Re: [exim] Looking for Mail::SPF (2.002) Exim acl example

Top Page
Delete this message
Reply to this message
Author: Dan_Mitton
Date:  
To: exim-users
Subject: Re: [exim] Looking for Mail::SPF (2.002) Exim acl example
I'm not sure I understand. According to the Exim documentation:

drop: This verb behaves like deny, except that an SMTP connection is
forcibly closed after the 5xx error message has been sent. For example:

drop   message   = I don't take more than 20 RCPTs
       condition = ${if > {$rcpt_count}{20}}


There is no difference between deny and drop for the connect-time ACL. The
connection is always dropped after sending a 550 response.

Isn't a 550 a permanent failure?



Please respond to exim-users@???
Sent by:        exim-users-bounces@???
To:     exim-users@???
cc:      (bcc: Dan Mitton/YD/RWDOE)
Subject:        Re: [exim] Looking for Mail::SPF (2.002) Exim acl example
LSN: Not Relevant
User Filed as: Not a Record


Dan_Mitton@??? wrote:
>
> I'd also like some options - 'deny' or 'drop'? If a message fails SPF
> checking at the HELO or MAIL level, why should I not just 'drop' the
> connection rather then 'deny' the message?


If it's a legitimate mail server that happens to have misconfigured SPF,
dropping the connection will result in a temporary failure in the
sending server. The message will get queued up for a resend, and you've
effectively just DOS'd yourself. Denying it is a permanent failure, and
a legitimate but misconfigured sender will not bother you again.

- Marc

--
## List details at http://www.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://www.exim.org/eximwiki/