The "reject-missing-sender-mx" filter requires a list of the local
domains, given with the "local-domains-file" option. Try adding this
line to your configuration file:
local-domains-file=/var/qmail/control/rcpthosts
-- Sam Clippinger
Iavor Stoev wrote:
> Hello,
>
> First of all I want to thank to Sam for the excellent software that he wrote.
>
> I hava a question regarding the reject-missing-sender-mx option.
> On my setup it doesn't seem to work.
>
> Tech details:
>
> -----------------------------
>
> My OS is Debian Etch Linux.
>
> -----------------------------
>
> My spakdyke config is:
>
> reject-empty-rdns yes
> reject-ip-in-cc-rdns yes
> reject-missing-sender-mx yes
> reject-unresolvable-rdns yes
>
> log-level=debug
>
> ip-whitelist-file=/home/vpopmail/etc/spamdyke_whitelist.txt
>
> dns-blacklist-entry=cbl.abuseat.org
> dns-blacklist-entry=bl.spamcop.net
>
> tls-certificate-file=/var/qmail/control/servercert.pem
> tls-privatekey-file=/var/qmail/control/servercert.pem
>
> dns-timeout-secs=3
>
> -----------------------------
>
> The result from the config test is:
>
> # spamdyke -f /etc/spamdyke.conf --run-as-user vpopmail:vchkpw --config-test
> /var/qmail/bin/qmail-smtpd
>
> Testing configuration...
> SUCCESS: Running tests as user vpopmail(1003), group vchkpw(2004).
> INFO(binary-check): Testing executable: /usr/local/bin/spamdyke
> SUCCESS(binary-check): File is executable: /usr/local/bin/spamdyke
> SUCCESS: spamdyke binary (/usr/local/bin/spamdyke) is not owned by root
> and/or is not marked setuid.
> INFO: Running command to test capabilities: /var/qmail/bin/qmail-smtpd
> DEBUG(exec_command_argv()@exec.c:480): executing command:
> /var/qmail/bin/qmail-smtpd
> SUCCESS: /var/qmail/bin/qmail-smtpd appears to offer TLS support but spamdyke
> will intercept and decrypt the TLS traffic so all of its filters can operate.
> SUCCESS: /var/qmail/bin/qmail-smtpd appears to offer SMTP AUTH support.
> spamdyke will observe any authentication and trust its response.
> INFO(config-file): Testing file read: /etc/spamdyke.conf
> SUCCESS(config-file): Opened for reading: /etc/spamdyke.conf
> INFO(ip-whitelist-file): Testing file read:
> /home/vpopmail/etc/spamdyke_whitelist.txt
> SUCCESS(ip-whitelist-file): Opened for reading:
> /home/vpopmail/etc/spamdyke_whitelist.txt
> INFO(tls-certificate-file): Testing TLS by initializing SSL/TLS library with
> certificate and key
> SUCCESS(tls-certificate-file): Opened for reading:
> /var/qmail/control/servercert.pem
> SUCCESS(tls-certificate-file): Certificate and key loaded; SSL/TLS library
> successfully initialized
> INFO(tls-privatekey-file): Testing TLS private key file for reading:
> /var/qmail/control/servercert.pem
> SUCCESS(tls-privatekey-file): Opened for reading:
> /var/qmail/control/servercert.pem
> SUCCESS: Tests complete. No errors detected.
>
> -----------------------------
>
> The way I'm testing is:
>
> # telnet myserver.com 25
>
> Connected to myserver.com
> Escape character is '^]'.
> 220 myserver.com ESMTP
> mail from: [email protected]
> 250 ok
> rcpt to: [email protected]
> 250 ok
> data
> 354 go ahead
> .
> 250 ok 1234856164 qp 20886
>
> -----------------------------
>
> The spamdyke log:
>
> spamdyke[17905]: DEBUG(filter_rdns_missing()@filter.c:848): checking for
> missing rDNS; rdns: XXX-REVERSE
> spamdyke[17905]: DEBUG(filter_ip_in_rdns_cc()@filter.c:879): checking for IP
> in rDNS +country code; rdns: XXX-REVERSE
> spamdyke[17905]: DEBUG(filter_ip_whitelist()@filter.c:1127): searching IP
> whitelist file(s); ip: XXX
> spamdyke[17905]: DEBUG(filter_rdns_resolve()@filter.c:1318): checking rDNS
> resolution; rdns: XXX-REVERSE
> spamdyke[17905]: DEBUG(filter_dns_rbl()@filter.c:1527): checking DNS RBL(s);
> ip: XXX
>
> spamdyke[17905]: DEBUG(filter_recipient_relay()@filter.c:2183): checking
> relaying; relay-level: 0 recipient: [email protected]
> ip: XXX rdns: XXX-REVERSE local_recipient: true relaying_allowed: false
>
> spamdyke[17905]: DEBUG(filter_recipient_local()@filter.c:2154): checking for
> unqualified recipient; recipient: [email protected]
>
> spamdyke[17905]: ALLOWED from: [email protected] to:
> [email protected] origin_ip: XXX
> origin_rdns: support1.office.suresupport.com auth: (unknown)
>
> -----------------------------
>
> The domain that I've used for the test non-existent-testdomain.com is non
> resolvable.
>
> # host non-existent-testdomain.com
> Host non-existent-testdomain.com not found: 3(NXDOMAIN)
>
> But the message is passing through spamdyke.
> And there is nothing in the spamdyke log mentioning that this check is
> executed.
>
> Could you tell me what is the possible reason for that behavior ?
>
> Thank you
>
> Iavor Stoev - Senior System Administrator
> ICDSoft Ltd. - http://icdsoft.com
>
>
>
> _______________________________________________
> spamdyke-users mailing list
> [email protected]
> http://www.spamdyke.org/mailman/listinfo/spamdyke-users
>
_______________________________________________
spamdyke-users mailing list
[email protected]
http://www.spamdyke.org/mailman/listinfo/spamdyke-users
