Yahoo Groups archive

Milter-greylist

Index last updated: 2026-04-28 23:32 UTC

Message

Re: [milter-greylist] Image SPAM embedded in PDF

2007-07-09 by Nerijus Baliunas

On Mon, 9 Jul 2007 17:46:50 +0300 Nerijus Baliunas <nerijus@...> wrote:

> > > dacl blacklist body /^Content-Type: application.pdf/                    \
> > >         msgsize <= 25000                                                \
> > >         msg "Sorry, we do not accept tiny PDF files"
> 
> But, if I send 2 messages one after another, the first is correctly
> blocked but the second gets through. Any ideas? It could be a
> Postfix bug. Does it happen with sendmail?

Strange thing is that the message which gets through has X-Greylist:
header attached, so it goes via milter-greylist, but I don't see it in logs:

Jul  9 17:51:25 mail postfix/smtpd[23756]: connect from clt-84-32-xx-xx.vdnet.lt[84.32.xx.xx]
Jul  9 17:51:25 mail milter-greylist: (unknown id): addr 84.32.xx.xx from <xxx@...> rcpt <postmaster@...>: autowhitelisted for more 72:00:00
Jul  9 17:51:25 mail postfix/smtpd[23756]: C776317884D: client=clt-84-32-xx-xx.vdnet.lt[84.32.xx.xx]
Jul  9 17:51:25 mail postfix/cleanup[23766]: C776317884D: hold: header Received: from xxx.example.com (clt-84-32-xx-xx.vdnet.lt [84.32.xx.xx])??by mail.example.com (Postfix) with ESMTP id C776317884D??for <postmaster@...>; Mon,  9 Jul 2007 17:51:25 +0300 (EEST) from clt-84-32-xx-xx.vdnet.lt[84.32.xx.xx]; from=<xxx@...> to=<postmaster@...> proto=ESMTP helo=<xxx.example.com>
Jul  9 17:51:25 mail postfix/cleanup[23766]: C776317884D: message-id=<20070709145125.C776317884D@...>
Jul  9 17:51:26 mail milter-greylist: (unknown id): addr clt-84-32-xx-xx.vdnet.lt[84.32.xx.xx] from <xxx@...> blacklisted (ACL 108)
Jul  9 17:51:26 mail postfix/cleanup[23766]: C776317884D: milter-reject: END-OF-MESSAGE from clt-84-32-xx-xx.vdnet.lt[84.32.xx.xx]: 5.7.1 Sorry, we do not accept tiny PDF files; from=<xxx@...> to=<postmaster@...> proto=ESMTP helo=<xxx.example.com>
Jul  9 17:51:26 mail milter-greylist: (unknown id): addr 84.32.xx.xx from <xxx@...> rcpt <postmaster@...>: autowhitelisted for more 72:00:00
Jul  9 17:51:26 mail postfix/smtpd[23756]: 1AD4617884D: client=clt-84-32-xx-xx.vdnet.lt[84.32.xx.xx]
Jul  9 17:51:26 mail postfix/cleanup[23766]: 1AD4617884D: hold: header Received: from xxx.example.com (clt-84-32-xx-xx.vdnet.lt [84.32.xx.xx])??by mail.example.com (Postfix) with ESMTP id 1AD4617884D??for <postmaster@...>; Mon,  9 Jul 2007 17:51:26 +0300 (EEST) from clt-84-32-xx-xx.vdnet.lt[84.32.xx.xx]; from=<xxx@...> to=<postmaster@...> proto=ESMTP helo=<xxx.example.com>
Jul  9 17:51:26 mail postfix/cleanup[23766]: 1AD4617884D: message-id=<20070709145126.1AD4617884D@...>
Jul  9 17:51:26 mail postfix/smtpd[23756]: disconnect from clt-84-32-xx-xx.vdnet.lt[84.32.xx.xx]

Regards,
Nerijus

Attachments

  • No local attachments were found for this message.

Move to quarantaine

This moves the raw source file on disk only. The archive index is not changed automatically, so you still need to run a manual refresh afterward.