On Mon, 2016-09-19 at 11:29 -0400, Dave Lugo wrote:
> Yes, you should have some way to override the missing rDNS check. But
> rejecting on missing rDNS is mostly safe, in my opinion and experience.
Agreed. Only positive action will reduce spam. Meekly accepting spam
just encourages more spam.
#############################################################
# #
# Start SMTP Connexion : section [A] #
# #
#############################################################
acl_check_connection:
accept hosts = EXDIR/hosts.accept.a
drop hosts = EXDIR/hosts.amateur.spammer
message = [SNA01] Your mailserver is on our Spammers list.
MESS3
delay = 30s
drop hosts = EXDIR/hosts.professional.spammer
message = [SNA15] Your professional spam is prohibited. MESS3
delay = 30s
drop condition = ${lookup dnsdb{ptr=$sender_host_address} {0}{1} }
message = [SNA03] Rejected. Sender's IP address has no Host
name. \
MESS3
delay = 15s
drop condition = ${if and{{def:sender_host_address}{!
def:sender_host_name}} \
{yes}{no}}
message = [SNA04] Sender's Host has No Reverse DNS. \
Ask your technical experts to rectify the problem.
drop condition = ${if match{$sender_host_name} \
{^.*[0-9]+[\\-|\\.|_][0-9]+[\\-|\\.|_][0-9]+[\\-|\
\.|_]*.*}}
!hosts = EXDIR/hosts.a8
message = [SNA08] mail server host name not genuine? MESS3
drop condition = ${if match{${lc:$sender_host_name}} \
{(broadband|client|customer|dsl|dyn|dynamic|home|host|static|user)(\\d|
\\.|\\-|ip)} \
{1}{} }
condition = ${if match{${lc:$sender_host_name}}
{smarthost}{0}{1} }
# note {0}{1} = non-match
!condition = ${if match{${lc:$sender_host_name}} {mailhost} }
!hosts = EXDIR/hosts.a13
message = [SNA13] Your mail server's host name,
$sender_host_name, \
resembles a home Internet connection. MESS3
etc ..................
[SNA13] = error code.
SN = 1 digit server (MTA) number
A = ACL section reference code
13 = routine with an ACL section
[2D16] = MTA 2, ACL section 'D', routine 16
--
Regards,
Paul.
England, EU. England's place is in the European Union.
