.assuredcomp.com/ P.O. Box 40814 Eugene, OR 97404 Voice - 541-868-0331 FAX - 541-463-1627 ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug __ Do you Yahoo!? Yahoo! Search - Find what youre looking for faster http://search.yahoo.com ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug -- Assured Computing, Inc. When you need to be sure. http://www.assuredcomp.com/ P.O. Box 40814 Eugene, OR 97404 Voice - 541-868-0331 FAX - 541-463-1627 ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug __ Do you Yahoo!? Yahoo! Search - Find what youre looking for faster http://search.yahoo.com ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
Re: [eug-lug]Store and Forward
On Wed, Mar 10, 2004 at 08:49:57AM -0600, Christopher Forsythe wrote: On Sun, Mar 07, 2004 at 11:02:39PM +, Bob Crandell wrote: LDAP is built in to exchange. Cory Not totally correct. Active directory is based on ldap, and exchange 2000 is dependent on active directory. Exchange is also an active directory aware system. Now if this person were to be using exchange 5.5 or below, then the assumption that ldap is there would be incorrect. For the most part you are right though. :D Excuse me? When's the last time you've looked at an Exchange 5.5 server. It has a built in ldap server that ties in to all of the entries in the server. Try pointing an ldapsearch at it and see what comes out. Cory -- Cory Petkovsek Adapting Information Adaptable IT ConsultingTechnology to Your (858) 705-1655 Business [EMAIL PROTECTED] www.AdaptableIT.com ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
Re: [eug-lug]Store and Forward
On Wed, Mar 10, 2004 at 11:48:20AM -0800, Jason wrote: Maybe a dumb question, but why does the customer want a separate box vs. installing something like netiq's mailmarshal right on the Exchange box? The customer probably wants a solution, not necessarily a separate box. How much does mailmarshall cost? I tried to find out, but apparently it costs too much to put the price tag on the website. Is the Exchange box the mx? (I hope not) Is this solution being planned for the mx? This is what I'd tend to recommend (anti-spam on either the mx or the Exchange box), since I don't see a reason to add another box to the mix (unless they have a ton of mail traffic). Here we are, $630 for 100 email boxes $230 for a 1 year upgrade plan for same. $65 for 1 year of tech support That price isn't bad, but I'd choose a separate box for the same reasons: - Because of more control, I find it more convenient to work in a unix environment. A client isn't going to work on it either way, so it doesn't matter to them. - Extended licensing costs are dollars they can pay me. They are likely going to pay me the same either way, commercial or OSS, so why not save them some money. - OSS is open source, completely trouble-shootable, free, Free, etc - Upgrades are free. - Additional mailboxes are free. - I can easily and quickly make the box a secure webserver too, add webmail for another hour. Want bar graphs of your internet traffic? - I can set it up or troubleshoot it remotely and securely with the default setup over a slow internet connection. You can do most of that with windows, but not all four. Cory -- Cory Petkovsek Adapting Information Adaptable IT ConsultingTechnology to Your (858) 705-1655 Business [EMAIL PROTECTED] www.AdaptableIT.com ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
Re: [eug-lug]Store and Forward
On Wed, Mar 10, 2004 at 06:54:02PM +, Bob Crandell wrote: Hi, I don't have LDAP installed anywhere. So what you're saying is I need to install the users on the spam filter box in order for it to filter the mail that passes through it? Not a big deal but I was hoping against it. Thanks No, this is what I have at one site: 1) Postfix+amavisd-new+spamassassin on one server 2) default exchange 5.5 on another server 3) script that dumps ldap entries from exchange to a text file that postfix reads. Easy as one, two, three. It provides these benefits over other solutions I've seen: - All users modification is done on the exchange server. #3 takes care of new/removed users. No user accounts on the postfix server - Postfix accepts mail _only_ for valid email accounts on the exchange server. Previous email filters I've worked with accepted all mail at the filter level. Then crap stayed in the filter for days on end because NDR reports to nonexistant.domain.com failed to go. - Postfix allows checking via perl compatible regular expressions. That is very cool. Cory -- Cory Petkovsek Adapting Information Adaptable IT ConsultingTechnology to Your (858) 705-1655 Business [EMAIL PROTECTED] www.AdaptableIT.com ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
Re: [eug-lug]Store and Forward
It's amazing how great minds think alike. This is exactly what I'm trying to do. What I'm not sure of is the how to part. How to have this intermediate box filter mail without having to create users. Ok, I don't need Procmail. How do I call SpamAssassin directly from Sendmail? Thanks John Sechrest ([EMAIL PROTECTED]) wrote: You can always use an intermediate spam filter on an intermediate machine. You first need to set up a linux/unix box with spam assasin on it as you want. Then you need to set the system up to deliver to the exchange server. Then you want to set the MX records for the domain of the exchange system to point at the linux/unix box. This is how we seperate the FrontEnd mail server from the BackEnd mail servers. The front end has the RBL code in it, and spam assassin and the Milter rules. You don't use procmail, because you are not delivering to a mail box. You use the initial spam filtering tools. If there are things in procmail, which you can't write in sendmail, then you can force it to process the messages. But almost everything that I would put into procmail is better put into the sendmail rules on the front end box. Bob Crandell [EMAIL PROTECTED] writes: % Hi, % % One of my clients is asking for a SPAM filter for his Exchange server. No % wise cracks. He's stuck and he knows it. % % What I was planning on putting in was Sendmail/Procmail/SpamAssassin store and % forward mail server. My question is can I and how do I do this without % creating users on the mail server? % % Thanks % Bob % % -- % Assured Computing, Inc. % When you need to be sure. % http://www.assuredcomp.com/ % P.O. Box 40814 % Eugene, OR 97404 % Voice - 541-868-0331 % FAX - 541-463-1627 % % % ___ % EuG-LUG mailing list % [EMAIL PROTECTED] % http://mailman.efn.org/cgi-bin/listinfo/eug-lug - John Sechrest . Helping people use . computers and the Internet .more effectively . . Internet: [EMAIL PROTECTED] . . http://www.peak.org/~sechrest ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug -- Assured Computing, Inc. When you need to be sure. http://www.assuredcomp.com/ P.O. Box 40814 Eugene, OR 97404 Voice - 541-868-0331 FAX - 541-463-1627 ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
Re: [eug-lug]Store and Forward
There are spamassassin filters and packages that can be put straight into the config. I think it is all built around milter. There are some standard examples of how to do this floating around. I don't have my fingers on one, but I have read at least two discussions of how to do it. Bob Crandell [EMAIL PROTECTED] writes: % It's amazing how great minds think alike. This is exactly what I'm trying to % do. What I'm not sure of is the how to part. How to have this intermediate % box filter mail without having to create users. % % Ok, I don't need Procmail. How do I call SpamAssassin directly from Sendmail? % % Thanks % % % John Sechrest ([EMAIL PROTECTED]) wrote: % % % You can always use an intermediate spam filter on an intermediate machine. % % You first need to set up a linux/unix box with spam assasin on it as you want. % Then you need to set the system up to deliver to the exchange server. % Then you want to set the MX records for the domain of the exchange system % to point at the linux/unix box. % % This is how we seperate the FrontEnd mail server from the BackEnd mail servers. % % The front end has the RBL code in it, and spam assassin and the Milter rules. % % You don't use procmail, because you are not delivering to a mail box. You % use the initial spam filtering tools. % % If there are things in procmail, which you can't write in sendmail, % then you can force it to process the messages. But almost everything % that I would put into procmail is better put into the sendmail rules % on the front end box. % % % % % Bob Crandell [EMAIL PROTECTED] writes: % % % Hi, % % % % One of my clients is asking for a SPAM filter for his Exchange server. No % % wise cracks. He's stuck and he knows it. % % % % What I was planning on putting in was Sendmail/Procmail/SpamAssassin store and % % forward mail server. My question is can I and how do I do this without % % creating users on the mail server? % % % % Thanks % % Bob % % % % -- % % Assured Computing, Inc. % % When you need to be sure. % % http://www.assuredcomp.com/ % % P.O. Box 40814 % % Eugene, OR 97404 % % Voice - 541-868-0331 % % FAX - 541-463-1627 % % % % % % ___ % % EuG-LUG mailing list % % [EMAIL PROTECTED] % % http://mailman.efn.org/cgi-bin/listinfo/eug-lug % % - % John Sechrest . Helping people use % . computers and the Internet %.more effectively % . % . Internet: [EMAIL PROTECTED] %. %. http://www.peak.org/~sechrest % ___ % EuG-LUG mailing list % [EMAIL PROTECTED] % http://mailman.efn.org/cgi-bin/listinfo/eug-lug % % % -- % Assured Computing, Inc. % When you need to be sure. % http://www.assuredcomp.com/ % P.O. Box 40814 % Eugene, OR 97404 % Voice - 541-868-0331 % FAX - 541-463-1627 % % % ___ % EuG-LUG mailing list % [EMAIL PROTECTED] % http://mailman.efn.org/cgi-bin/listinfo/eug-lug - John Sechrest . Helping people use . computers and the Internet .more effectively . . Internet: [EMAIL PROTECTED] . . http://www.peak.org/~sechrest ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
Re: [eug-lug]Store and Forward
there is a milter to call spamassassin On Monday, March 8, 2004, at 07:44 AM, Bob Crandell wrote: It's amazing how great minds think alike. This is exactly what I'm trying to do. What I'm not sure of is the how to part. How to have this intermediate box filter mail without having to create users. Ok, I don't need Procmail. How do I call SpamAssassin directly from Sendmail? Thanks John Sechrest ([EMAIL PROTECTED]) wrote: You can always use an intermediate spam filter on an intermediate machine. You first need to set up a linux/unix box with spam assasin on it as you want. Then you need to set the system up to deliver to the exchange server. Then you want to set the MX records for the domain of the exchange system to point at the linux/unix box. This is how we seperate the FrontEnd mail server from the BackEnd mail servers. The front end has the RBL code in it, and spam assassin and the Milter rules. You don't use procmail, because you are not delivering to a mail box. You use the initial spam filtering tools. If there are things in procmail, which you can't write in sendmail, then you can force it to process the messages. But almost everything that I would put into procmail is better put into the sendmail rules on the front end box. Bob Crandell [EMAIL PROTECTED] writes: % Hi, % % One of my clients is asking for a SPAM filter for his Exchange server. No % wise cracks. He's stuck and he knows it. % % What I was planning on putting in was Sendmail/Procmail/SpamAssassin store and % forward mail server. My question is can I and how do I do this without % creating users on the mail server? % % Thanks % Bob % % -- % Assured Computing, Inc. % When you need to be sure. % http://www.assuredcomp.com/ % P.O. Box 40814 % Eugene, OR 97404 % Voice - 541-868-0331 % FAX - 541-463-1627 % % % ___ % EuG-LUG mailing list % [EMAIL PROTECTED] % http://mailman.efn.org/cgi-bin/listinfo/eug-lug - John Sechrest . Helping people use . computers and the Internet .more effectively . . Internet: [EMAIL PROTECTED] . . http://www.peak.org/~sechrest ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug -- Assured Computing, Inc. When you need to be sure. http://www.assuredcomp.com/ P.O. Box 40814 Eugene, OR 97404 Voice - 541-868-0331 FAX - 541-463-1627 ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug -- Metaphors for system administration --- bailing the titanic with paper cups: or polishing the deck chairs thereof steering an iceberg with a broom: nonexciting challenges await you capturing runaway bulldozers:once is chance, twice coincidence, ... ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
[eug-lug]Store and Forward
Hi, One of my clients is asking for a SPAM filter for his Exchange server. No wise cracks. He's stuck and he knows it. What I was planning on putting in was Sendmail/Procmail/SpamAssassin store and forward mail server. My question is can I and how do I do this without creating users on the mail server? Thanks Bob -- Assured Computing, Inc. When you need to be sure. http://www.assuredcomp.com/ P.O. Box 40814 Eugene, OR 97404 Voice - 541-868-0331 FAX - 541-463-1627 ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
Re: [eug-lug]Store and Forward
You can always use an intermediate spam filter on an intermediate machine. You first need to set up a linux/unix box with spam assasin on it as you want. Then you need to set the system up to deliver to the exchange server. Then you want to set the MX records for the domain of the exchange system to point at the linux/unix box. This is how we seperate the FrontEnd mail server from the BackEnd mail servers. The front end has the RBL code in it, and spam assassin and the Milter rules. You don't use procmail, because you are not delivering to a mail box. You use the initial spam filtering tools. If there are things in procmail, which you can't write in sendmail, then you can force it to process the messages. But almost everything that I would put into procmail is better put into the sendmail rules on the front end box. Bob Crandell [EMAIL PROTECTED] writes: % Hi, % % One of my clients is asking for a SPAM filter for his Exchange server. No % wise cracks. He's stuck and he knows it. % % What I was planning on putting in was Sendmail/Procmail/SpamAssassin store and % forward mail server. My question is can I and how do I do this without % creating users on the mail server? % % Thanks % Bob % % -- % Assured Computing, Inc. % When you need to be sure. % http://www.assuredcomp.com/ % P.O. Box 40814 % Eugene, OR 97404 % Voice - 541-868-0331 % FAX - 541-463-1627 % % % ___ % EuG-LUG mailing list % [EMAIL PROTECTED] % http://mailman.efn.org/cgi-bin/listinfo/eug-lug - John Sechrest . Helping people use . computers and the Internet .more effectively . . Internet: [EMAIL PROTECTED] . . http://www.peak.org/~sechrest ___ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
