Bug#290464: [Pkg-exim4-devel] SPF
Marc Haber
mh+pkg-exim4-devel at zugschlus.de
Wed Jul 26 09:36:05 UTC 2006
On Wed, Jul 19, 2006 at 05:12:43PM +0200, Robert Millan wrote:
> Deal! I'm attaching a patch to add a (disabled by default) SPF template in
> the debian config. I volunteer to do all the work that is derived from appliing
> this patch.
Thank you. I have given you commit privileges in Debian pkg-exim4 svn.
Please write good changelog and commit log entries. I reserve the
right to back out any changes ;)
Since you have since then committed multiple changes to your ACL, is
the one currently in svn actually useable?
> + # SPF checks
> + .ifdef CHECK_RCPT_SPF
> + deny
> + message = [SPF] $sender_host_address is not allowed to send mail from $sender_address_domain. \
> + Please see http://www.openspf.org/why.html?sender=$sender_address&ip=$sender_host_address
> + log_message = SPF check failed.
> + set acl_m9 = ${run{/usr/bin/spfquery -ip=$sender_host_address -sender=$sender_address -helo=$sender_helo_name}}
> + condition = ${if eq {$runrc}{1}{yes}{no}}
> +
> + warn
> + message = Received-SPF: ${if eq {$runrc}{0}{pass}{${if eq {$runrc}{1}{fail}{${if eq {$runrc}{2}{softfail}{${if eq {$runrc}{3}{neutral}{${if eq {$runrc}{4}{unknown}{${if eq {$runrc}{6}{none}{error}}}}}}}}}}}}
> +
> + warn
> + set acl_m9 = ${run{/usr/bin/spfquery -ip=$sender_host_address -sender=$sender_address -helo=$sender_helo_name -guess=true}}
> + message = X-SPF-Guess: ${if eq {$runrc}{0}{pass}{${if eq {$runrc}{1}{fail}{${if eq {$runrc}{2}{softfail}{${if eq {$runrc}{3}{neutral}{${if eq {$runrc}{4}{unknown}{${if eq {$runrc}{6}{none}{error}}}}}}}}}}}}
> + .endif
> +
Can't exim do SPF checks itself without having to revert to the
external spfquery utility? Or did you avoid this for a purpose, for
example to avoid a hard dependency on libspf?
If you are going a more complicated way to avoid the library
dependency, we should have the documentation mention that there is an
easier way of using SPF at the cost of locally building the binary
packages.
Greetings
Marc
--
-----------------------------------------------------------------------------
Marc Haber | "I don't trust Computers. They | Mailadresse im Header
Mannheim, Germany | lose things." Winona Ryder | Fon: *49 621 72739834
Nordisch by Nature | How to make an American Quilt | Fax: *49 621 72739835
More information about the Pkg-exim4-maintainers
mailing list