[vchkpw] Why not disconnect after rejection/limit ?
Hi, I'm trying to fine tune my mail system, and looking at how qmail-smtpd/vchkpw handle rejected mail i started thinking; why qmail-smtp doesn't disconnect after the intrusion threshold? it keeps rejecting messages (from the spammer normally) and eating cpu and band whit. Perhaps there is a good reason to don't disconnect but i think it could be a nice feature too. any opinion about this? Ion
Re: [vchkpw] chkuser + smtp auth, disable CHKUSER_RCPTLIMIT when correct smt auth. how??
Hi back, I tested the code and works as spected no problems for the moment. thank you very much! pd: i have also added simscan to my conf and whit a little bit of effort they work well together also whit the CHKUSER_DISABLE_VARIABLE modification On 2/11/06, tonix (Antonio Nati) [EMAIL PROTECTED] wrote: At 12.06 11/02/2006, you wrote: I'll publish this feature in next chkuser version (and rewrite the code in order to make it more easy and powerful - i.e. to make CHKUSER_EXCLUDE_VARIABLE indipendent from other variables). And mainly I'll take care to call it CHKUSER_DISABLE_VARIABLE anywhere !! Tonino
Re: [vchkpw] chkuser + smtp auth, disable CHKUSER_RCPTLIMIT when correct smt auth. how??
Thank you for the solution!! i was out these days and not reading mail but today i will try the code and lest see how it works... On 2/11/06, tonix (Antonio Nati) [EMAIL PROTECTED] wrote: At 12.06 11/02/2006, you wrote: I'll publish this feature in next chkuser version (and rewrite the code in order to make it more easy and powerful - i.e. to make CHKUSER_EXCLUDE_VARIABLE indipendent from other variables). And mainly I'll take care to call it CHKUSER_DISABLE_VARIABLE anywhere !! Tonino
Re: [vchkpw] chkuser + smtp auth, disable CHKUSER_RCPTLIMIT when correct smt auth. how??
On 2/7/06, Tonix [EMAIL PROTECTED] wrote: On Monday 06 February 2006 11:57, tonix (Antonio Nati) wrote: At 20.31 06/02/2006, you wrote: Thanks for your answer Tonino, i take that solution in account but i would prefer another solution if possible, that smtp server is being already used by lots of clients so running another server for them would imply that they have to change their mail server (its a little change, i know, but they are lots and the average user would need assistance for doing that simple change) so i would try to another solution first if someone has another idea.. or i get illuminated in between hehe Simplest solution is to put another VARIABLE disabling this check. Let me see how add something like what you ask. I'm just wondering if other checks could be excluded for authenticathed users. I would say the simplest solution would be to skip these checks when RELAYCLIENT is set. That way it works without modification with existing SMTP AUTH patches, as well as manually setting RELAYCLIENT in your tcprules file. or perhaps make the variable checked configurable, and default it to RELAYCLIENT. I agree. I'll study how to simplify this check, trying to keep it as simple as possible. In this moment, my main problem is the choice between: - a VARIABLE excluding chkuser when SET (it may default to RELAYCLIENT) - a VARIABLE excluding intrusion checks (as before it may default to RELAYCLIENT). At first look, I feel excluding chkuser may be more useful, as in an authenticated relaying system chkuser may be excluded. I agree whit that, since for authenticated clients its better a bounced message than a short smpt error that lots of email clients dont even show up. chkuser could be diseabled for them. Tonino -Jeremy -- Jeremy Kitchen ++ [EMAIL PROTECTED] In the beginning was The Word and The Word was Content-type: text/plain -- The Word of Bob. -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- La tua posta elettronica senza virus su UfficioPostale.IT Your virus free electronic mail on UfficioPostale.IT
Re: [vchkpw] chkuser + smtp auth, disable CHKUSER_RCPTLIMIT when correct smt auth. how??
mmm but is not harder to mantain a server whit 2 smtp server runing together? i think i would prefer the other method anyway. And by the way, it could be a nice feature to add to chkuser? somthing like CHKUSER_NOCHECKS_VARIABLE RELAYCLIENT On 2/6/06, tonix (Antonio Nati) [EMAIL PROTECTED] wrote: At 20.57 06/02/2006, you wrote: Ibiltari wrote: Thanks for your answer Tonino, i take that solution in account but i would prefer another solution if possible, that smtp server is being already used by lots of clients so running another server for them would imply that they have to change their mail server (its a little change, i know, but they are lots and the average user would need assistance for doing that simple change) so i would try to another solution first if someone has another idea.. or i get illuminated in between hehe Change the MX record to a new ip and add an alias IP on the server. Current users still use mail.example.com but all outside mail comes in on mx.example.com. Much better than changing chkuser code :-) !!! Tonino Regards, Rick
