[spamdyke-users] graylisting - Recipient address not added to domain directory ...
Please pardon me, if this comes through twice... I've been using spamdyke for 6 months or so on my server without graylisting and with no problems. A few days ago I decided to add graylisting. It seems to be working fine. However, it exhibits a behavior that is confusing me. I use tmda on the mail server. (This means that I generally create email address specific to a sender. e.g. When I gave an email address to my cable company to send me bill notifications it was of the form tony-keyword-comcast.somehashva...@ercolano.com) I purchased a game that required an email address for activation purposes. I created a specific address for the game company and used it during the signup. The service was then supposed to send me an activation email. I figured it would take at least 5 minutes (graylist-min-secs) to see the email. No! The email came right through! The left hand side of the email address that the activation email was sent to was nowhere to be found in the domain dir. I recieve quite a few daily emails from various organizations, all sent to different email address of the form tony-keyword-somthing.h...@ercolano.com. I still still seem to be getting all of these daily emails. However not all of these addresses are showing up in the domain dir. I then tried an experiment and sent myself an email using the game specific email address from my gmail account. Now, the left hand side of the address showed up in the domain directory. I have the feeling I'm missing something about graylisting. Any ideas? Thank you for your time, Tony Config: Linux kernel 2.6.30.9 An up to date gentoo using profile: default/linux/x86/10.0 netqmail-1.06 TMDA/1.1.12 Spamdyke 4.0.10 (the most current stable gentoo ebuild) my spamdyke.conf is as follows: graylist-level=always-create-dir graylist-dir=/dyke/gray graylist-max-secs=1209600 graylist-min-secs=300 graylist-exception-ip-file=/dyke/gray-exception/exceptio-ip smtp-auth-level=none relay-level=no-check local-domains-file=/var/qmail/control/rcpthosts max-recipients= log-level=error dns-blacklist-entry=zen.spamhaus.org reject-empty-rdns reject-unresolvable-rdns The exception ip files simply has a list of secure servers that I control. ___ spamdyke-users mailing list spamdyke-users@spamdyke.org http://www.spamdyke.org/mailman/listinfo/spamdyke-users
Re: [spamdyke-users] graylisting - Recipient address not added to domain directory ...
Well I think I might have my own answer to my question. It *appears* as though the messages that weren't getting graylisted were sent using tls. On Aug 1, 2010, at 1:11 PM, Anthony Ercolano wrote: > Please pardon me, if this comes through twice... > > I've been using spamdyke for 6 months or so on my server without graylisting > and with no problems. > > A few days ago I decided to add graylisting. It seems to be working fine. > However, it exhibits a behavior that is confusing me. > > I use tmda on the mail server. (This means that I generally create email > address specific to a sender. e.g. When I gave an email address to my cable > company to send me bill notifications it was of the form > tony-keyword-comcast.somehashva...@ercolano.com) > > I purchased a game that required an email address for activation purposes. I > created a specific address for the game company and used it during the > signup. The service was then supposed to send me an activation email. I > figured it would take at least 5 minutes (graylist-min-secs) to see the > email. No! The email came right through! The left hand side of the email > address that the activation email was sent to was nowhere to be found in the > domain dir. I recieve quite a few daily emails from various organizations, > all sent to different email address of the form > tony-keyword-somthing.h...@ercolano.com. I still still seem to be getting > all of these daily emails. However not all of these addresses are showing up > in the domain dir. > > I then tried an experiment and sent myself an email using the game specific > email address from my gmail account. Now, the left hand side of the address > showed up in the domain directory. > > I have the feeling I'm missing something about graylisting. Any ideas? > > Thank you for your time, > Tony > > Config: > Linux kernel 2.6.30.9 > An up to date gentoo using profile: default/linux/x86/10.0 > netqmail-1.06 > TMDA/1.1.12 > Spamdyke 4.0.10 (the most current stable gentoo ebuild) > > my spamdyke.conf is as follows: > > graylist-level=always-create-dir > graylist-dir=/dyke/gray > graylist-max-secs=1209600 > graylist-min-secs=300 > graylist-exception-ip-file=/dyke/gray-exception/exceptio-ip > smtp-auth-level=none > relay-level=no-check > local-domains-file=/var/qmail/control/rcpthosts > max-recipients= > log-level=error > dns-blacklist-entry=zen.spamhaus.org > reject-empty-rdns > reject-unresolvable-rdns > > The exception ip files simply has a list of secure servers that I control. > ___ spamdyke-users mailing list spamdyke-users@spamdyke.org http://www.spamdyke.org/mailman/listinfo/spamdyke-users
Re: [spamdyke-users] graylisting - Recipient address not added to domain directory ...
Anthony Ercolano wrote: > Well I think I might have my own answer to my question. > > It *appears* as though the messages that weren't getting graylisted were > sent using tls. > Very interesting. Upon what are you basing this observation? I notice that with the 4.1 release, there is an indication of encryption: in the spamdyke log messages (thank you very much for this, Sam). I am seeing some DENIED_GRAYLISTED log messages with encryption: TLS. I haven't checked though to see if there's actually an entry in the graylist tree or not. Are you seeing such messages in your smtp log? -- -Eric 'shubes' ___ spamdyke-users mailing list spamdyke-users@spamdyke.org http://www.spamdyke.org/mailman/listinfo/spamdyke-users
Re: [spamdyke-users] graylisting - Recipient address not added to domain directory ...
Quoting Eric Shubert : > Anthony Ercolano wrote: >> Well I think I might have my own answer to my question. >> >> It *appears* as though the messages that weren't getting graylisted were >> sent using tls. >> > > Very interesting. Upon what are you basing this observation? > It depends upon where you implement your TLS. If your qmail implements TLS, and spamdyke passes it through, then spam over TLS will get through. -trog ___ spamdyke-users mailing list spamdyke-users@spamdyke.org http://www.spamdyke.org/mailman/listinfo/spamdyke-users
Re: [spamdyke-users] graylisting - Recipient address not added to domain directory ...
t...@uncon.org wrote: > Quoting Eric Shubert : > >> Anthony Ercolano wrote: >>> Well I think I might have my own answer to my question. >>> >>> It *appears* as though the messages that weren't getting graylisted were >>> sent using tls. >>> >> Very interesting. Upon what are you basing this observation? >> > > It depends upon where you implement your TLS. If your qmail implements > TLS, and spamdyke passes it through, then spam over TLS will get > through. > > -trog Good catch, trog. I'd bet that's exactly what's happening. Anthony, see http://spamdyke.org/documentation/README.html#TLS If you add: tls-certificate-file=/var/qmail/control/servercert.pem tls-level=smtp to your spamdyke configuration, that should fix your problem, providing that you compiled spamdyke with TLS support. -- -Eric 'shubes' ___ spamdyke-users mailing list spamdyke-users@spamdyke.org http://www.spamdyke.org/mailman/listinfo/spamdyke-users