I've started playing with exportExtremeFile, and using that exported list to generate IPTables rules on our Linux firewall to drop the packets before they even get to ASSP. But I was coming across a strange problem. Some of the log entries I saw for extreme blocks weren't being exported into the text file. After digging through the code, I noticed that the test for blocking an email due to PenaltyExtreme was using >= ($score >= $PenaltyExtreme) while the test for exporting entries into exportExtremeFile is ($score > $PenaltyExtreme). So, if I had an IP with the exact score as PenaltyExtreme, that IP would be blocked, but not exported into the text file. The web interface actually does say "If set PB will deny SMTP-connections from IP's whose score exceed this level." Rather than "meet or exceed this level" so I'm guessing using > is correct. In my case, I simply reduced PenaltyExtreme from 150 to 149, and it works fine.
Dan Ratzlaff Network Administrator Mental Health Center of East Central Kansas
smime.p7s
Description: S/MIME cryptographic signature
------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
_______________________________________________ Assp-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/assp-user
