postfix whitelister
Par MadCoder,
Tuesday 17 May 2005 à 16:47 ::
Geeky
I don't like r(h)bls because they create a *lot* of false positives.
I hate greylist because it creates a *lot* of mail delivery slow downs.
But you can be smarter, and use greylist *only* on mails that are flagged by some rbl/rhbls.
I just wrote a Postfix Policy Daemon that checks on the r(h)bls you give him in the config file if the current sender seems clean or not. Two cases :
- it's clean for every r(h)bl that is tested, then whitelister returns 'OK' and postfix will accept the mail
- it's suspicious, and then whitelister returns 'DUNNO', and then postfix will try the next smtpd_sender_restriction ... which is ... postgrey !
And it works really well. It still needs some polishing (like dropping privileges, use a pidfile, fork in the background, and that kind of stuff) but it's really acceptable for a 3-hours hack. God I love ocaml.
I use the rbls :
- dynablock.njabl.org
- dul.dnsbl.sorbs.net
and the rhbl :
- bogusmx.rfc-ignorant.org
btw, I've made debian packages deb http://opensource.polytechnique.org/debian ./.
Commentaires
1. Le Tuesday 17 May 2005 à 18:17, par le
2. Le Friday 20 May 2005 à 08:57, par Vincent :: site
3. Le Friday 20 May 2005 à 11:19, par MadCoder :: site
4. Le Friday 20 May 2005 à 13:20, par Vincent :: site
5. Le Friday 20 May 2005 à 13:23, par MadCoder :: site
Ajouter un commentaire