On Thu, May 24, 2012 at 03:43:21PM -0500, Dan Lists wrote: > I am looking to switch one or more of my blacklists to run from > postscreen. I send custom replies based on the blacklist, which > reduces the number of calls I get. The relevant part of my
Hmmm. In general you would not be getting calls from spammers about the mail you rejected in postscreen. It's going to be mostly zombie spew, so not even the spammer can see the rejection. You should not use postscreen for your own users' submission. If you're unable to get them off of port 25, use a different IP address for submission and MX mail. Only use postscreen on the MX. > I do not see any way to set the response text when using > postscreen. I see postscreen_dnsbl_reply_map, but it looks like > that just changes the domain (ie zen.local to zen.spamhaus.org) > not the reply text. That's correct. > Is there any way to set the postscreen DNSBL reply message? When smtpd(8) uses reject_rbl_client to reject mail, it checks for TXT records in the DNSBL, and that is incorporated into the reply: $rbl_reason in default_rbl_reply or rbl_reply_maps. Postscreen is less verbose about it: all it will say is the name of the zone. My own postscreen_dnsbl_reply_map reflects my fairly conservative postscreen config. I reject outright only on Zen. Any other DNSBL, even the ones like BRBL that I use later as reject_rbl_client, requires another DNSBL to reject. So here's mine (a pcre map): !/^zen\.spamhaus\.org$/ multiple DNS-based blocklists Perhaps your workaround is to put up a web page and use it as $(postscreen|smtpd)_reject_footer, and to hope that people will read it? -- http://rob0.nodns4.us/ -- system administration and consulting Offlist GMX mail is seen only if "/dev/rob0" is in the Subject:
