On 2024-03-15 at 14:11:03 UTC-0400 (Fri, 15 Mar 2024 13:11:03 -0500)
Matt Saladna via Postfix-users <m...@apisnetworks.com>
is rumored to have said:
Hello,
I'm seeking a workaround for Microsoft's litany of IPs landing on
DNSBL. They'd like all mail irrespective of DNSBL status to be
delivered, which requires a skip if the sender IP is blacklisted in
postscreen. With separation between postscreen and smtpd, postscreen
rejects the connection before handing off to smtpd so
smtpd_recipient_restrictions isn't triggered.
Is there an appropriate workaround that allows postscreen to report
DUNNO after DNSBL checks if the recipient matches in a table?
No, which is because of how postscreen is designed, as a fit to its
intended purpose. See the man page and supplementary README file for
details.
If you need to make recipient exceptions to postscreen, you are simply
using it for the wrong function. It is a *lightweight* tool to dispose
of pure spam sources without loading and using all the logic of the
smtpd daemon. By default, postscreen is no longer in control by the time
the greeting banner is sent.
If you wish to do anything complicated with deciding whether to accept a
message, you need to do it later in the SMTP transaction.
--
Bill Cole
b...@scconsult.com or billc...@apache.org
(AKA @grumpybozo and many *@billmail.scconsult.com addresses)
Not Currently Available For Hire
_______________________________________________
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to postfix-users-le...@postfix.org