[jira] Updated: (JAMES-566) Fastfail DNSRBL blacklisted messages are rejected even if the sender user is successfully SMTP AUTHenticated

[Stefano Bagnara (JIRA)]

     [ http://issues.apache.org/jira/browse/JAMES-566?page=all ]

Stefano Bagnara updated JAMES-566:
----------------------------------

        Fix Version/s:     (was: 3.0)
    Affects Version/s:     (was: 3.0)
                           (was: 2.3.0a1)
                           (was: 2.2.0)
                           (was: 2.3.0a2)
                           (was: 2.3.0)
                           (was: 2.3.0a3)
                           (was: 2.3.0b1)
                           (was: 2.3.0b2)

> Fastfail DNSRBL blacklisted messages are rejected even if the sender user is 
> successfully SMTP AUTHenticated
> ------------------------------------------------------------------------------------------------------------
>
>                 Key: JAMES-566
>                 URL: http://issues.apache.org/jira/browse/JAMES-566
>             Project: James
>          Issue Type: Bug
>          Components: SMTPServer
>    Affects Versions: 2.3.0b3
>            Reporter: Vincenzo Gianferrari Pini
>         Assigned To: Vincenzo Gianferrari Pini
>             Fix For: 2.3.0rc1
>
>
> A fastfail DNSBRL blacklisted message is rejected even if the sender user is 
> successfully SMTP AUTHenticated.
> Instead in such case the message should be accepted.
> This bug is particularly critical in the scenario in which a blacklist that 
> lists dynamic IP ranges (like "dul.dnsbl.sorbs.net") is being used, and a 
> legitimate and SMTP AUTHenticated mail client roaming user connects from a 
> dynamic IP and tries to send a mail to the James server. He will be rejected 
> in such case.
> BTW, just FYI, statistics on my production server show that using fastfail 
> DNSBRL blacklists and the Bayesian mailet, about 20% of the spam gets 
> rejected by the "dul.dnsbl.sorbs.net" list, 65% by the other James stock 
> configuration lists, and almost all of the remaining 15% is detected (and 
> flagged for inspection) by the Bayesian mailet. Without the 
> "dul.dnsbl.sorbs.net" about 34% is detected and flagged by the Bayesian 
> mailet but has to be manually inspected to avoid false positives, and 1% is 
> undetected. So the dynamic IP criteria is very effective but, to be used, 
> this bug has to be fixed.

-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: 
http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira

        

---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]