Re: [Exim] Spam prevention

Top Page
Delete this message
Reply to this message
Author: Philip Hazel
Date:  
To: Markus Orlich
CC: Exim users
Subject: Re: [Exim] Spam prevention
On Sun, 17 Mar 2002, Markus Orlich wrote:

> In my configuration I have the following statement:
> -> deny  message   = /usr/exim/deny-msg.int
> ->       condition = ${lookup{${domain:$sender_address}}\
> ->                   lsearch{/usr/exim/deny.int}{yes}{no}}

>
> deny-msg.int is a flat file like:


That won't work. The value of "message" is a string, not a file. If you
want to read a file at this point, you'll need to use ${readfile.

> deny.int is flat file that contain only domainnames like:
> -> erotikxpress.com
> -> nudesletter.com
> -> sexe.com
>
> and in my system_filter I have the following condition:
> -> logfile /usr/exim/deny.int
> -> if $h_x-spam-flag: matches yes
> ->     then logwrite ${domain:$h_from}

                                       ^
                                       ^
                                       ^
                           You need to insert a : here, to terminate the
                           header name.


> Is this possible, or do I missed anything?


The most important thing you have missed is that your test is based on
the envelope sender, but you are creating your file from the From:
header. You should be using $sender_address, not $h_from:. You also need
to think about bounce messages, where the sender address is <>.


--
Philip Hazel            University of Cambridge Computing Service,
ph10@???      Cambridge, England. Phone: +44 1223 334714.