Re: [exim] Creating local blacklist

Top Page
This message is part of the following thread:
Mthe complete thread tree sorted by date
M++\Jeremy Harris at <-
MMMMCyborg at ->
Delete this message
Reply to this message
Author: Mike Brown
Date:  
To: exim-users
Subject: Re: [exim] Creating local blacklist
On Wed, Apr 25, 2018 at 11:19:56PM +0100, Jeremy Harris via Exim-users wrote:
> On 25/04/18 15:19, Mike Brown via Exim-users wrote:
> > I've also added the following lines:
> >
> > #############################################################################
> > # Deny from particular domains
> > driver = redirect
> > # RBL Blacklist incoming hosts
> > domains = +exim_blacklist
> > allow_fail
> > data = :fail: Connection rejected: SPAM source $domain is manually blacklisted.
> > #############################################################################
>
> That looks like a router.
>
> > The lines were added after the section that contains the following line in
> > the acl_check_rcpt: section:
> > 
> >   # deny    message       = rejected because $sender_host_address is in a black list at $dnslist_domain\n$dnslist_text

>
> I really hope not. That would be in the wrong place. Also, using a
> router _could_ be done, via a sender-verify, but is baroque. The ACL
> is positioned to do the job directly.

So, how does one set up the acl_check_rcpt section to use the exim_blacklist
that was defined to deny the incoming e-mail from the named domain?

> > I just noticed in the following manual section:
> >
> > http://www.exim.org/exim-html-current/doc/html/spec_html/ch-access_control_lists.html
> >
> > that "acl_check_rcpt:" doesn't exist. But, there is a fleeting reference to
> > it later on.
>
> There is a main-section option called "acl_smtp_rcpt". It's common to
> give it a value which is the name of a named ACL, and it's common for
> that name to be "acl_check_rcpt". But it's your choice.

I went back and looked again and found the following:

acl_smtp_mail = acl_check_mail
acl_smtp_rcpt = acl_check_rcpt
acl_smtp_data = acl_check_data
acl_smtp_mime = acl_check_mime

Just curious, why bother having scl_smtp_xxxx when they become acl_check_xxxx?
Why not just use acl_smtp_rcpt? Just goes to show what little I know about
exim. I don't do anything fancy with my setup, because it is just me on my
home server. 

MB
-- 
e-mail: vidiot@??? | vidiot@???            /~\ The ASCII
        6082066843@??? (140 char limit)       \ / Ribbon Campaign
Visit - URL: http://vidiot.com/                           X  Against
             http://vidiot.net/                          / \ HTML Email
"What do you say Beckett. Wanna have a baby?" - Castle to Det. Beckett
"How long have I been gone?" Alexis after seeing Castle and Beckett w/ baby
 - Castle - 11/25/13


This message was posted to the following mailing lists:
Exim-users
Mailing List Info | Nearby Messages		<-Re: [exim] Creating local blacklistRe: [exim] Creating local blacklist->
Tahini and Hummus and Cumin Development Archives administrated by cumin AdminsLurker (version 2.3)