Milter-greylist

Hello Group,

Apologies if the following questions have already been answered but my
searches of the archive were unsuccessful.

I am running milter-greylist 1.6 in a test mode (-T) with sendmail
8.13.0 where sendmail.mc includes:

define(`confMILTER_MACROS_CONNECT', `j, {if_addr}')
define(`confMILTER_MACROS_ENVFROM', `i, {auth_authen}')
INPUT_MAIL_FILTER(`greylist',`S=local:/var/milter-greylist/milter-greylist.sock')

Question 1. Username match
--------------------------

/etc/mail/greylist.conf includes:

rcpt anna@...
rcpt asia@...

greylisting seems to apply not only to the addresses:

anna@...
asia@...

but also to addresses where the username contains anna or asia, eg:

hanna@...
kasia@...

The latter are not listed in /etc/mail/greylist.conf.

Is it a bug in milter-greylist or something I've misunderstood?

Question 2. Broken MTAs
-----------------------

The default greylist.conf included in the tarball contains a list of
broken MTAs, some Yahoo groups servers included but not all. My
attempt at joining this list resulted in greylisting of 66.94.237.28
from which a reply to my joining message came and was tempfailed. No
attempt to repeat its delivery was ever made.

Then, I noticed other Yahoo groups servers from 66.94.237.* network
sending messages to addresses in our domain, tampfailed as well.

That has prompted me to append the following line to greylist.conf:

addr 66.94.237.0/24

Are there any other broken MTAs this group knows of?
Is there any place where a current list of broken MTAs is maintained?

Question 3. timeout
-------------------
 
The following item in greylist.conf is not quite clear to me:

# How long will the greylist database retain tuples
#timeout=5d

Does it concern any tuple, or greylisted, or whitelisted? If:

autowhite=5d
timeout=3d

does a whitedlisted tuple remain in the data base for 5 days?


Thanks,
--
Jack

Jack Olszewski <jacek@...> wrote:

> greylisting seems to apply not only to the addresses:
> 
> anna@...
> asia@...
> 
> but also to addresses where the username contains anna or asia, eg:
> 
> hanna@xxx.yyy.zz
> kasia@...

Will be fixed in next release. In the meantime, you can use
/^anna@.../ as a workaround
 
> The default greylist.conf included in the tarball contains a list of
> broken MTAs, some Yahoo groups servers included but not all. My
> attempt at joining this list resulted in greylisting of 66.94.237.28
> from which a reply to my joining message came and was tempfailed. No
> attempt to repeat its delivery was ever made.
> 
> Then, I noticed other Yahoo groups servers from 66.94.237.* network
> sending messages to addresses in our domain, tampfailed as well.
> 
> That has prompted me to append the following line to greylist.conf:
> 
> addr 66.94.237.0/24
> 
> Are there any other broken MTAs this group knows of?
> Is there any place where a current list of broken MTAs is maintained?

I take the list from
http://cvs.puremagic.com/viewcvs/greylisting/schema/whitelist_ip.txt
 
> Question 3. timeout
> -------------------
>  
> The following item in greylist.conf is not quite clear to me:
> 
> # How long will the greylist database retain tuples
> #timeout=5d
> 
> Does it concern any tuple, or greylisted, or whitelisted? If:

It's the lifetie of a greylist tuple.
 
> autowhite=5d
> timeout=3d
> 
> does a whitedlisted tuple remain in the data base for 5 days?

Yes

-- 
Emmanuel Dreyfus
Publicité subliminale: achetez ce livre!
http://www.eyrolles.com/Informatique/Livre/9782212114638/livre-bsd.php
manu@...

On Fri Mar 18, 2005  6:31 am, <manu@n...> wrote:

> Will be fixed in next release. In the meantime, you can use
/^anna@x.../ as a workaround

It does not seem to work. I've put

rcpt /^anna@hermes\.net\.au/

into greylist.conf, and got this:

Mar 18 19:51:39 blue milter-greylist: reloaded config file in 0.001407s
Mar 18 20:11:54 blue milter-greylist: j2I9Asci024329: testmode: skipping greylist for recipient "<anna@...>"

Cheers,
--
Jack

> > Will be fixed in next release. In the meantime, you can use
> /^anna@x.../ as a workaround
> 
> It does not seem to work. I've put
> 
> rcpt /^anna@hermes\.net\.au/
> 
> 

Hello,

Try with 

rcpt /^[< 	]*anna@hermes\.net\.au[	 >]*$/

as I am used to do until the next release (note there is one space and one tab in brackets).

Bests,
Attila

<attila.bruncsak@...> wrote:

> rcpt /^[<     ]*anna@hermes\.net\.au[  >]*$/ 
> as I am used to do until the next release (note there is one space and one
> tab in brackets).

The change I made strips leading and trailing <> but does not handle
leading and trailing space and tabs. De we really need it? I'm not sure
I saw any legitimate send with such syntax.

-- 
Emmanuel Dreyfus
http://hcpnet.free.fr/pubz
manu@...

> > rcpt /^[<     ]*anna@hermes\.net\.au[  >]*$/ 
> > as I am used to do until the next release (note there is 
> one space and one
> > tab in brackets).
> 
> The change I made strips leading and trailing <> but does not handle
> leading and trailing space and tabs. De we really need it? 
> I'm not sure
> I saw any legitimate send with such syntax.
> 

For the version 1.6 which is used by Jack the < and > are needed.
Probably there is no valid occurrences of spaces and tabs,
but we should be prepared for the non-legitimate send syntax as well.
I already encountered spams using this crazy format.
(At least "< anna@...>" surely.)
Better to catch them as well, otherwise how can I request the spammers
please use "legitimate syntax"?
My experience shows not to expect much cooperation from their part.

Bests,
Attila

From: <attila.bruncsak@...>

Subject: RE: [milter-greylist] username match, broken MTAs, timeout
Date: Fri, 18 Mar 2005 21:45:58 +0100

attila.bruncsak> ...
attila.bruncsak> For the version 1.6 which is used by Jack the < and > are needed.

Is there a stable version newer than 1.6?

Cheers,
--
Jack

Jack Olszewski <jacek@...> wrote:

> Is there a stable version newer than 1.6?

There is a beta for 2.0. 

-- 
Emmanuel Dreyfus
Le cahier de l'admin BSD 2eme ed. est dans toutes les bonnes librairies
http://www.eyrolles.com/Informatique/Livre/9782212114638/livre-bsd.php
manu@...