On Apr 6, 2004, at 02:49, Scott Call wrote:
> Something I did notice when checking logs, however, is that I get a
> order
> of 100x more "HELO x.x.x.x" instead of "HELO primary_hostname" in my
> logs
> (28000 vs 244 for yesterday for example) so I also added:
> deny condition = ${if eq {$sender_helo_name}
> {x.x.x.x}{true}{false}}
> message = You claim to be me? Go Away!
>
> where x.x.x.x is the public IP of the server. Most of the IPs using
> this
> method were already listed in the various DNSBLs, but a DNS query
> saved...
You could do that; and rather than hardcoding an IP address, I would do
the following:
deny message = You claim to be me? Go away!
condition = ${if eq {$sender_helo_name}{$interface_address} \
{true}{false}}
But frankly, _any_ IP address in a HELO/EHLO greeting is invalid, so
long as it is not an IP literal enclosed within square brackets:
EHLO [192.168.1.2]
Thus, I would (and do):
deny message = You greeted me with an IP address. I want your
name.
condition = ${if isip {$sender_helo_name}{true}{false}}
-tor
