[exim] stupid ACL named list question using match

Kezdőlap
Üzenet törlése
Válasz az üzenetre
Szerző: Chad Leigh
Dátum:  
Címzett: exim users
Tárgy: [exim] stupid ACL named list question using match

Hi

I have a simple acl_smtp_helo ACL as follows

check_helo:
   accept hosts = 166.70.252.0/24 : webmail.shire.net : lists.shire.net
   deny message  = Go away, impostor!
         condition = ${if match{${lc:$sender_helo_name}}{shire.net} 
{true}{false}}
   accept hosts = *



I got this from some samples that I munged together. Basically I
want to accept HELO of anything if it comes from my own netblock or
is from a server I control, and otherwise it is claiming to be me but
is not in my netblock I want to reject it.

However, I actually want to match against a list of domains and not
just my main domain. I want to reject any HELO/EHLO that claim to be
a mail server for a domain I run in local_domains if it is not in my
IP netblock.

If I do

    domainlist    local domains = shire.net : objectwerks.com


for example
and do

   deny message  = Go away, impostor!
         condition = ${if match{${lc:$sender_helo_name}} 
{+local_domains}{true}{false}}


I get an error

2006-12-22 01:38:46 H=(jam-ind.com) [212.156.175.81] temporarily
rejected EHLO or HELO jam-ind.com: failed to expand ACL string "${if
match{${lc:$sender_helo_name}}{+local_domains}{true}{false}}":
regular expression error in "+local_domains": nothing to repeat at
offset 0

I am dumb when it comes to this sort of thing. How would I
accomplish the same thing I have above but matching against a
domainlist instead of a single regular expression

The idea came from this: <http://www.exim.org/mail-archives/exim-
users/Week-of-Mon-20040308/msg00078.html>

Thanks
Chad

---
Chad Leigh -- Shire.Net LLC
Your Web App and Email hosting provider
chad at shire.net