Re: [exim] Creating local blacklist

Startseite
Nachricht löschen
Nachricht beantworten
Autor: Mueller
Datum:  
To: 'Mike Brown'
CC: exim-users
Betreff: Re: [exim] Creating local blacklist
Hello,
I do this job in acl_check_data.

In the file deny_senders I put the domains and emailadresses I don' t want
to reach any of my users (spam).

Deny_senders ex.:

*@qq.com
*@svensinc.biz.ua
*@intersallem.eu
*@avoca37.org
*@bellis.host
*@limanaki.co.ua
*@melia.biz.ua
*@sunrise.co.ua
*@mudurnuorganik.com
*@sadsxc.akresorts.com
*@boccanervosa.com
*@instantequityhomes.com
*@creativestudio.re
*@flosmall.com.ua

acl_check_data:


deny senders = /etc/exim/deny_senders
message = Rejected: "$sender_address","$sender_address_domain"! We do not
trust your domain

Most of the spam sending adresses make a notify to proof if the adress
exists:
disposition-notification-to:Return-Receipt-To:acknowledge-to in the header.

So I stop this with the same file with a deny recipients in acl_check_rcpt

acl_check_rcpt:


deny recipients = /etc/exim/deny_senders
message = Rejected: Der Empfaenger Ist gesperrt, in unserer Blockliste!


Daniel






-----Ursprüngliche Nachricht-----
Von: Mike Brown via Exim-users [mailto:exim-users@exim.org]
Gesendet: Donnerstag, 26. April 2018 03:25
An: exim-users@???
Betreff: Re: [exim] Creating local blacklist

On Wed, Apr 25, 2018 at 11:19:56PM +0100, Jeremy Harris via Exim-users
wrote:
> On 25/04/18 15:19, Mike Brown via Exim-users wrote:
> > I've also added the following lines:
> >
> >

############################################################################
#
> > # Deny from particular domains
> > driver = redirect
> > # RBL Blacklist incoming hosts
> > domains = +exim_blacklist
> > allow_fail
> > data = :fail: Connection rejected: SPAM source $domain is manually

blacklisted.
> >
> > ####################################################################
> > #########
>
> That looks like a router.
>
> > The lines were added after the section that contains the following
> > line in the acl_check_rcpt: section:
> >
> >   # deny    message       = rejected because $sender_host_address is in

a black list at $dnslist_domain\n$dnslist_text
>
> I really hope not. That would be in the wrong place. Also, using a
> router _could_ be done, via a sender-verify, but is baroque. The ACL
> is positioned to do the job directly.


So, how does one set up the acl_check_rcpt section to use the exim_blacklist
that was defined to deny the incoming e-mail from the named domain?

> > I just noticed in the following manual section:
> >
> > http://www.exim.org/exim-html-current/doc/html/spec_html/ch-access_c
> > ontrol_lists.html
> >
> > that "acl_check_rcpt:" doesn't exist. But, there is a fleeting
> > reference to it later on.
>
> There is a main-section option called "acl_smtp_rcpt". It's common to
> give it a value which is the name of a named ACL, and it's common for
> that name to be "acl_check_rcpt". But it's your choice.


I went back and looked again and found the following:

acl_smtp_mail = acl_check_mail
acl_smtp_rcpt = acl_check_rcpt
acl_smtp_data = acl_check_data
acl_smtp_mime = acl_check_mime

Just curious, why bother having scl_smtp_xxxx when they become
acl_check_xxxx?
Why not just use acl_smtp_rcpt? Just goes to show what little I know about
exim. I don't do anything fancy with my setup, because it is just me on my
home server.

MB
-- 
e-mail: vidiot@??? | vidiot@???            /~\ The ASCII
        6082066843@??? (140 char limit)       \ / Ribbon Campaign
Visit - URL: http://vidiot.com/                           X  Against
             http://vidiot.net/                          / \ HTML Email
"What do you say Beckett. Wanna have a baby?" - Castle to Det. Beckett "How
long have I been gone?" Alexis after seeing Castle and Beckett w/ baby
 - Castle - 11/25/13


--
## List details at https://lists.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wiki.exim.org/