Login | Register For Free | Help
Search for: (Advanced)

Mailing List Archive: Qmail: users

rblsmtpd : how to whitelist e-mail address ??

  

 
Qmail users RSS feed   Index | Next | Previous | View Threaded


rejaine at bhz

Sep 10, 2010, 6:27 AM

Post #1 of 7 (1370 views)
Permalink
rblsmtpd : how to whitelist e-mail address ??
Hi

I'm using qmail+rblsmpd and use whitelist (dnscache way) to make a
list os servers (ip address) to bypass the rbl checking

But, many Hotmail ip servers address are listed on Sorbs , and I need
to put some specificy e-mail address (ie: bill [at] hotmail,
gates [at] hotmail) on a whitelist thing, without put all Hotmail ip
server address on my whitelist dnscache and/or disable RBL checks
(RBLSMTPD="") on my smtp.rules config.

Any tips?


amb-sendok-1286720615.cpgncocjpfidgleiefna at bradfo

Sep 10, 2010, 7:23 AM

Post #2 of 7 (1329 views)
Permalink
Re: rblsmtpd : how to whitelist e-mail address ?? [In reply to]
Thus said Rejaine Monteiro on Fri, 10 Sep 2010 10:27:10 -0300:

> But, many Hotmail ip servers address are listed on Sorbs , and I
> need to put some specificy e-mail address (ie: bill [at] hotmail,
> gates [at] hotmail) on a whitelist thing, without put all Hotmail
> ip server address on my whitelist dnscache and/or disable RBL checks
> (RBLSMTPD="") on my smtp.rules config.

rblsmtpd has no knowledge of SENDER or RECIPIENT so it isn't possible to
use rblsmtpd for this purpose. rblsmtpd checks the TCPREMOTEIP to see if
it is on a blacklist, and although rblsmtpd does have a -a which allows
you to whitelist IP addresses, this won't work for email addresses.

You'll have to come up with another approach for your goal.

Andy


rejaine at bhz

Sep 10, 2010, 8:07 AM

Post #3 of 7 (1332 views)
Permalink
Re: rblsmtpd : how to whitelist e-mail address ?? [In reply to]
Yes,

I known rblsmtp has nothing to do with sender/recipient black/whitelisting . My idea was to find an alternative to continue use rblsmtpd (block basead on TCPREMOTEIP) and find a way to bypass RBL check ON some cases (like the hotmail problem)
But there seems to be no solution, then to ignore the problem with Hotmail, I had to disable the list SORBS (only the Sorbs is blocking Hotmail, no other list appears listed)

Thank you all!



Em 10-09-2010 11:23, Andy Bradford escreveu:

> Thus said Rejaine Monteiro on Fri, 10 Sep 2010 10:27:10 -0300:
>
>
>> But, many Hotmail ip servers address are listed on Sorbs , and I
>> need to put some specificy e-mail address (ie: bill [at] hotmail,
>> gates [at] hotmail) on a whitelist thing, without put all Hotmail
>> ip server address on my whitelist dnscache and/or disable RBL checks
>> (RBLSMTPD="") on my smtp.rules config.
>>
> rblsmtpd has no knowledge of SENDER or RECIPIENT so it isn't possible to
> use rblsmtpd for this purpose. rblsmtpd checks the TCPREMOTEIP to see if
> it is on a blacklist, and although rblsmtpd does have a -a which allows
> you to whitelist IP addresses, this won't work for email addresses.
>
> You'll have to come up with another approach for your goal.
>
> Andy
>
>


feh at fehcom

Sep 10, 2010, 8:25 AM

Post #4 of 7 (1326 views)
Permalink
Re: rblsmtpd : how to whitelist e-mail address ?? [In reply to]
Hi

Am Freitag, den 10.09.2010, 08:23 -0600 schrieb Andy Bradford:
> Thus said Rejaine Monteiro on Fri, 10 Sep 2010 10:27:10 -0300:
>
> > But, many Hotmail ip servers address are listed on Sorbs , and I
> > need to put some specificy e-mail address (ie: bill [at] hotmail,
> > gates [at] hotmail) on a whitelist thing, without put all Hotmail
> > ip server address on my whitelist dnscache and/or disable RBL checks
> > (RBLSMTPD="") on my smtp.rules config.
>
> rblsmtpd has no knowledge of SENDER or RECIPIENT so it isn't possible to
> use rblsmtpd for this purpose.

This is not true. The SMTP conversation is for the full envelope.
Check it by yourself with recordio.

> rblsmtpd checks the TCPREMOTEIP to see if
> it is on a blacklist, and although rblsmtpd does have a -a which allows
> you to whitelist IP addresses, this won't work for email addresses.

It would be possible to patch rblsmtpd to do this kind of checking.
I consider this for an alternative greylisting implementation.

regards.
--eh.

>
> You'll have to come up with another approach for your goal.
>
> Andy
>
>

--
Dr. Erwin Hoffmann | FEHCom | http://www.fehcom.de
Attachments: signature.asc (0.19 KB)


amb-sendok-1286730596.hofbjjkidkbgdjpnapca at bradfo

Sep 10, 2010, 10:09 AM

Post #5 of 7 (1329 views)
Permalink
Re: rblsmtpd : how to whitelist e-mail address ?? [In reply to]
Thus said Erwin Hoffmann on Fri, 10 Sep 2010 17:25:27 +0200:

> > rblsmtpd has no knowledge of SENDER or RECIPIENT so it isn't possible to
> > use rblsmtpd for this purpose.=20
>
> This is not true. The SMTP conversation is for the full envelope.
> Check it by yourself with recordio.

Yes, I was not talking about the SMTP dialog, I meant that tcpserver
does not set the SENDER and RECIPIENT environment variables (as are
available later on in the qmail chain). Certainly, rblsmtpd does talk
SMTP, but the whole purpose of rblsmtpd is to put the SMTP dialog in a
jail and move it away from qmail-smtpd. Once rblsmtpd starts speaking
SMTP, how is qmail-smtpd going to handle it?

Sounds like more than rblsmtpd will need patching for this kind of
functionality?

Andy


Jason.Haar at trimble

Sep 10, 2010, 9:22 PM

Post #6 of 7 (1313 views)
Permalink
Re: rblsmtpd : how to whitelist e-mail address ?? [In reply to]
On 09/11/2010 03:07 AM, Rejaine Monteiro wrote:
> Yes,
>
> I known rblsmtp has nothing to do with sender/recipient black/whitelisting . My idea was to find an alternative to continue use rblsmtpd (block basead on TCPREMOTEIP) and find a way to bypass RBL check ON some cases (like the hotmail problem)
> But there seems to be no solution, then to ignore the problem with Hotmail, I had to disable the list SORBS (only the Sorbs is blocking Hotmail, no other list appears listed)
>
>
Are you using Spamassassin behind Qmail? If so, stop using rblsmtpd and
just increase the SA scores of the RBLs you were using to "600" and then
block when SA scores > 10 (or something)

We did this years ago because even though rblsmtpd worked, it didn't
give fine-grained control (as you have discovered) and also gave poor
logging. By not using it and instead getting SA to trigger a SMTP reject
when the score >10, we got the best of all worlds - still got the
equivalent of RBL blocks - but with better logging.

Obviously there is a big performance hit: rblsmtpd is infinitely more
frugal on resources than SA is - but if that isn't a bother to you, then
all I can say is it works for us :-)

--
Cheers

Jason Haar
Information Security Manager, Trimble Navigation Ltd.
Phone: +64 3 9635 377 Fax: +64 3 9635 417
PGP Fingerprint: 7A2E 0407 C9A6 CAF6 2B9F 8422 C063 5EBB FE1D 66D1


amb-sendok-1286811092.oicbbohdklmdimdpfafa at bradfo

Sep 11, 2010, 8:31 AM

Post #7 of 7 (1312 views)
Permalink
Re: rblsmtpd : how to whitelist e-mail address ?? [In reply to]
Thus said Rejaine Monteiro on Fri, 10 Sep 2010 12:07:15 -0300:

> But there seems to be no solution, then to ignore the problem with
> Hotmail, I had to disable the list SORBS (only the Sorbs is blocking
> Hotmail, no other list appears listed)

Aside from the solution that Erwin mentioned, you can continue using
rblsmtpd and simply whitelist the IPs that are incorrectly listed. If
SORBS does indeed list a Hotmail IP, then it isn't likely to stay on the
list long.

Andy

Qmail users RSS feed   Index | Next | Previous | View Threaded
 
 


Interested in having your list archived? Contact Gossamer Threads
 
  Web Applications & Managed Hosting Powered by Gossamer Threads Inc.