Re: [xmail] Enabling SPF howto?

Wed, 28 Jan 2009 19:40:36 -0800 

Davide Libenzi wrote:

On Thu, 29 Jan 2009, Ralf wrote:


fred wrote:
It might help you but this is the script that I have made / use: http://xmailforum.homelinux.net/index.php?showtopic=4260 
Tnanks fred,

but per our security policy I can use only C/C++ source and
bash or perl scripts. But especially php and python aren't allowed
on the Linux boxes where our mail servers run.
I really don't remember. I only briefly used it, given its complete failure to stop anything. 
You prolly want to use  filters.post-rcpt.tab  with something like:

"!aex"[TAB]"PATH/xm-spf.pl"[TAB]"--ip"[TAB]"$(REMOTEADDR)"[TAB] \
  "--sender"[TAB]"$(FROM)"[TAB]"--rcpt-to"[TAB]"$(CRCPT)"
Where [TAB] is the *real* TAB character, and that's a single line (' \ ') trimmed. 
I cannot ensure you any success though :)


Thanks, will try it out.

Here are some examples of SPF catches by my other mail server.
It shows that SPF indeed catches spammers who misusingly
use the same domain name of the destination mail server or
of the To-adress for their own machine to trick the mail server
to believe he is from the same domain...

SPF is not a spam solution, it just checks whether the
sending machine has been authorized (via DNS SPF/TXT record)
to send mail for that domain. So it catches those spammers
who illegally use other domain names in their own hostname / mail domain name...

Log excerpt:
Received-SPF: softfail (srv3.amitrader.com: transitioning SPF record at blue.plala.or.jp does not designate 92.39.220.216 as permitted sender) Received-SPF: softfail (srv3.amitrader.com: transitioning SPF record at dvdownunder.com.au does not designate 91.124.168.23 as permitted sender) 
Received-SPF: softfail (srv3.amitrader.com: transitioning SPF record at msn.com 
does not designate 213.21.33.60 as permitted sender)

The return values (above "softfail"; there are some more) can help
to decide whether to accept or reject mail from such a sender...
In the above cases my mail server rejected to accept mail from those spammers.

BTW, here is your own SPF entry:  :-)

Received-SPF: pass (srv3.amitrader.com: SPF record at xmailserver.org 
designates 64.71.152.41 as permitted sender)



Received: (qmail 23732 invoked from network); 29 Jan 2009 03:18:32 +0100
Received: from x35.xmailserver.org (64.71.152.41)
  by srv3.amitrader.com with (DHE-RSA-AES256-SHA encrypted) SMTP; 29 Jan 2009 
03:18:32 +0100
Received-SPF: pass (srv3.amitrader.com: SPF record at xmailserver.org 
designates 64.71.152.41 as permitted sender)
Received: from x35.xmailserver.org ([::ffff:127.0.0.1]:50052)
        by x35.xmailserver.org with [XMail 1.26 ESMTP Server]
        id <S2CB6CA> for <r...@amitrader.com> from 
<xmail-boun...@xmailserver.org>;
        Wed, 28 Jan 2009 21:17:44 -0500
X-AuthUser: davi...@xmailserver.org
Received: from alien.or.mcafeemobile.com
        by x35.xmailserver.org with [XMail 1.26 ESMTP Server]
        id <S2CB6C7> for <xmail@xmailserver.org> from <davi...@xmailserver.org>;
        Wed, 28 Jan 2009 21:17:29 -0500
Date: Wed, 28 Jan 2009 18:17:28 -0800 (PST)
From: Davide Libenzi <davi...@xmailserver.org>
X-X-Sender: dav...@alien.or.mcafeemobile.com
To: XMail Users Mailing List <xmail@xmailserver.org>
In-Reply-To: <49810ea6.4090...@amitrader.com>
Message-ID: <alpine.deb.1.10.0901281810160.21...@alien.or.mcafeemobile.com>
References: <4980fb23.6070...@amitrader.com>
        <alpine.deb.1.10.0901281704560.21...@alien.or.mcafeemobile.com>
        <49810994.4020...@amitrader.com>
        <004901c981b3$9abf30c0$d03d92...@com>
        <49810ea6.4090...@amitrader.com>
User-Agent: Alpine 1.10 (DEB 962 2008-03-14)
X-GPG-FINGRPRINT: CFAE 5BEE FD36 F65E E640  56FE 0974 BF23 270F 474E
X-GPG-PUBLIC_KEY: http://www.xmailserver.org/davidel.asc
MIME-Version: 1.0
Subject: Re: [xmail] Enabling SPF howto?
X-BeenThere: xmail@xmailserver.org
X-Mailman-Version: 2.1.11
Precedence: list
Reply-To: XMail Users Mailing List <xmail@xmailserver.org>
List-Id: XMail Users Mailing List <xmail.xmailserver.org>
List-Unsubscribe: <http://xmailserver.org/mailman/options/xmail>,
        <mailto:xmail-requ...@xmailserver.org?subject=unsubscribe>
List-Archive: <http://xmailserver.org/pipermail/xmail>
List-Post: <mailto:xmail@xmailserver.org>
List-Help: <mailto:xmail-requ...@xmailserver.org?subject=help>
List-Subscribe: <http://xmailserver.org/mailman/listinfo/xmail>,
        <mailto:xmail-requ...@xmailserver.org?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: xmail-boun...@xmailserver.org
Errors-To: xmail-boun...@xmailserver.org

<snip>



_______________________________________________
xmail mailing list
xmail@xmailserver.org
http://xmailserver.org/mailman/listinfo/xmail

Reply via email to