Kai Siering wrote on [mailop]:
> how about starting internal discussions within that community
> to include a default rejection of any mail from @t-online.de
> in Exim's default configuration?
> As nearly no-one who is deploying Exim
> (or Postfix, Sendmail for that matter)
> will be able to *send* to @t-online.de due to their policy,
> it is only logical to not *accept* any mail from them, too.
I propose to include in default Exim config (in rcpt ACL)
a code which checks whether the server is blocked by t-online.de:
warn set acl_m_ton = notton
condition = ${if or{\
{eqi{$sender_address_domain}{t-online.de}}\
.ifdef _HAVE_LOOKUP_DNSDB
{forany{${lookup dnsdb{>: defer_never,mxh=$sender_address_domain}}}\
{match{$item}{\N^mx\d+\.t-online\.de$\N}}}\
.endif
}}
set acl_m_ton = checkdefer
!verify = sender/callout=10s
set acl_m_ton = $acl_verify_message
deny condition = ${if !eq{$acl_m_ton}{notton}}
condition = ${if !eq{$acl_m_ton}{checkdefer}}
message = sender verify failed: $acl_m_ton
deny condition = ${if eq{$acl_m_ton}{checkdefer}}
message = We checked that $sender_address_domain blocks us. \
So we do not accept a message we cannot reply to.
# The server admin may change "deny" to "warn" and
# "message =" to "control = fakereject/"
# but few admins will want that (or notice and bother).
