Noah Sutherland <[EMAIL PROTECTED]> writes on 11 November 1999 at 14:43:25 -0800
> I am trying to set up the RBL for the first time. It just is *not*
> working. OK, first, here is the recommended startup line from the web
> site:
> tcpserver 0 25 tcpcontrol /etc/smtp.cdb /usr/local/bin/smtplog qmail-smtpd
> 2>&1 | logger -p mail.notice &
>
> Since I'm running ucspi 0.84, I believe I shouldn't use tcpcontrol
> (correct?) so here is my current startup line:
> /usr/local/bin/tcpserver -c100 -u502 -g501 -x/etc/tcp.smtp.cdb 0 25
> /var/qmail/bin/smtplog /var/qmail/bin/qmail-smtpd 2>&1 | logger -p
> mail.notice &
What method of RBL are you trying to use? The standard qmail method
requires running rblsmtpd, which I don't see you doing. There were
some old patches to integrate the functionality into qmail; were you
using those instead?
Anyway, here's what I do (sorry for the complexity; it doesn't need to
be this messy, but I'm afraid if I fake it I'll get something wrong):
rblzones="rbl.maps.vix.com relays.mail-abuse.org dul.maps.vix.com"
rblprog="/usr/bin/rblsmtpd"
rblcmd=""
for zn in $rblzones ; do
rblcmd="$rblcmd $rblprog -b -r $zn"
done
(this produces an rblcmd that looks something like "/usr/bin/rblsmtpd
-b -r dul.maps.vix.com /usr/bin/rblsmtpd -b -r relays.mail-abuse.org
/usr/bin/rbmsmtpd -b -r rbl.maps.fix.com", but with no line breaks in it)
/usr/local/bin/supervise /var/run/tcpserver-qmail /usr/local/bin/tcpserver -v -pR
-c50 -u70 -g70 -x/etc/tcp.smtp.cdb 0 smtp $rblcmd /var/qmail/bin/qmail-smtpd 2>&1 |
/var/qmail/bin/splogger smtpd 2 &
What this ends up being is a big stack of programs which do their
thing, and then exec other programs to do another thing. The last one
invoked is the actual qmail-smtpd.
Here's what my tcp.smtp looks like:
# tcpcontrol(8) rules for qmail smtp daemon
#
# In general, anywhere I want to allow relaying from, I probably want
# to ignore spamblocks too.
# Allow relaying from my own addresses -- at gofast
206.147.220.161-165:allow,RELAYCLIENT="",RBLSMTPD=""
#
# Blaisdell poly USWest static address
63.224.10.78:allow,RELAYCLIENT="",RBLSMTPD=""
#
# Lydy at work (All of MultiLogic, really used just by Lydy)
206.144.140.:allow,RELAYCLIENT="",RBLSMTPD=""
#
# Finally, allow anything else, but without relaying
# (Domains to refuse entirely would go above this)
:allow
And this has to be compiled into a cdb with a command like
tcprules tcp.smtp.cdb ddbfoobar < tcp.smtp
--
David Dyer-Bennet / Join the 20th century before it's too late! / [EMAIL PROTECTED]
http://dd-b.lighthunters.net/ (photos) Minicon: http://www.mnstf.org/minicon
http://www.dd-b.net/dd-b (sf) http://ouroboros.demesne.com/ Ouroboros Bookworms
