Hi Suresh:
I don't think the sender_reject is working, since the mails from rocke2@??? is still being coming
in and residing on my server.
I am using the following configurations as suggested by you:
# mail only from resolvable domains
sender_verify
sender_verify_reject = true
# dont verify anything from our own networks
sender_verify_hosts = !localhost:!mydomain.com:!192.1
68.200.0/24:0.0.0.0/0
sender_reject = @@partial-lsearch*;/etc/blacklist.senders
# this last line may wrap - careful
prohibition_message = "${lookup{$prohibition_reason}lsearch{/etc/reject.messages
}{${expand:$value}}}"
and in blacklist.senders the enteries are:
# block rocke2@???
norman.bay9.com: rocke2
# block all rubbish from cypo.com
cypo.com: *
# block jay@???
newtechcorp.com: jay
# admin__@any-domain is a virus mail
*: admin__
# funglow
flowgo.com: funonabun : updates : stoneage
# block some giftlist
planetgroupe.com: gartner
hotmail.com: jtoddkline
mail.cistemsindia.com: kkmehrotra
flashmail.com: smilie1000
icecom.ice.co.cr: ehf4mmkJE
robotmail.ne.jp: godfrey12a
dq.directqlick.com: mail
I have put in the colons as suggested in the exim manual, after it did not work in the initial config as
suggested by you. But, it doesn't seem to work now also.
I am clueless, pls give more pointers as to how I can solve this issue.
Thanks in advance
Regards,
Sanvir
Suresh Ramasubramanian wrote:
> Sheldon Hearn [exim-users] <28/06/01 17:20 +0200>:
> > On Thu, 28 Jun 2001 15:05:01 +0530, Suresh Ramasubramanian wrote:
> >
> > > sender_verify tends to take its own time about it, politely assuming that the
> > > sending mailserver has a DNS problem - and returns 4xx errors the first few
> > > times. A straightforward "550 Get lost spammer" works far better for me.
> >
> > If that works for you, great. However, in an environment where you're
> > offering a corporate pop-before-smtp relay service, an immediate "Get
> > lost spammer" [1] because of a transient DNS failure isn't smart.
>
> This seems to be a communication gap. I use sender_verify for the case you
> mention - and I'm happy with the 4xx it returns. As I control a fairly large
> corporate network or two (and some mobile phone <-> sms gateway servers) I
> can't return a 550 on transient dns failures.
>
> However, for deliberately broken dns (spammers configuring their MXs to point
> to an IP, or just rejecting mail from:<> and stuffing my queue full of junk)
> I prefer to use sender_reject.
>
> That's all I said. Sorry if I didn't make myself clear enough.
>
> --suresh
>
> --
> Suresh Ramasubramanian <--> mallet <at> efn <dot> org
> EMail Sturmbannfuhrer, Lower Middle Class Unix Sysadmin
>
> --
> ## List details at http://www.exim.org/mailman/listinfo/exim-users Exim details at http://www.exim.org/ ##
--
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Sanvir Singh Jham Tel: 694 1831/6619/6612/8617/ 5226/7/8
Velocient Technologies Limited Fax: 694 3732
New Delhi E-Mail:sanvir.jham@???
ssjham@???
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Just Believe in the Best