Yahoo Groups archive
Messages
Page 22 of 144 · 7199 messages matched
2013-08-05 by Johann Klasek
... Forgot about this: Solaris FAQ mentions it: 4.2) What is /etc/nsswitch.conf? [..] Terminology: Sun worried over the term resolver , which technically
2013-08-05 by Johann Klasek
... res_* does not use the nss_* framework (it s true for the way back). nss_* provides hostname resolution for gethostbyname/addr. ... Not a PTR query? ...
2013-08-05 by Jim Klimov
Interesting off-topic came up today... I wonder if name resolution (via res_nquery()) can fall-back to file-based nsswitch as well, or if it just resolves its
2013-08-05 by Emmanuel Dreyfus
... No, there is not. Contribution is welcome. I wonder if we want a new ACL clause for that, or a global switch. ... I think this may work (not tested) racl
2013-08-05 by Jim Klimov
... Got two cases now :) For a host with a PTR name entry in DNS, this name is resolved and used in domain ACLs. For a host without a PTR entry, the
2013-08-05 by Jim Klimov
... To answer my own question, I did not find any relevant code in the project that would do just that name resolution; but code in mx.c was quite useful to
2013-08-05 by Jim Klimov
Hello all, I am trying to make milter-greylist work with Sun/Oracle Messaging Server (part of Oracle unified Communications Suite now), and there is a problem
2013-07-27 by Jim Klimov
... Pardon me, new is 4.4.3 of course :) The old systems which worked (and still do) with grepping on output use milter-greylist version 4.2.3. So, unless it
2013-07-27 by Jim Klimov
Hello all, I am facing an issue on a host where I tried new milter-greylist (4.3.3 with patches for chown) - my old init-script used on many installations with
2013-07-21 by manu@...
... I checked it in. -- Emmanuel Dreyfus http://hcpnet.free.fr/pubz manu@netbsd.org
2013-07-21 by Jim Klimov
... The original (one I tried): http://xa.yimg.com/kq/groups/12763546/536577721/name/milter-greylist-4.4.3-fix-crash-by-chown-without-group.diff Attached to
2013-07-21 by manu@...
... Not sure if I checked that one in. Could you send it back? -- Emmanuel Dreyfus http://hcpnet.free.fr/pubz manu@netbsd.org
2013-07-20 by Jim Klimov
... Hello, Did you get around to option (a) also? I can confirm that your patch did solve the crash, even if I don t use su to start up the milter process as
2013-07-20 by Jim Klimov
Hmmm... it seems that the two options are not identical (not that it is fatal in the example I see): in the added headers, the original {if_addr} displayed the
2013-07-20 by manu@...
... You test {if_addr} and fall back to {client_addr} every time the information is needed, which seems suboptimal. You could add a config option (which would
2013-07-20 by Jim Klimov
Hello all, Today I ve finally succeeded in integration of milter-greylist with Sun/Oracle Messaging Server (via milter plugin). There were some problems with
2013-07-12 by Rudolf Gabler
Hi all, first thank you for many replies. I summarize here a little but first the background: a) I m using milter-greylist since (at least) more than 10 years
2013-07-12 by manu@...
... You are certain your systel clock did not have been wandering in the future, then reset? -- Emmanuel Dreyfus http://hcpnet.free.fr/pubz manu@netbsd.org
2013-07-11 by Jim Klimov
Is everything okay with your system and/or milter-executing user account clock/timezone? In the database file typically named like
2013-07-11 by Johann Klasek
... Please provide more information on the system and environment you are using. What OS? Version? Package from a distribution (which?) or compiled from
2013-07-11 by Rudolf Gabler
Hello, I m a newby to this group and using 4.4.3 I m getting negative numbers like Jul 11 10:33:50 mailer milter-greylist: created: AUTO 1.2.3.83 from
2013-06-30 by manu@...
... I finally used the fix below, which should nnot hurt anyone Index: milter-greylist.c ===================================================================
2013-06-28 by John Wood
Recently, trying to build milter-greylist(and -devel) on FreeBSD 9.1 with libspf2 has resulted in: In file included from
2013-06-27 by manu@...
No reply. No opinon? ... -- Emmanuel Dreyfus http://hcpnet.free.fr/pubz manu@netbsd.org
2013-06-23 by manu@...
... I tracked it down to this minimal example: racl blacklist rcpt archibald.haddock@example.net msg blacklisted racl whitelist auth /.*/ report
2013-06-21 by Bruncsak, Attila
... I do not see any bug. Everything is working as supposed to be. The order of the syslog entries match the order of the recipients in the SMTP conversation.
2013-06-21 by manu@...
... Hence you see a bug too? -- Emmanuel Dreyfus http://hcpnet.free.fr/pubz manu@netbsd.org
2013-06-21 by Bruncsak, Attila
... I am wrong. Both the two syslog lines are there for the two recipients. Sorry for the overlook.
2013-06-21 by Bruncsak, Attila
... 4.4.3 Actually I made two tests with different order of the recipients in the SMTP conversation. Only one syslog entry has been printed, and it is
2013-06-21 by Emmanuel Dreyfus
... Almost sure. ... What version do you run? -- Emmanuel Dreyfus manu@netbsd.org
2013-06-21 by Bruncsak, Attila
Hi, Are you sure that there is a bug? I have made test with two ACL s one to reject specific recipient other to accept an other different recipient and all
2013-06-21 by manu@...
Hi I just discovered an obvious bug: when you have multiple recipients, if RCPT stage ACL decides the first one shall be accepted, that decision is kept for
2013-05-20 by Jim Klimov
... Hmm... I guess you re right. Still, it can be part of the expiration mechanism - if the server has the blacklist entry removed by the time of TTL
2013-05-20 by manu@...
... Another idea: for each A record stored, I can add a TXT record for the current date. For instance, for today may 20th, I blacklist 192.0.2.1 and 192.0.2.2.
2013-05-20 by manu@...
Here is milter-greylist-4.5.1 http://ftp.espci.fr/pub/milter-greylist/milter-greylist-4.5.1.tgz MD5 (milter-greylist-4.5.1.tgz) =
2013-05-19 by Peter Bonivart
... Don t log the addition until you have actually done the nsupdate op, after that it s BINDs responsibility and it uses journaling for the transactions so it
2013-05-19 by manu@...
... That may be the easiest way. Using the greylisting database requires heavy refactoring, as the stored object is quite different from the current tuple. One
2013-05-19 by Peter Bonivart
... Maybe the addition could be logged and the timestamp could be used by an external script to remove old entries. /peter
2013-05-19 by manu@...
... Yes, you are right. TTL is no expiration mechanism. -- Emmanuel Dreyfus http://hcpnet.free.fr/pubz manu@netbsd.org
2013-05-19 by Peter Bonivart
... But TTL is for the client to decide if it should refresh it s cache or not (use cache or ask server again), it doesn t mean the record will expire on the
2013-05-19 by Jim Klimov
I do use site-specific configurations (likely anyone does somehow) by creating a number of files named like greylist-01-common.conf and so on for manual
2013-05-19 by Jim Klimov
... Well, I used dynamic DNS in our LAN to point a service name to recently-working instances of the service (i.e. proxy points to several SQUID instances if
2013-05-19 by Peter Bonivart
... A simple way would be not to change anything! If we change an included file we touch the greylist.conf-file ourselves to trigger a reload. I think those
2013-05-19 by manu@...
Hi I am working on nsupdate support in milter-greylist, so that an action clause in an ACL can trigger a DNS update, which enables milter-greylist to feed a
2013-05-19 by manu@...
... You need to monitor included file changes to detect configuration changes. Feel free to send a patch to the list. -- Emmanuel Dreyfus
2013-05-18 by elrond421
[Reviving an old discussion...] ... This would also make distribution maintaining easier. Parts of the file maintained by the distributor (socket location for
2013-04-09 by Emmanuel Dreyfus
... I address that by having user-configurable recipient-dependent greylisting delays. They can choose no greylisting, 15mn greylisting, 15mn greylisting + 12h
2013-04-09 by Jim Klimov
... From our practice, I d add that greylisting works to a large extent thanks to coupling with DNS RBLs, including dial-up RBL lists. While the message from
2013-04-09 by Emmanuel Dreyfus
... I do not think so. Working around greylisting means maintaining a queue. Since spammers use botnet, resources are free for them but they are not infinite.
2013-04-09 by Peter Bonivart
... Couldn t you make the exact same argument about greylisting? After all they are very similar and all about if they resend or not. Nolisting to me is just a