William Bentley | 6 May 21:21 2010

test

 

--
--
William Bentley
President, Future CIS, Corp.
(410) 782-5954
http://www.futurecis.com
NOTICE: This email was sent using Future CIS, Corp. servers. This email is only intended for the original recipients and is not to be forwarded without approval from the author. -- Future CIS, Corp. -- "Your resource for computer expertise." -- http://www.futurecis.com
Szabo Nandor | 11 May 10:33 2010
Picon

rcptcheck before greylist

Hi all,

I'm using Hugo Monteiro's envelope-scan patch with Policyd support (with 
great success).
RCPTCHECK is set in qmail-smtpd, but greylisting is executed before 
rcptcheck.
A lot of unauth triplet is fill mysql table, anyhow this mail will be 
drop by rcpt checking.
Is it possible to execute RCPTCHEKC before envelope scan?
My tcp.smtp file:
=:allow,RCPTCHECK="",SMTPAUTH="",QMAILQUEUE="/var/qmail/bin/simscan",ENVELOPE_SCANNER="/var/qmail/bin/qenvscan-policyd",POLICYD_SERVER="127.0.0.1",POLICYD_PORT="10031"

Tanks,
Nandor Szabo

Hugo Monteiro | 11 May 11:21 2010
Picon

Re: rcptcheck before greylist

On 05/11/2010 09:33 AM, Szabo Nandor wrote:
> Hi all,
>
> I'm using Hugo Monteiro's envelope-scan patch with Policyd support 
> (with great success).
> RCPTCHECK is set in qmail-smtpd, but greylisting is executed before 
> rcptcheck.
> A lot of unauth triplet is fill mysql table, anyhow this mail will be 
> drop by rcpt checking.
> Is it possible to execute RCPTCHEKC before envelope scan?
> My tcp.smtp file:
>
=:allow,RCPTCHECK="",SMTPAUTH="",QMAILQUEUE="/var/qmail/bin/simscan",ENVELOPE_SCANNER="/var/qmail/bin/qenvscan-policyd",POLICYD_SERVER="127.0.0.1",POLICYD_PORT="10031" 
>
>
> Tanks,
> Nandor Szabo
>
>
>
>

Hello Nandor,

I'm glad it's working for you.

As for your suggestion, i'm not so sure that's a good idea. If you 
verify the recipient before enforcing greylisting, you'll be giving 
spammers an easier way to validate existing accounts. True that making 
recipient checking after greylisting will produce irrelevant triplets in 
the database, but i believe that the overhead is worth it.

If you still feel so confident that you really want that behaviour, let 
me know and i'll see what i can come up with.

Regards,

Hugo Monteiro.

--

-- 
fct.unl.pt:~# cat .signature

Hugo Monteiro
Email	 : hugo.monteiro <at> fct.unl.pt
Telefone : +351 212948300 Ext.15307
Web      : http://hmonteiro.net

Divisão de Informática
Faculdade de Ciências e Tecnologia da
		   Universidade Nova de Lisboa
Quinta da Torre   2829-516 Caparica   Portugal
Telefone: +351 212948596   Fax: +351 212948548
www.fct.unl.pt                apoio <at> fct.unl.pt

fct.unl.pt:~# _

Szabo Nandor | 11 May 13:22 2010
Picon

Re: rcptcheck before greylist


>> I'm using Hugo Monteiro's envelope-scan patch with Policyd support 
>> (with great success).
>> RCPTCHECK is set in qmail-smtpd, but greylisting is executed before 
>> rcptcheck.
>> A lot of unauth triplet is fill mysql table, anyhow this mail will be 
>> drop by rcpt checking.
>> Is it possible to execute RCPTCHEKC before envelope scan?
>> My tcp.smtp file:
>>
=:allow,RCPTCHECK="",SMTPAUTH="",QMAILQUEUE="/var/qmail/bin/simscan",ENVELOPE_SCANNER="/var/qmail/bin/qenvscan-policyd",POLICYD_SERVER="127.0.0.1",POLICYD_PORT="10031" 
>>
>>
>> Tanks,
>> Nandor Szabo
>>
>>
>>
>>
>
>
> Hello Nandor,
>
> I'm glad it's working for you.
>
> As for your suggestion, i'm not so sure that's a good idea. If you 
> verify the recipient before enforcing greylisting, you'll be giving 
> spammers an easier way to validate existing accounts. True that making 
> recipient checking after greylisting will produce irrelevant triplets 
> in the database, but i believe that the overhead is worth it.
>
> If you still feel so confident that you really want that behaviour, 
> let me know and i'll see what i can come up with.
>
> Regards,
>
> Hugo Monteiro.
>
Tanks for yor quick respose.
Yes, you are rigth. With greylisting, it's more difficult to find out 
valid addresses.
The order of this feature in qmail-smtpd are hardcoded?

Regards,
Nandor Szabo

Hugo Monteiro | 11 May 13:35 2010
Picon

Re: rcptcheck before greylist

On 05/11/2010 12:22 PM, Szabo Nandor wrote:
>
>>> I'm using Hugo Monteiro's envelope-scan patch with Policyd support 
>>> (with great success).
>>> RCPTCHECK is set in qmail-smtpd, but greylisting is executed before 
>>> rcptcheck.
>>> A lot of unauth triplet is fill mysql table, anyhow this mail will 
>>> be drop by rcpt checking.
>>> Is it possible to execute RCPTCHEKC before envelope scan?
>>> My tcp.smtp file:
>>>
=:allow,RCPTCHECK="",SMTPAUTH="",QMAILQUEUE="/var/qmail/bin/simscan",ENVELOPE_SCANNER="/var/qmail/bin/qenvscan-policyd",POLICYD_SERVER="127.0.0.1",POLICYD_PORT="10031" 
>>>
>>>
>>> Tanks,
>>> Nandor Szabo
>>>
>>>
>>>
>>>
>>
>>
>> Hello Nandor,
>>
>> I'm glad it's working for you.
>>
>> As for your suggestion, i'm not so sure that's a good idea. If you 
>> verify the recipient before enforcing greylisting, you'll be giving 
>> spammers an easier way to validate existing accounts. True that 
>> making recipient checking after greylisting will produce irrelevant 
>> triplets in the database, but i believe that the overhead is worth it.
>>
>> If you still feel so confident that you really want that behaviour, 
>> let me know and i'll see what i can come up with.
>>
>> Regards,
>>
>> Hugo Monteiro.
>>
> Tanks for yor quick respose.
> Yes, you are rigth. With greylisting, it's more difficult to find out 
> valid addresses.
> The order of this feature in qmail-smtpd are hardcoded?
>
> Regards,
> Nandor Szabo
>
>

Yes, the logic and call for the scanner appear before the recipient 
checking code block. To change the behaviour you can either move that 
block of code inside the switch that tests the result of the ldaplookup 
call, or duplicate that same code there and use an env var to define 
which has priority.

The second approach would provide more flexibility, but it would also 
introduce more conditional jumps.

R's,

Hugo Monteiro.

--

-- 
fct.unl.pt:~# cat .signature

Hugo Monteiro
Email	 : hugo.monteiro <at> fct.unl.pt
Telefone : +351 212948300 Ext.15307
Web      : http://hmonteiro.net

Divisão de Informática
Faculdade de Ciências e Tecnologia da
		   Universidade Nova de Lisboa
Quinta da Torre   2829-516 Caparica   Portugal
Telefone: +351 212948596   Fax: +351 212948548
www.fct.unl.pt                apoio <at> fct.unl.pt

fct.unl.pt:~# _

Szabo Nandor | 11 May 14:01 2010
Picon

How to use NOBOUNCE

Hi all,

Silly mail servers often send bounce messages, and this messages get 
through greylisting.
Qmail-ldap has NOBOUNCE feature, to block this.

Is there any good practice to collect these IP addresses?
Like TcpBlocker, wich update tcp.smtp file by analizing qmail-smtpd log 
files. http://www.inter7.com/?page=tcpblocker

Tanks
Nandor Szabo

Medicine International Conference

Announcement to physicians and therapists

An International Conference on Integrative Medicine will be held in October 2010 in Jerusalem.
It will be a meeting of professionals in the field of medicine from around the world that will deal with ways to unite the scientific principles of modern medicine with the holistic principles of alternative medicine.

In order to give all those interested the possibility to participate (or to give a paper)
we hereby announce that registration has started.
The scientific committee of the convention is still open to accept additional topics to the conference program.
 
More details and registration forms are available in the Conference site: www.mediconvention.com

Our site is available in the following languages:

English * German * Spanish * Russian * French

Always at your service,
Avraham Fried,
Director
The Jerusalem International Conference on Integrative Medicine

This mail is intended for physicians and therapists only.
If you don't belong to the medical field, please excuse us and
= ODY>

Gmane