Re: [exim] Deny crappy HELO

Top Page
Delete this message
Reply to this message
Author: Toralf Lund
Date:  
To: Exim Mailing List
Subject: Re: [exim] Deny crappy HELO
Drav Sloan wrote:
> Dennis Davis wrote:
>
>> Something like:
>>
>>   deny    message = Rejected because of unacceptable syntax in \
>>                     HELO/EHLO name:\n\
>>                     $sender_helo_name\n\
>>                     This is commonly associated with misconfigured \
>>                     mail software;\n\
>>                     see RFC2821 section 4.1.2 for legal domain syntax.
>>           log_message = invalid HELO syntax $sender_helo_name
>>           condition = ${if ! match {$sender_helo_name}{\N^[^.].*\.[^.]+$\N}}

>>
>
> Another popular method:
>
>   deny    message       = ....
>          !condition     = ${if match{$sender_helo_name}{\\\.}{yes}{no}}

>


Yup.

I'm also using

  deny message = $sender_helo_name is my IP address
       condition = ${if eq{$sender_helo_name}{$interface_address}{yes}{no}}
  deny condition = ${if match 
{${lc:$sender_helo_name}}{\N^(.*\.|)(DOMAINS)$\N}{1}{0}}
       message   = Do not pretend to be me, impostor



- where DOMAINS is a macro listing all "local" domain names. These these
checks are not executed for mails originating from our LAN of course...

- T