[Exim] RBL Configuration w/ Base Exim Config

Page principale
Supprimer ce message
Répondre à ce message
Auteur: Mail List
Date:  
À: exim-users
Sujet: [Exim] RBL Configuration w/ Base Exim Config
>you realize that the MAPS services are now pay-for-service, don't you?
>
>ordb.org has a good rep as an orbs style open relay list. also investigate
>the sbl (sbl.spamhaus.org, spamhausen of fixed address) and opm.blitzed.org
>( open proxies.)


Yeah, I want to start by using relays.ordb.org -and in the coming weeks
possibly subscribe to spam cop or some of the others that you mentioned
after I do a little more research. I like the idea of using spamhaus.org
from what I've read about their service (so far) -many of the look-ups I
perform on habitual spammers shows up in that db, so I'll investigate their
service more.. I was unfamiliar with opm.blitzed.org -thanks for the info..!

So does the location of the "deny dnslists = relays.ordb.org" directive
matter in the ACL part of the config? I'm guessing it should be towards the
top..<?>

Does this look correct?

Thanks again for your help and suggestions, I appreciate your time and
assistance.

######################################################################
#                       ACL CONFIGURATION                            #
#         Specifies access control lists for incoming SMTP mail      #
######################################################################


begin acl

check_recipient:
accept hosts = :

   deny    local_parts    = ^.*[@%!/|]


   deny    message = host is listed in $dnslist_domain
           dnslists = relays.ordb.org


   deny    senders        = *@partial-dbm;/etc/exim/access.db : \
                           dbm;/etc/exim/access.db


   require verify         = sender


   deny    message        = unrouteable address
           hosts          = !127.0.0.1/8:0.0.0.0/0
          !verify         = recipient


   accept  domains        = +local_domains
           endpass
           message        = unknown user
           verify         = recipient


   accept  hosts          = +relay_hosts


   accept  hosts          = +auth_relay_hosts
           endpass
           message        = authentication required
           authenticated  = *


# Enable SSL support.
#  accept  hosts = +tls_relay_hosts
#          endpass
#          message = encryption required
#          encrypted = *


   deny    message       = relay not permitted



check_message:
accept