Date: Tue, 16 Jan 2018 19:20:59 +0100 From: freebsd-ports@bengrimm.net To: freebsd-ports@freebsd.org Subject: sendmail from ports + blacklistd - no further luck? Message-ID: <b10340a7-fafb-d529-023a-d8ecabb84b37@BenGrimm.net>
next in thread | raw e-mail | index | archive | help
This is a multi-part message in MIME format. --------------2F46733DDC60573E6461A35D Content-Type: text/plain; charset=windows-1252 Content-Transfer-Encoding: 7bit Can someone confirm (or disprove) that the current version of Sendmail from ports (8.15.2_5), explicitly compiled with the blacklistd flag, has stopped feeding offending IPs (e.g. those failing do_auth) to blacklistd since Jan 3? I ran blacklistd -d to check, but the poll() revealed nothing while do_auth failures were coming in. The poll() did pick up sshd and ftpd activity, but all quiet on the Sendmail front, since Jan 3. I ran strings on the binary, and the expected output was there: libblacklist.so.0 blacklist_r blacklist_open So it appears to be something working not quite right, or maybe a combination of compile options. Before I file a bug report, I just want to check for confirmation or lack thereof. Using compile options: OPTIONS_FILE_SET+=SHMEM OPTIONS_FILE_SET+=SEM OPTIONS_FILE_SET+=LA OPTIONS_FILE_SET+=NIS OPTIONS_FILE_SET+=IPV6 OPTIONS_FILE_SET+=TLS OPTIONS_FILE_SET+=SASL OPTIONS_FILE_SET+=SASLAUTHD OPTIONS_FILE_UNSET+=LDAP OPTIONS_FILE_UNSET+=BDB OPTIONS_FILE_UNSET+=GDBM OPTIONS_FILE_UNSET+=SOCKETMAP OPTIONS_FILE_UNSET+=CYRUSLOOKUP OPTIONS_FILE_SET+=BLACKLISTD OPTIONS_FILE_UNSET+=SMTPUTF8 OPTIONS_FILE_SET+=PICKY_HELO_CHECK OPTIONS_FILE_SET+=MILTER OPTIONS_FILE_SET+=DOCS Relevant part of blacklistd.conf: [local] smtp stream * * * 3 30d smtps stream * * * 3 30d submission stream * * * 3 30d Output of `blacklistctl dump -nb` shows nothing after 2018/01/03 (on seven different installations). Poudriere build info available at https://pastebin.com/wBCdXunK --------------2F46733DDC60573E6461A35D Content-Type: message/rfc822; name="ForwardedMessage.eml" Content-Transfer-Encoding: 7bit Content-Disposition: attachment; filename="ForwardedMessage.eml" Return-Path: <owner-freebsd-ports@freebsd.org> Delivered-To: freebsd-ports@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 222F9E7F1D7 for <freebsd-ports@mailman.ysv.freebsd.org>; Tue, 16 Jan 2018 18:14:28 +0000 (UTC) (envelope-from DutchDaemon@FreeBSD.org) Received: from offshore.bengrimm.net (offshore.bengrimm.net [84.22.108.242]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "offshore.bengrimm.net", Issuer "offshore.bengrimm.net" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id BB3A9267C for <freebsd-ports@freebsd.org>; Tue, 16 Jan 2018 18:14:27 +0000 (UTC) (envelope-from DutchDaemon@FreeBSD.org) X-H2O-MailScanner-Watermark: 1516731257.31602@Gol6Ol3ONUQ4PdYXp3qWZA X-Offshore-MailScanner-From: dutchdaemon@freebsd.org X-Offshore-MailScanner-SpamCheck: not spam (whitelisted), SpamAssassin (not cached, score=-1, required 4, autolearn=not spam, ALL_TRUSTED -1.00) X-Offshore-MailScanner: Not scanned: please contact your Internet E-Mail Service Provider for details X-Offshore-MailScanner-ID: w0GIEDbk040129 Received: from [10.190.10.116] (D57C4972.static.ziggozakelijk.nl [213.124.73.114]) (authenticated bits=0) by offshore.bengrimm.net (8.15.2/8.15.2) with ESMTPSA id w0GIEDbk040129 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO) for <freebsd-ports@freebsd.org>; Tue, 16 Jan 2018 19:14:13 +0100 (CET) (envelope-from DutchDaemon@FreeBSD.org) DKIM-Filter: OpenDKIM Filter v2.10.3 offshore.bengrimm.net w0GIEDbk040129 X-Authentication-Warning: offshore.bengrimm.net: Host D57C4972.static.ziggozakelijk.nl [213.124.73.114] claimed to be [10.190.10.116] To: freebsd-ports@freebsd.org From: DutchDaemon - FreeBSD Forums Administrator <DutchDaemon@FreeBSD.org> Subject: sendmail from ports + blacklistd - no further luck? Openpgp: id=C27BDD1970DCB5D32B1535D1E8A1A5DD3CB929C4; url=http://pgp.mit.edu/pks/lookup?op=get&search=0xE8A1A5DD3CB929C4 Organization: The FreeBSD Forums Message-ID: <fed71a10-5555-64b9-5175-636a5f8d9b3c@FreeBSD.org> Date: Tue, 16 Jan 2018 19:14:05 +0100 User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Thunderbird/52.5.2 MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha256; protocol="application/pgp-signature"; boundary="hLBqbUQwua1R0I7XFcQY3r7HaVPILaF1J" This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --hLBqbUQwua1R0I7XFcQY3r7HaVPILaF1J Content-Type: multipart/mixed; boundary="tJHG12vHBMDZlwu2GRjtsqGCrsmUrR31c"; protected-headers="v1" From: DutchDaemon - FreeBSD Forums Administrator <DutchDaemon@FreeBSD.org> To: freebsd-ports@freebsd.org Message-ID: <fed71a10-5555-64b9-5175-636a5f8d9b3c@FreeBSD.org> Subject: sendmail from ports + blacklistd - no further luck? --tJHG12vHBMDZlwu2GRjtsqGCrsmUrR31c Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Content-Language: en-US Can someone confirm (or disprove) that the current version of Sendmail from ports (8.15.2_5), explicitly compiled with the blacklistd flag, has stopped feeding offending IPs (e.g. those failing do_auth) to blacklistd since Jan 3? I ran blacklistd -d to check, but the poll() revealed nothing while do_auth failures were coming in. The poll() did pick up sshd and ftpd activity, but all quiet on the Sendmail front, since Jan 3. I ran strings on the binary, and the expected output was there: libblacklist.so.0 blacklist_r blacklist_open So it appears to be something working not quite right, or maybe a combination of compile options. Before I file a bug report, I just want to check for confirmation or lack thereof. Using: OPTIONS_FILE_SET+=3DSHMEM OPTIONS_FILE_SET+=3DSEM OPTIONS_FILE_SET+=3DLA OPTIONS_FILE_SET+=3DNIS OPTIONS_FILE_SET+=3DIPV6 OPTIONS_FILE_SET+=3DTLS OPTIONS_FILE_SET+=3DSASL OPTIONS_FILE_SET+=3DSASLAUTHD OPTIONS_FILE_UNSET+=3DLDAP OPTIONS_FILE_UNSET+=3DBDB OPTIONS_FILE_UNSET+=3DGDBM OPTIONS_FILE_UNSET+=3DSOCKETMAP OPTIONS_FILE_UNSET+=3DCYRUSLOOKUP OPTIONS_FILE_SET+=3DBLACKLISTD OPTIONS_FILE_UNSET+=3DSMTPUTF8 OPTIONS_FILE_SET+=3DPICKY_HELO_CHECK OPTIONS_FILE_SET+=3DMILTER OPTIONS_FILE_SET+=3DDOCS Poudriere build info available at https://pastebin.com/wBCdXunK --tJHG12vHBMDZlwu2GRjtsqGCrsmUrR31c-- --hLBqbUQwua1R0I7XFcQY3r7HaVPILaF1J Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQIcBAEBCAAGBQJaXkDyAAoJEOihpd08uSnEg5wQAMGvBqGz/h4gSTnA5LC135dn 6HcLF3gcJKwdgtnv9IP2O3lfiwrFaGgg4k3xhkY0fBgRUrMbtN38q34ibCEYMc4z iqCmZ5YxBvMjY93PHWernPr85y2ubX4J6ManiXZVaPgFslOh2CiCKmxYelb7BZWx OUiLBV3cNKRsGu6mCCatIkNNn/93ZRcwsPwURmoPFAgn+zwzRFT9E35jKdblubwm yAvYx0ocqufks5EIjOJnaFb5gQU5iV0w/utFhbg9MS3mKdyfqwImLuN/csGZ2Nad MmbRSgt7rkw78MpHL9wg12Bw3Tgr7Al06H9OkZLmcSkQDJy34BZToayjEN1aBob5 vTecH3blsgslThOrZNsA/75QGl+wokvK1m5mNNQTlh584qB7iKRUWjv2HX6ZxGC+ ifuMzYkdDlmJxLykUnJL3CxrlrWdTsTV+7ql42JVgwNxp2qWm9jpILlWoHyvyGFS I5plo5cksPwvVOEvJXKTmzLLwKjkmS3d4/M/N8LcLuQH7CDaVBrr6vuFscsIF2vX MnyC8pP43ggrBaQfPKmMdhw1VdCmrtoN7GOsV/gF3fYdLIyU5R1DHsS6nNhAq5Px da9vq7GLP0sMLFklCuE/6QJ8ALppBkwrCi4s1XgA/2c37X9pJdSYL7T5QX8xGQ/y zukGG7Q1qKnHF8MkVNvC =Qb6s -----END PGP SIGNATURE----- --hLBqbUQwua1R0I7XFcQY3r7HaVPILaF1J-- --------------2F46733DDC60573E6461A35D--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?b10340a7-fafb-d529-023a-d8ecabb84b37>