Bug#376549: another approach
Robert Millan
rmh at aybabtu.com
Thu Jul 6 18:12:53 UTC 2006
How about doing it this way. Does it look better now?
This is more powerful than the previous one: users can select individualy for
each blacklist wether to issue "warn" or "deny". Typicaly, you would add new
lists to "warn" first, and move to "deny" once you have checked they work the
way you want.
--- exim4-4.62/debian/debconf/conf.d/acl/30_exim4-config_check_rcpt~ 2006-07-06 20:06:35.000000000 +0200
+++ exim4-4.62/debian/debconf/conf.d/acl/30_exim4-config_check_rcpt 2006-07-06 20:08:47.000000000 +0200
@@ -217,6 +217,14 @@
dnslists = CHECK_RCPT_IP_DNSBLS
.endif
+ # Same thing, but with "deny" policy
+ .ifdef CHECK_RCPT_IP_DNSBLS_DENY
+ deny
+ message = $sender_host_address is listed at $dnslist_domain ($dnslist_value: $dnslist_text)
+ log_message = $sender_host_address is listed at $dnslist_domain ($dnslist_value: $dnslist_text)
+ dnslists = CHECK_RCPT_IP_DNSBLS_DENY
+ .endif
+
# Check against DNSBLs which list sender domains, with an option to locally
# whitelist certain domains that might be blacklisted. If you want one
@@ -231,6 +239,16 @@
dnslists = CHECK_RCPT_DOMAIN_DNSBLS/$sender_address_domain
.endif
+ # Same thing, but with "deny" policy
+ .ifdef CHECK_RCPT_DOMAIN_DNSBLS_DENY
+ deny
+ message = $sender_address_domain is listed at $dnslist_domain ($dnslist_value: $dnslist_text)
+ log_message = $sender_address_domain is listed at $dnslist_domain ($dnslist_value: $dnslist_text)
+ !senders = ${if exists{CONFDIR/local_domain_dnsbl_whitelist}\
+ {CONFDIR/local_domain_dnsbl_whitelist}\
+ {}}
+ dnslists = CHECK_RCPT_DOMAIN_DNSBLS_DENY/$sender_address_domain
+ .endif
# This hook allows you to hook in your own ACLs without having to
# modify this file. If you do it like we suggest, you'll end up with
--
Robert Millan
My spam trap is <honeypot at aybabtu.com>. Note: this address is only intended for
spam harvesters. Writing to it will get you added to my black list.
More information about the Pkg-exim4-maintainers
mailing list