rDNS checks in spamd

2019-12-03 Thread Dimitrios Moustos

I notice quite a few hosts without rDNS/FCrDNS getting whitelisted by

I reject hosts with no rDNS using the following in my crontab:

(spamdb|for i in `awk -F'|' '/GREY/{print $2}'`; do if ! host $i >/dev/null; 
then spamdb -dG $i; fi; done)

It works, but it does not feel like it is the best way to do it.

OpenSMTPD rejects the hosts without RCrDNS using a filter anyways, but
it feels better to know that smtpd is not talking directly to these
likely suspicious hosts.

Does it make sense to add a rDNS check option to spamd?
(if not a full FCrDNS check)
If so then I could work on it.

Thanks, Dimitrios

Re: syspatch -c (amd64) ftp: connect: Permission denied

2019-11-14 Thread Dimitrios Moustos
Hello Strahil,

I get this very often when pf does not allow traffic out.
First check that pf allows traffic out.

Hope it helps, Dimitrios

On Wed, Nov 13, 2019 at 10:51:45PM +, Strahil Nikolov wrote:
> Hello Community,
> it seems that syspatch and pkg_add are having an issue with 'ftp: connect: 
> Permission denied'.
> System is 6.5 and access via ftp (based on my automatic syspatch script) has 
> seized on 03 Nov 2019.
> /etc/installurl is pointing to https://cdn.openbsd.org/pub/OpenBSD/ 
> Is syspatch working for you ?
> Thanks in advance.
> Best Regards,
> Strahil Nikolov

filesystem mount sync and async

2012-06-11 Thread Dimitrios Moustos
I have not found any information in the man page or otherwise that conflicts 
with the bellow, it just does not seem like the following should be possible:

# grep home /etc/fstab
424dc014a22db950.f /home ffs ro,nodev,nosuid,noatime
# mount|grep home
/dev/sd0f on /home type ffs (local, noatime, nodev, nosuid, read-only)
# mount -uwo async /home
# mount|grep home
/dev/sd0f on /home type ffs (asynchronous, local, noatime, nodev, nosuid)
# mount -uro sync /home
# mount|grep /home
/dev/sd0f on /home type ffs (asynchronous, local, noatime, nodev, nosuid, 
read-only, synchronous)

I am however not familiar with the intricacies of filesystems, which probably 
makes me wrong.
At least posting this will make my curiosity go away.