From owner-freebsd-security@FreeBSD.ORG Sun May 16 02:31:51 2004 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C58E116A4CE for ; Sun, 16 May 2004 02:31:51 -0700 (PDT) Received: from terpsi.otenet.gr (terpsi.otenet.gr [195.170.0.9]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9D45E43D3F for ; Sun, 16 May 2004 02:31:48 -0700 (PDT) (envelope-from keramida@ceid.upatras.gr) Received: from gothmog.gr (patr530-b145.otenet.gr [212.205.244.153]) by terpsi.otenet.gr (8.12.10/8.12.10) with ESMTP id i4G9VIti009440; Sun, 16 May 2004 12:31:35 +0300 (EEST) Received: from gothmog.gr (gothmog [127.0.0.1]) by gothmog.gr (8.12.11/8.12.11) with ESMTP id i4G9VEHX055892; Sun, 16 May 2004 12:31:14 +0300 (EEST) (envelope-from keramida@ceid.upatras.gr) Received: (from giorgos@localhost) by gothmog.gr (8.12.11/8.12.11/Submit) id i4G9UxPU055887; Sun, 16 May 2004 12:30:59 +0300 (EEST) (envelope-from keramida@ceid.upatras.gr) Date: Sun, 16 May 2004 12:30:59 +0300 From: Giorgos Keramidas To: Anton Alin-Adrian Message-ID: <20040516093059.GA55860@gothmog.gr> References: <40A69DDD.30603@reversedhell.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <40A69DDD.30603@reversedhell.net> cc: freebsd-security@freebsd.org Subject: Re: How do fix a good solution against spam.. X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Security issues [members-only posting] List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 16 May 2004 09:31:51 -0000 On 2004-05-16 01:46, Anton Alin-Adrian wrote: > M.Jessa> Not only it's way faster than perl based messagewall, amavisd and > M.Jessa> mailscanner etc but it also has neat stuff like making connections > M.Jessa> back to the sender's MX checking for validity of the sender's > M.Jessa> email. > > So far I can only release this code. It implements exactly what was > mentioned about exim. I use it with qmail because qmail I have, but > can be used with postfix/sendmail with ease. So now not only exim can > do that hack. Similar functionality to the one described above can be added to Sendmail with a milter. Anyway, you surely can't be using the program you sent. It doesn't even build here: giorgos@gothmog[11:31]/tmp/mxcheck$ cc -O2 -ggdb check.c check.c: In function `filtervalidmail': check.c:443: error: syntax error at end of input giorgos@gothmog[11:31]/tmp/mxcheck$ _ > PS - this is how i use it: > .qmail-file: > > | /usr/local/bin/check /usr/local/bin/safecat /path/to/Maildir/tmp > /path/to/Maildir/new > > #the above after | is on a single line. Putting aside the facts that the source is entirely undocumented, that it doesn't even build, that it has a million style bugs, that the comments aren't really helpful in understanding how it works, and that it's entirely undocumented... - What does each one of these parameters exactly do? - What is safecat and why is it run with a full pathname? - Why are you using an internal Maildir/ path like 'tmp'? - Does this work in a .forward file too? I know, I know that RTFS for such a small program documentation is most of the time unnecessary for the experienced hacker, but IMHO this is something that simple FreeBSD users might want to install too. Without any sort of documentation or other hint about the way it works, you don't really expect anyone to run this or do you? :-/ - Giorgos