From owner-freebsd-stable Thu Dec 7 16:39:56 2000 From owner-freebsd-stable@FreeBSD.ORG Thu Dec 7 16:39:51 2000 Return-Path: Delivered-To: freebsd-stable@freebsd.org Received: from mail.westbend.net (ns1.westbend.net [209.224.254.131]) by hub.freebsd.org (Postfix) with ESMTP id EE6AF37B400 for ; Thu, 7 Dec 2000 16:39:50 -0800 (PST) Received: from admin.westbend.net (admin.westbend.net [209.224.254.141]) (authenticated) by mail.westbend.net (8.11.1/8.11.1) with ESMTP id eB80ddW47081; Thu, 7 Dec 2000 18:39:39 -0600 (CST) (envelope-from hetzels@westbend.net) Message-ID: <002d01c060af$544c3e40$8dfee0d1@westbend.net> From: "Scot W. Hetzel" To: "Dave Tweten" Cc: "Lauri Laupmaa" , References: <200012072111.eB7LBVb34297@gilmore.nas.nasa.gov> Subject: Re: sendmail, rbl & orbs Date: Thu, 7 Dec 2000 18:39:24 -0600 Organization: West Bend Interent MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="----=_NextPart_000_002A_01C0607D.05A2AEA0" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4133.2400 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG This is a multi-part message in MIME format. ------=_NextPart_000_002A_01C0607D.05A2AEA0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit From: "Dave Tweten" > hetzels@westbend.net said: > >NOTE: orbsbl2 - Hack to limit the scope of rejected open-relays from > >the ORBS and RBL relays lists. > > Okay. So where would one go to get this hack, since it doesn't seem to appear > in /usr/src/contrib/sendmail/cf/hack as a result of a STABLE cvsup of src-all. I created this hack, so you would need to obtain the file from me. Attached is the orbsbl2.m4 file. To use orbsbl2.m4: 1. Save the file to /usr/src/contrib/sendmail/cf/hack and/or /usr/share/sendmail/cf/hack 2. add orbsbl2 to your sendmail.mc file, before the DNS BlackList you wish to restrict. HACK(orbsbl2) or HACK(orbsbl2, `/etc/mail/openrelay') NOTE: By default it uses /etc/mail/open-relays for a list of IP addresses to look up in the dnsbl lists. 3. add IP addresses to check in the /etc/mail/open-relays. The list can contain the IP address of a open relay, or the first 3 numbers to check the entire class C for open relays. 62.157.114.202 62.160.146 Scot ------=_NextPart_000_002A_01C0607D.05A2AEA0 Content-Type: application/octet-stream; name="orbsbl2.m4" Content-Transfer-Encoding: quoted-printable Content-Disposition: attachment; filename="orbsbl2.m4" divert(-1)=0A= #=0A= # Copyright (c) 1998, 1999 Sendmail, Inc. and its suppliers.=0A= # All rights reserved.=0A= #=0A= # By using this file, you agree to the terms and conditions set=0A= # forth in the LICENSE file which can be found at the top level of=0A= # the sendmail distribution.=0A= #=0A= #=0A= =0A= divert(0)=0A= ifdef(`_DNSBL_R_',`dnl',`dnl=0A= VERSIONID(`$Id: orbsbl.m4,v 8.18 1999/08/03 04:30:56 swh Exp $')')=0A= divert(-1)=0A= define(`_DNSBL_OPENRELAY_', = `ifelse(len(X`'_ARG_),`1',MAIL_SETTINGS_DIR`open-relays',_ARG_)')dnl=0A= divert(8)=0A= # Selective IP Address Check=0A= R$* $: $&{client_addr}=0A= R$+ $: <@> $1 mark it=0A= R<@> $=3D{openrelays} $: $1 match? remove mark=0A= R<@> $-.$-.$-.$- $: <@> $1.$2.$3 check netblock=0A= R<@> $=3D{openrelays} $: $1 match netblock? remove mark=0A= R<@> $+ $@ OK otherwise: ok=0A= divert(-1)=0A= =0A= LOCAL_CONFIG=0A= # List of Open Relays by IP address or netblock=0A= F{openrelays} _DNSBL_OPENRELAY_=0A= =0A= ------=_NextPart_000_002A_01C0607D.05A2AEA0-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message