From owner-freebsd-questions@FreeBSD.ORG Fri Apr 16 09:11:37 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 2DE9916A4CE for ; Fri, 16 Apr 2004 09:11:37 -0700 (PDT) Received: from mtaw4.prodigy.net (mtaw4.prodigy.net [64.164.98.52]) by mx1.FreeBSD.org (Postfix) with ESMTP id ADEDC43D58 for ; Fri, 16 Apr 2004 09:11:36 -0700 (PDT) (envelope-from antennex@swbell.net) Received: from SAGEAME (adsl-65-68-247-73.dsl.crchtx.swbell.net [65.68.247.73]) by mtaw4.prodigy.net (8.12.10/8.12.10) with SMTP id i3GGBR5k017110; Fri, 16 Apr 2004 09:11:27 -0700 (PDT) Message-ID: <003d01c423cd$79251e00$0200000a@SAGEAME> From: "antenneX" To: "Dan Nelson" References: <200404151631.i3FGVGOf005743@dc.cis.okstate.edu> <20040415172633.GI28745@dan.emsphone.com> <001201c42360$d6fa58a0$0200000a@SAGEAME> <20040416040139.GM28745@dan.emsphone.com> Date: Fri, 16 Apr 2004 11:11:22 -0500 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2800.1409 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1409 cc: freebsd-questions@freebsd.org Subject: Re: Setting Sendmail to Refuse Possibly Forged Headers X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 16 Apr 2004 16:11:37 -0000 ----- Original Message ----- From: "Dan Nelson" To: "antenneX" Cc: Sent: Thursday, April 15, 2004 11:01 PM Subject: Re: Setting Sendmail to Refuse Possibly Forged Headers > In the last episode (Apr 15), antenneX said: > > > SLocal_check_mail > > > R$* $: $1 $| $&s Put helo name in workspace > > > R$* $| $={RejectHelo} $#error $@ 5.7.1 $: "550 Spammer access denied" > > > R$* $| $* $: $1 Extract helo from workspace if it doesn't match > > > #-/\- > > > > Dan: Your suggestions here were appealing, but I'm batting zero. > > > > 1- Will milter-sender work alongside spamass-milter...?? > > I *think* it was working on a test box, but failed on production box. > > They should coexist peacefully. In general, milters should be unaware > of each other. I'd put milter-sender in front of spamass-milter, since > spamassassin can be CPU-hungry and there's no need to mark a message as > spam if milter-sender is just going to deny it anyway. > > > 2- Each of your 3 lines above for "local_check_mail" yelled about > > expecting a Tab when sendmail was restarted... not sure how to fix > > that..... > > My outgoing message had tabs; if your mailer removes them or replaces > them with spaces, here's where they go: > > R$*$: $1 $| $&sPut helo name in workspace > R$* $| $={RejectHelo}$#error $@ 5.7.1 $: "550 Spammer access denied" > R$* $| $*$: $1Extract helo from workspace if it doesn't match > > -- > Dan Nelson > dnelson@allantgroup.com Dan: Thanks for clearing that up. If I may ask one more thing about the milter-sender: The only feature I really wanted from the milter was the option to control the number of connections for "unknown users". I get a lot of those -- dozens -- hundreds. I believe that is called the "Rumplestilkin" (sp?) attack where a search is conducted for good emails on a system. I have not yet seen this option available inside Sendmail and wonder if there is one out there yet...?? -- without having to install the milter?