From owner-freebsd-questions@FreeBSD.ORG  Sat Oct 21 23:00:59 2006
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: questions@freebsd.org
Delivered-To: freebsd-questions@FreeBSD.ORG
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 06D3E16A415
	for <questions@freebsd.org>; Sat, 21 Oct 2006 23:00:59 +0000 (UTC)
	(envelope-from mwlucas@bewilderbeast.blackhelicopters.org)
Received: from bewilderbeast.blackhelicopters.org
	(bewilderbeast.blackhelicopters.org [198.22.63.8])
	by mx1.FreeBSD.org (Postfix) with ESMTP id A047343D79
	for <questions@freebsd.org>; Sat, 21 Oct 2006 23:00:53 +0000 (GMT)
	(envelope-from mwlucas@bewilderbeast.blackhelicopters.org)
Received: from bewilderbeast.blackhelicopters.org (localhost [127.0.0.1])
	by bewilderbeast.blackhelicopters.org (8.13.8/8.13.8) with ESMTP id
	k9LN0isP025088
	for <questions@freebsd.org>; Sat, 21 Oct 2006 19:00:44 -0400 (EDT)
	(envelope-from mwlucas@bewilderbeast.blackhelicopters.org)
Received: (from mwlucas@localhost)
	by bewilderbeast.blackhelicopters.org (8.13.8/8.13.7/Submit) id
	k9LN0iun025087
	for questions@freebsd.org; Sat, 21 Oct 2006 19:00:44 -0400 (EDT)
	(envelope-from mwlucas)
Date: Sat, 21 Oct 2006 19:00:44 -0400
From: "Michael W. Lucas" <mwlucas@blackhelicopters.org>
To: questions@freebsd.org
Message-ID: <20061021230043.GA24969@bewilderbeast.blackhelicopters.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.4.2.2i
Cc: 
Subject: pfspamd greylisting stuttering at everything
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 21 Oct 2006 23:00:59 -0000


Hi,

I hear greylisting is wonderful, and yet it's being unkind to me.  Any
help would be appreciated.

According to spamd(8), addresses that are not in the spamd table
should not be stuttered at when spamd(8) is running in greylisting
mode; rather they should just get a 451 and watch for more incoming
connections.

I'm set up just like the man page, but every incoming connection is
being stuttered at.  This plays havoc with incoming legit mail, of
course, and I've been forced to fall back on older antispam tools.

spamd is running as:

spamd -v -G7:4:864 -r451

My pf.conf is just:

---
int="vr0"
my_address="198.22.63.8"

table <spamd> persist
table <spamd-white> persist 
table <whitelist> persist file "/usr/local/etc/spamd/whitelist"

no rdr on {lo0} from any to any

rdr pass inet proto tcp from <whitelist> to $my_address port smtp -> $my_address port smtp
rdr pass inet proto tcp from <spamd> to any port smtp -> 127.0.0.1 port 8025
rdr pass inet proto tcp from !<spamd-white> to any port smtp -> 127.0.0.1 port 8025

pass in on $int proto tcp from any to $int port 22 flags S/SA keep state
---

(OK, the last rule should not be necessary, but I'm being careful.)

My spamd.conf is very textbook:

--
all:\
        :spamhaus:spews1:china:korea:whitelist:

spamhaus:\
        :black:\
        :msg="SPAM. Your address %A is in the Spamhaus Block List\n\
        See http://www.spamhaus.org/sbl and\
        http://www.abuse.net/sbl.phtml?IP=%A for more details":\
        :method=http:\
        :file=www.openbsd.org/spamd/SBL.cidr.gz:

spews1:\
        :black:\
        :msg="SPAM. Your address %A is in the spews level 1 database\n\
        See http://www.spews.org/ask.cgi?x=%A for more details":\
        :method=http:\
        :file=www.openbsd.org/spamd/spews_list_level1.txt.gz:

spews2:\
        :black:\
        :msg="SPAM. Your address %A is in the spews level 2 database\n\
        See http://www.spews.org/ask.cgi?x=%A for more details":\
        :method=http:\
        :file=www.openbsd.org/spamd/spews_list_level2.txt.gz:

china:\
        :black:\
        :msg="SPAM. Your address %A appears to be from China\n\
        See http://www.okean.com/asianspamblocks.html for more details":\
        :method=http:\
        :file=www.openbsd.org/spamd/chinacidr.txt.gz:

korea:\
        :black:\
        :msg="SPAM. Your address %A appears to be from Korea\n\
        See http://www.okean.com/asianspamblocks.html for more details":\
        :method=http:\
        :file=www.openbsd.org/spamd/koreacidr.txt.gz:

whitelist:\
        :white:\
        :file=/usr/local/etc/spamd/whitelist:

relaydb-black:\
        :black:\
        :msg="SPAM. Your address %A is in my relaydb list.":\
        :method=exec:\
        :file=relaydb -4lb:

relaydb-white:\
        :white:\
        :method=exec:\
        :file=relaydb -4lw:
---

I'm missing something obvious, I'm sure... something so obvious that
everyone else has caught it.  Any suggestions?

Thanks,
==ml


-- 
Michael W. Lucas	mwlucas@FreeBSD.org, mwlucas@BlackHelicopters.org
		http://www.BlackHelicopters.org/~mwlucas/
	    Latest book: PGP & GPG -- http://www.pgpandgpg.com
"The cloak of anonymity protects me from the nuisance of caring." -Non Sequitur