qmail ldap users

William Bentley | 6 May 2010 21:21

test

--
--
William Bentley
President, Future CIS, Corp.
(410) 782-5954
http://www.futurecis.com

NOTICE: This email was sent using Future CIS, Corp. servers. This email is only intended for the original recipients and is not to be forwarded without approval from the author. -- Future CIS, Corp. -- "Your resource for computer expertise." -- http://www.futurecis.com

headers

Szabo Nandor | 11 May 2010 10:33

rcptcheck before greylist

Hi all,

I'm using Hugo Monteiro's envelope-scan patch with Policyd support (with 
great success).
RCPTCHECK is set in qmail-smtpd, but greylisting is executed before 
rcptcheck.
A lot of unauth triplet is fill mysql table, anyhow this mail will be 
drop by rcpt checking.
Is it possible to execute RCPTCHEKC before envelope scan?
My tcp.smtp file:
=:allow,RCPTCHECK="",SMTPAUTH="",QMAILQUEUE="/var/qmail/bin/simscan",ENVELOPE_SCANNER="/var/qmail/bin/qenvscan-policyd",POLICYD_SERVER="127.0.0.1",POLICYD_PORT="10031"

Tanks,
Nandor Szabo

headers

Hugo Monteiro | 11 May 2010 11:21

Re: rcptcheck before greylist

On 05/11/2010 09:33 AM, Szabo Nandor wrote:
> Hi all,
>
> I'm using Hugo Monteiro's envelope-scan patch with Policyd support 
> (with great success).
> RCPTCHECK is set in qmail-smtpd, but greylisting is executed before 
> rcptcheck.
> A lot of unauth triplet is fill mysql table, anyhow this mail will be 
> drop by rcpt checking.
> Is it possible to execute RCPTCHEKC before envelope scan?
> My tcp.smtp file:
>
=:allow,RCPTCHECK="",SMTPAUTH="",QMAILQUEUE="/var/qmail/bin/simscan",ENVELOPE_SCANNER="/var/qmail/bin/qenvscan-policyd",POLICYD_SERVER="127.0.0.1",POLICYD_PORT="10031" 
>
>
> Tanks,
> Nandor Szabo
>
>
>
>

Hello Nandor,

I'm glad it's working for you.

As for your suggestion, i'm not so sure that's a good idea. If you 
verify the recipient before enforcing greylisting, you'll be giving 
spammers an easier way to validate existing accounts. True that making 
recipient checking after greylisting will produce irrelevant triplets in 
the database, but i believe that the overhead is worth it.

If you still feel so confident that you really want that behaviour, let 
me know and i'll see what i can come up with.

Regards,

Hugo Monteiro.

--

-- 
fct.unl.pt:~# cat .signature

Hugo Monteiro
Email	 : hugo.monteiro <at> fct.unl.pt
Telefone : +351 212948300 Ext.15307
Web      : http://hmonteiro.net

Divisão de Informática
Faculdade de Ciências e Tecnologia da
		   Universidade Nova de Lisboa
Quinta da Torre   2829-516 Caparica   Portugal
Telefone: +351 212948596   Fax: +351 212948548
www.fct.unl.pt                apoio <at> fct.unl.pt

fct.unl.pt:~# _

headers

Szabo Nandor | 11 May 2010 13:22

Re: rcptcheck before greylist


>> I'm using Hugo Monteiro's envelope-scan patch with Policyd support 
>> (with great success).
>> RCPTCHECK is set in qmail-smtpd, but greylisting is executed before 
>> rcptcheck.
>> A lot of unauth triplet is fill mysql table, anyhow this mail will be 
>> drop by rcpt checking.
>> Is it possible to execute RCPTCHEKC before envelope scan?
>> My tcp.smtp file:
>>
=:allow,RCPTCHECK="",SMTPAUTH="",QMAILQUEUE="/var/qmail/bin/simscan",ENVELOPE_SCANNER="/var/qmail/bin/qenvscan-policyd",POLICYD_SERVER="127.0.0.1",POLICYD_PORT="10031" 
>>
>>
>> Tanks,
>> Nandor Szabo
>>
>>
>>
>>
>
>
> Hello Nandor,
>
> I'm glad it's working for you.
>
> As for your suggestion, i'm not so sure that's a good idea. If you 
> verify the recipient before enforcing greylisting, you'll be giving 
> spammers an easier way to validate existing accounts. True that making 
> recipient checking after greylisting will produce irrelevant triplets 
> in the database, but i believe that the overhead is worth it.
>
> If you still feel so confident that you really want that behaviour, 
> let me know and i'll see what i can come up with.
>
> Regards,
>
> Hugo Monteiro.
>
Tanks for yor quick respose.
Yes, you are rigth. With greylisting, it's more difficult to find out 
valid addresses.
The order of this feature in qmail-smtpd are hardcoded?

Regards,
Nandor Szabo

headers

Hugo Monteiro | 11 May 2010 13:35

Re: rcptcheck before greylist

On 05/11/2010 12:22 PM, Szabo Nandor wrote:
>
>>> I'm using Hugo Monteiro's envelope-scan patch with Policyd support 
>>> (with great success).
>>> RCPTCHECK is set in qmail-smtpd, but greylisting is executed before 
>>> rcptcheck.
>>> A lot of unauth triplet is fill mysql table, anyhow this mail will 
>>> be drop by rcpt checking.
>>> Is it possible to execute RCPTCHEKC before envelope scan?
>>> My tcp.smtp file:
>>>
=:allow,RCPTCHECK="",SMTPAUTH="",QMAILQUEUE="/var/qmail/bin/simscan",ENVELOPE_SCANNER="/var/qmail/bin/qenvscan-policyd",POLICYD_SERVER="127.0.0.1",POLICYD_PORT="10031" 
>>>
>>>
>>> Tanks,
>>> Nandor Szabo
>>>
>>>
>>>
>>>
>>
>>
>> Hello Nandor,
>>
>> I'm glad it's working for you.
>>
>> As for your suggestion, i'm not so sure that's a good idea. If you 
>> verify the recipient before enforcing greylisting, you'll be giving 
>> spammers an easier way to validate existing accounts. True that 
>> making recipient checking after greylisting will produce irrelevant 
>> triplets in the database, but i believe that the overhead is worth it.
>>
>> If you still feel so confident that you really want that behaviour, 
>> let me know and i'll see what i can come up with.
>>
>> Regards,
>>
>> Hugo Monteiro.
>>
> Tanks for yor quick respose.
> Yes, you are rigth. With greylisting, it's more difficult to find out 
> valid addresses.
> The order of this feature in qmail-smtpd are hardcoded?
>
> Regards,
> Nandor Szabo
>
>

Yes, the logic and call for the scanner appear before the recipient 
checking code block. To change the behaviour you can either move that 
block of code inside the switch that tests the result of the ldaplookup 
call, or duplicate that same code there and use an env var to define 
which has priority.

The second approach would provide more flexibility, but it would also 
introduce more conditional jumps.

R's,

Hugo Monteiro.

--

-- 
fct.unl.pt:~# cat .signature

Hugo Monteiro
Email	 : hugo.monteiro <at> fct.unl.pt
Telefone : +351 212948300 Ext.15307
Web      : http://hmonteiro.net

Divisão de Informática
Faculdade de Ciências e Tecnologia da
		   Universidade Nova de Lisboa
Quinta da Torre   2829-516 Caparica   Portugal
Telefone: +351 212948596   Fax: +351 212948548
www.fct.unl.pt                apoio <at> fct.unl.pt

fct.unl.pt:~# _

headers

Szabo Nandor | 11 May 2010 14:01

How to use NOBOUNCE

Hi all,

Silly mail servers often send bounce messages, and this messages get 
through greylisting.
Qmail-ldap has NOBOUNCE feature, to block this.

Is there any good practice to collect these IP addresses?
Like TcpBlocker, wich update tcp.smtp file by analizing qmail-smtpd log 
files. http://www.inter7.com/?page=tcpblocker

Tanks
Nandor Szabo

headers

The Jerusalem International Conference on Integrative Medicine | 29 May 2010 14:26

Medicine International Conference

Announcement to physicians and therapists

An International Conference on Integrative Medicine will be held in October 2010 in Jerusalem.
It will be a meeting of professionals in the field of medicine from around the world that will deal with ways to unite the scientific principles of modern medicine with the holistic principles of alternative medicine.

In order to give all those interested the possibility to participate (or to give a paper)
we hereby announce that registration has started.
The scientific committee of the convention is still open to accept additional topics to the conference program.

More details and registration forms are available in the Conference site: www.mediconvention.com

Our site is available in the following languages:

English * German * Spanish * Russian * French

Always at your service,
Avraham Fried,
Director
The Jerusalem International Conference on Integrative Medicine

This mail is intended for physicians and therapists only.

If you don't belong to the medical field, please excuse us and

Click Here to remove your address

= ODY>

4	April 2013
1	March 2013
5	February 2013
25	January 2013
1	December 2012
9	October 2012
7	September 2012
12	August 2012
2	July 2012
3	May 2012
2	April 2012
38	March 2012
9	February 2012
1	December 2011
4	November 2011
3	September 2011
22	August 2011
40	July 2011
6	June 2011
2	May 2011
1	April 2011
6	March 2011
14	February 2011
7	January 2011
10	December 2010
9	November 2010
23	October 2010
10	September 2010
9	August 2010
16	July 2010
8	June 2010
7	May 2010
7	April 2010
24	March 2010
55	February 2010
1	January 2010
2	December 2009
15	November 2009
2	October 2009
24	September 2009
6	August 2009
21	July 2009
9	June 2009
9	May 2009
25	April 2009
10	March 2009
8	January 2009
14	December 2008
29	November 2008
61	October 2008
73	September 2008
7	August 2008
28	July 2008
18	June 2008
18	May 2008
35	April 2008
59	March 2008
26	February 2008
8	January 2008
33	December 2007
47	November 2007
43	October 2007
59	September 2007
31	August 2007
13	July 2007
36	June 2007
63	May 2007
72	April 2007
108	March 2007
161	February 2007
71	January 2007
81	December 2006
78	November 2006
51	October 2006
97	September 2006
78	August 2006
66	July 2006
64	June 2006
52	May 2006
69	April 2006
87	March 2006
77	February 2006
94	January 2006
216	December 2005
88	November 2005
86	October 2005
159	September 2005
108	August 2005
308	July 2005
223	June 2005
203	May 2005
138	April 2005
105	March 2005
194	February 2005
181	January 2005
191	December 2004
149	November 2004
218	October 2004
150	September 2004
152	August 2004
211	July 2004
255	June 2004
161	May 2004
216	April 2004
318	March 2004
203	February 2004
145	January 2004
174	December 2003
186	November 2003
225	October 2003
208	September 2003
158	August 2003
68	July 2003
108	June 2003
198	May 2003
153	April 2003
202	March 2003
138	February 2003
235	January 2003
182	December 2002
220	November 2002
129	October 2002
19	September 2002

Mon	Tue	Wed	Thu	Fri	Sat	Sun

					1	2
3	4	5	6	7	8	9
10	11	12	13	14	15	16
17	18	19	20	21	22	23
24	25	26	27	28	29	30
31