IPv6 DNSRBL
2016-09-27 by Frank Doepper
Hi, dnsrbl.c says /* No IPv6 DNSRBL exists right now */ . But there is at least dnswl.org, which works with IPv6, like
Messages
Browse messages
Page 7 of 144 · 7199 messages matched
Re: [milter-greylist] Re: Odd behaviour in simultaneous ratelimits
2016-09-20 by maren.zubizarreta@...
Yes, you are right, it has beeen a transcription mistake: ratelimit limite_1H rcpt 20 / 1h key %M{auth_authen} ratelimit limite_1D rcpt 480 / 1d key
Re: [milter-greylist] Re: Odd behaviour in simultaneous ratelimits
2016-09-20 by manu@...
maren.zubizarreta@ehu.es [milter-greylist] ... Shouldn t the second line use rcpt 480 / 1d ? Then the order of the racl is important: you hourly limit will
Re: Odd behaviour in simultaneous ratelimits
2016-09-19 by maren.zubizarreta@...
Again: We have found impossible to implement these two blacklists (hourly and daily) based on the same ratelimits when the match is the same, the only
Re: [milter-greylist] RCPT information in X-Greylist: inspected by header is empty
2016-09-17 by manu@...
Marcus Schopen lists-yahoogroups@localguru.de [milter-greylist] ... Sure, but this is a general problem: at DATA-stage, there is no such concept as the unique
Re: [milter-greylist] RCPT information in X-Greylist: inspected by header is empty
2016-09-17 by Marcus Schopen
Hi, ... Hmmm, in the tests I just had one single rcpt. ... Good question, might be helpful ... Ciao Marcus
Re: [milter-greylist] RCPT information in X-Greylist: inspected by header is empty
2016-09-17 by manu@...
Marcus Schopen lists-yahoogroups@localguru.de [milter-greylist] ... I looked at the sources. The header addition happens at the DATA stage, when there is no
Re: [milter-greylist] Re: Auth or noauth
2016-09-17 by manu@...
maren.zubizarreta@ehu.es [milter-greylist] ... The default keyword is intended to be a catch-all. Hence it cannot be used with a condition. Use this instead:
Re: [milter-greylist] Ratelimit per authenticated user
2016-09-15 by Frank Doepper
... I have built this with mimedefang and a SQLite-DB. I have running both mimedefang and milter-greylist on the server. And fail2ban (for unsuccessful
Re: Odd behaviour in simultaneous ratelimits
2016-09-14 by maren.zubizarreta@...
After testing it a bit more, I see that the beahviour is like if the hits to the daily ratelimit counted as well for the hourly ratelimit, once the
Re: [milter-greylist] Ratelimit per authenticated user
2016-09-14 by Marcus Schopen
Hi Maren, ... Have you thought about fail2ban, not just classic firewall rules, but closing smtp accounts if successful smtp logins come from different IPs in
Odd behaviour in simultaneous ratelimits
2016-09-14 by maren.zubizarreta@...
Hello Again: After the success with my authenticated user ratelimit, I was trying to stablish two diferent reatelimit, one per hour and another one per day,
Re: [milter-greylist] RCPT information in X-Greylist: inspected by header is empty
2016-09-14 by Marcus Schopen
Hi Emmanuel, ... Thanks for your feedback. Yes, I think I do have set {rcpt_addr}: ... sendmail.cf:O Milter.macros.connect=j, _, {daemon_name}, {if_name},
Re: testing rawfrom patch [was: Re: [milter-greylist] block SRS senders]
2016-09-14 by Marcus Schopen
Hi Emmanuel, On 2016-09-14 06:01, manu@netbsd.org [milter-greylist] wrote: [...] ... Thanks :) I built a new package: ... list FROM-TEST rawfrom {
Re: Auth or noauth
2016-09-14 by maren.zubizarreta@...
No: I tried: racl greylist not auth /./ default but that doesn t work (milter-greylist won t run), config error at line 285: syntax error Even so, my
Re: testing rawfrom patch [was: Re: [milter-greylist] block SRS senders]
2016-09-14 by manu@...
... Please try: https://ftp.espci.fr/shadow/manu/rawfrom2.patch -- Emmanuel Dreyfus http://hcpnet.free.fr/pubz manu@netbsd.org
Re: [milter-greylist] greylisting ACL without autowhite, messages newer pass greylisting
2016-09-14 by manu@...
Marcus Schopen lists-yahoogroups@localguru.de [milter-greylist] ... I wonder what is the autowhite delay. Any -a argument, or autowhite global setting in
Re: [milter-greylist] autowhitelist recipients from outgoing smtp relay on incoming relay
2016-09-14 by manu@...
Marcus Schopen lists-yahoogroups@localguru.de [milter-greylist] ... Looking at the sources, it seems we have an undocumented mx clause that matches if sender
Re: [milter-greylist] Ratelimit per authenticated user
2016-09-14 by manu@...
maren.zubizarreta@ehu.es [milter-greylist] ... Default behavior is there for backward compatibility. It whitelists authenticated users. If you use noauth,
Re: [milter-greylist] Re: Auth or noauth
2016-09-14 by manu@...
maren.zubizarreta@ehu.es [milter-greylist] ... /.*/ matches an empty value, that may be your problem. What about /./ ? -- Emmanuel Dreyfus
Re: [milter-greylist] Ratelimit per authenticated user
2016-09-14 by manu@...
maren.zubizarreta@ehu.es [milter-greylist] ... I understand it would. -- Emmanuel Dreyfus http://hcpnet.free.fr/pubz manu@netbsd.org
Re: [milter-greylist] RCPT information in X-Greylist: inspected by header is empty
2016-09-14 by manu@...
Marcus Schopen lists-yahoogroups@localguru.de [milter-greylist] ... Do you have {rcpt_addr} in sendmail.cf O Milter.macros.envrcpt? -- Emmanuel Dreyfus
Re: [milter-greylist] dacl rules never match
2016-09-14 by manu@...
Shane Williams shanew@cs.utexas.edu [milter-greylist] ... That is correct: if the RCPT_stage ACL result is greylist, then the SMTP transaction ends at RCPT and
Re: [milter-greylist] Add 2 headers to message
2016-09-14 by manu@...
Alvaro Marín alvaro@hostalia.com [milter-greylist] ... Yes, there is a limitation. Currently we store the headers to add in a single-valued field. That
Re: [milter-greylist] problem building with p0f support, p0f or better using dialin RBL?
2016-09-13 by Jim Klimov
... In VMs we had a problem that it detected the hypervisor s OS as the local one (e.g. thinking it was windows while it was a solaris in virtualbox), but I
Re: [milter-greylist] problem building with p0f support, p0f or better using dialin RBL?
2016-09-13 by Jim Klimov
... I don t think it is a big issue: p0f relies on libpcap to get packet (OS) details and IIRC does little if anything with packet payloads. But I may be wrong
Re: [milter-greylist] problem building with p0f support, p0f or better using dialin RBL?
2016-09-13 by Bob Friesenhahn
... Does using the p0f feature increase the opportunity for a security weakness so it is more likely that the host machine can be compromised? Can it work in
Re: [milter-greylist] problem building with p0f support, p0f or better using dialin RBL?
2016-09-12 by Jim Klimov
... We use p0f (3.06b, 3.08b iirc is last) coerced to compile under solarish oses that we use (tweaks should be on my github). Depending on platform release we
Re: [milter-greylist] problem building with p0f support, p0f or better using dialin RBL?
2016-09-12 by Bill Levering
I’ve gotten absolutely no benefit from have p0f running… but then again I don’t run a high traffic mail server. Since June 19th: 2932 ‘cache miss’es
problem building with p0f support, p0f or better using dialin RBL?
2016-09-12 by Marcus Schopen
Hi, tried to build milter-greylist with p0f support. I downloaded the debian source package p0f-2.0.8, unpacked it and set --with-p0f-src= to that source path
Re: [milter-greylist] autowhitelist recipients from outgoing smtp relay on incoming relay
2016-09-12 by Marcus Schopen
Hi Jim, On 2016-09-12 06:59, Jim Klimov jimklimov@cos.ru [milter-greylist] wrote: [...] ... Thanks for your time to respond that considerably. I was rethinking
Re: [milter-greylist] Re: Auth or noauth
2016-09-12 by maren.zubizarreta@...
Thanks for your code: As for we, whta we finally do is changing this rule: racl greylist not auth /.*/ default for this one, that in fact is our default
Re: [milter-greylist] autowhitelist recipients from outgoing smtp relay on incoming relay
2016-09-12 by Jim Klimov
... Hi, As I mentioned, I was looking for something like this (lazily) and did not find. But it was a few years back, and it is a nice to have (really nice)
Re: [milter-greylist] autowhitelist recipients from outgoing smtp relay on incoming relay
2016-09-12 by Jim Klimov
... Hi, As I mentioned, I was looking for something like this (lazily) and did not find. But it was a few years back, and it is a nice to have (really nice)
greylisting ACL without autowhite, messages newer pass greylisting
2016-09-11 by Marcus Schopen
Hi, an understanding question: I use RBL blacklisting. A messages is blacklisted if an IP is listed on two RBLs, eg. racl blacklist dnsrbl ZEN dnsrbl IX
autowhitelist recipients from outgoing smtp relay on incoming relay
2016-09-10 by Marcus Schopen
Hi, any best practice how to autowhitelist recipients from outgoing smtp relay on the incoming relay? On the incoming relay one could use urlcheck (any script
Re: [milter-greylist] Re: Auth or noauth
2016-09-09 by Marcus Schopen
On 2016-09-09 18:07, Marcus Schopen lists-yahoogroups@localguru.de ... This seems to work with tempfail codes: racl blacklist not sm_macro null not list
Re: [milter-greylist] Re: Auth or noauth
2016-09-09 by Marcus Schopen
On 2016-09-09 17:43, Marcus Schopen lists-yahoogroups@localguru.de ... Hmm ... the blacklist will cause a 5.7.1 error. As I understand this is not a tempfail.
Re: [milter-greylist] Re: Auth or noauth
2016-09-09 by Marcus Schopen
Hi, ... I played a little bit with a testhost, which receives mail as incoming server from internal and external and offers smtp auth to send mail for
testing rawfrom patch [was: Re: [milter-greylist] block SRS senders]
2016-09-09 by Marcus Schopen
Hi Emmanuel, ... I built a new package with your above rawfrom patch [1]. Build is fine, but I get an error unexpected acl clause type 14 ... list FROM-TEST
Re: [milter-greylist] Auth or noauth
2016-09-09 by Jim Klimov
... Do you get attacked on a schedule? ;) Don t you have a policy to block access to accounts caught spamming - whether due to compromise or malice? If you
Re: Auth or noauth
2016-09-09 by maren.zubizarreta@...
Ups: Again, after testing it I have had an aditional problem, as this doesn t work: racl greylist not auth /.*/ default I get an error for the deafult police,
Re: [milter-greylist] Auth or noauth
2016-09-09 by maren.zubizarreta@...
Thanks a lot, That worked perfectly. Maren
Re: [milter-greylist] Auth or noauth
2016-09-09 by Serge Stepanov
racl whitelist not auth /.*/ addr 10.0.0.0/8 etc On Fri, Sep 9, 2016 at 1:49 PM, maren.zubizarreta@ehu.es [milter-greylist]
Re: [milter-greylist] Auth or noauth
2016-09-09 by maren.zubizarreta@...
Thanks for your answer, What I want is to continue to apply my other rules only to unauthenticated user s, I don t see how your lines could help, because if I
Re: [milter-greylist] Auth or noauth
2016-09-09 by Serge Stepanov
use racl whitelist auth /.*/ dacl whitelist auth /.*/ wherever you want to skip auth users On Fri, Sep 9, 2016 at 1:28 PM, maren.zubizarreta@ehu.es
Auth or noauth
2016-09-09 by maren.zubizarreta@...
Again as I have no answer and I would like to set this before the weekend,that is when we get attacked, I will open a new topic: I have successfully tested my
Re: [milter-greylist] Ratelimit per authenticated user
2016-09-09 by maren.zubizarreta@...
Hello again: From the mesage User testuser1 authenticated, bypassing greylisting I can guess that you haven t enabled noauth , this is: uncomment it, so
Re: [milter-greylist] Ratelimit per authenticated user
2016-09-08 by Marcus Schopen
Hi, ... Thanks for your example. I tried your rule set, which is placed before racl greylist list grey users ... in the config, but it s not ... # Limit
Re: [milter-greylist] Ratelimit per authenticated user
2016-09-08 by maren.zubizarreta@...
Sorry, my last message was a mistake. I have another question. For these rules to be applied I have to set noauth , but then all other rules that I had before