Hi,
it seems that my actual ACL configuration does not check the DNSBLs as it
should.
I need help setting up my ACL on exim 4.12 to do this DNSBLs checking with
the following lists:
(The host I'm talking about is MX=20, mail2.vit.de, 213.69.199.244)
- relays.ordb.org
- or.orbl.org
- sbl.spamhaus.org
- opm.blitzed.org
and my ACL configuration is as follows:
Thanx a lot, Michael
==============================================
domainlist local_domains = vit.de : nlb.de : nlbintra.net : fax
hostlist local_networks = 172.16.1.0/24 : 172.16.2.0/24 :
192.168.200.0/24 : 172.27.81.0/24 : 172.16.200.1/32 : 213.69.199.224/27
domainlist relay_to_domains =
hostlist relay_from_hosts = 127.0.0.1 : rzvhostkdmz.vit.de :
mnowak.vit.de : mjakscht.vit.de : rzvmail.vit.de : rzvnotes3.vit.de :
nlbmail.vit.de : 213.69.199.226 : 192.168.200.0/24 : rzv
ftp.vit.de :
rzvlog.vit.de : gatekeeper2.vit.de : rzvlabwks.vit.de : rzvcms.vit.de :
rzvforum.vit.de : rzvcms-backup.vit.de
hostlist vrfy_hosts = +relay_from_hosts
hostlist expn_hosts = +relay_from_hosts
acl_smtp_rcpt = acl_check_rcpt
######################################################################
# ACL CONFIGURATION #
# Specifies access control lists for incoming SMTP mail #
######################################################################
begin acl
acl_check_rcpt:
accept hosts = :
deny local_parts = ^.*[@%!/|] : ^\\.
accept local_parts = postmaster
domains = +local_domains
accept domains = +local_domains
accept hosts = +local_networks : +relay_from_hosts
require verify = sender
deny hosts = !+vrfy_hosts : !+expn_hosts
message = relaying denied !!! - as we said... we don't
respect spammers!
deny message = rejected because $sender_host_address is in a
black list at $dnslist_domain\n$dnslist_text
log_message = found in $dnslist_domain
dnslists = relays.ordb.org : or.orbl.org : sbl.spamhaus.org
: opm.blitzed.org
domains = !+local_domains
deny message = relaying denied !!! - as we said... we don't
respect spammers!
==============================================
I sent an email to the spamhaus.org test-address and the following happened
(the email went through without checking):
==============================================
Received: from mail2.vit.de ([213.69.199.244]) by rzvmail.vit.de (Lotus
SMTP MTA v4.6.1 (569.2 2-6-1998)) with SMTP id C1256CC6.0036A1D0; Sat, 7
Feb 1970 10:55:21 +0100
Received: from sbl.crynwr.com ([192.203.178.107])
by mail2.vit.de with smtp (Exim 4.12)
id 18h5FN-0002VE-00
for jakscht@???; Fri, 07 Feb 2003 10:56:38 +0100
From: nelson-SBL-test@???
To: jakscht@???
Date: Fri, 7 Feb 2003 9:56:38 -0000
Message-Id: <1044611798@???>
X-Spam-Score: 7.8 (++++++++)
X-Scanner: exiscan for exim4 (http://duncanthrax.net/exiscan/)
*18h5FN-0002VE-00*AaJ9fZqjJZg*
X-Filtered-by: mail2.vit.de at 2003-02-07 10:56:41
X-Delivered-To: jakscht@???
Uh-oh, your SBL block is not working!
==============================================
==============================================
Received: from mail2.vit.de ([213.69.199.244]) by rzvmail.vit.de (Lotus
SMTP MTA v4.6.1 (569.2 2-6-1998)) with SMTP id C1256CC6.0036A445; Sat, 7
Feb 1970 10:55:27 +0100
Received: from mail.vit.de ([213.69.199.241])
by mail2.vit.de with esmtp (Exim 4.12)
id 18h5FT-0002VJ-00
for jakscht@???; Fri, 07 Feb 2003 10:56:43 +0100
Received: from exim by mail.vit.de with spam-and-virus-scanned (Exim 3.36
#2)
id 18h5FS-0003SY-00
for jakscht@???; Fri, 07 Feb 2003 10:56:43 +0100
Received: from amavis by mail.vit.de with scanned-ok (Exim 3.36 #2)
id 18h5FS-0003SU-00
for jakscht@???; Fri, 07 Feb 2003 10:56:42 +0100
Received: from ns1.crynwr.com ([192.203.178.14])
by mail.vit.de with smtp (Exim 3.36 #2)
id 18h5FS-0003SM-00
for jakscht@???; Fri, 07 Feb 2003 10:56:42 +0100
Received: (qmail 31208 invoked by uid 500); 7 Feb 2003 09:56:37 -0000
Date: 7 Feb 2003 09:56:37 -0000
Message-ID: <20030207095637.31206.qmail@???>
From: nelson@???
Subject: Your SBL test report
To: jakscht@???
X-Virus-scanned: RZV network systems, (c) 2002
X-Spam-Status: No, hits=2.4 required=8.0
tests=NO_REAL_NAME,SPAM_PHRASE_03_05
version=2.43
X-Spam-Level: **
X-Filtered-by: mail.vit.de at 2003-02-07 10:56:43, passed filter: domain,
from, subject, body, receiver, sender
X-Delivered-To: jakscht@???
X-INFO: Direktzugang ueber MAIL2.VIT.DE !!!!
X-Spam-Score: 2.4 (++)
X-Scanner: exiscan for exim4 (http://duncanthrax.net/exiscan/)
*18h5FT-0002VJ-00*JHTP6Ogj0N.*
X-Filtered-by: mail2.vit.de at 2003-02-07 10:56:47
X-Delivered-To: jakscht@???
Testing your SBL block. See
http://www.crynwr.com/spam/ for more info.
Please note that this test will not tell you if your server is open for
relaying. Instead, it tests to see if your server blocks email from IP
addresses listed in various blocking lists; in this case, the SBL list.
Here's how the conversation looked from sbl.crynwr.com.
Note that some sites don't apply the SBL block to postmaster, so
I use your envelope sender as the To: address.
I connected to 213.69.199.244 and here's the conversation I had:
220-Welcome to RZV - Rechenzentrum Verden GmbH.
220-This mailhub mail2.vit.de is running SMTP/ESMTP with Exim 4.12
220-Today is Fri, 07 Feb 2003 10:56:37 +0100.
220-Please apologize that we do not respect spammers!
220 Happy mailing!
helo sbl.crynwr.com
250 mail2.vit.de Hello sbl.crynwr.com [192.203.178.107]
mail from:<>
250 OK
rcpt to:<jakscht@???>
250 Accepted
data
354 Enter message, ending with "." on a line by itself
From: nelson-SBL-test@???
To: jakscht@???
Date: Fri, 7 Feb 2003 9:56:38 -0000
Message-Id: <1044611798@???>
Test message
.
250 OK id=18h5FN-0002VE-00
quit
Successful termination. As far as I can tell, the email was delivered.
That might not be what you want.
==============================================
