Milter-greylist

On Mon, Aug 05, 2013 at 03:14:21AM +0200, Jim Klimov wrote:
>    Since milter-greylist does use DNS a lot anyway (RBL, SPF, etc.)
> I wonder if it is possible to add a re-request into DNS for such
> botched remote client names? Perhaps there is already a keyword to
> enable such behavior?

No, there is not. Contribution is welcome.
I wonder if we want a new ACL clause for that, or a global switch.

>    Also, are there any configuration patterns to enable DNS-based
> tests that the remote host's HELO/EHLO name matches the textual
> name in the DNS PTR entry for its IP address, and that this name
> from DNS PTR resolves back to this IP address (or includes it
> among multiple values) - i.e. what I believe Sendmail does when
> estimating address "forgery"?

I think this may work (not tested)
racl blacklist not helo "%d" msg "HELO does not match reverse DNS"

-- 
Emmanuel Dreyfus
manu@...