Account Options

  1. Sign in
The old Google Groups will be going away soon, but your browser is incompatible with the new version.
Google Groups Home
« Groups Home
comp.mail.sendmail
+ new post
About this group
Subscribe to this group
This is a Usenet group - learn more
Compound access rules?
Options
There are currently too many topics in this group that display first. To make this topic appear first, remove this option from another topic.
There was an error processing your request. Please try again.
flag
   7 messages - Collapse all  -  Translate all to Translated (View all originals)
The group you are posting to is a Usenet group. Messages posted to this group will make your email address visible to anyone on the Internet.
Your reply message has not been sent.
Your post was successful
 
From:
To:
Cc:
Followup To:
Add Cc | Add Followup-to | Edit Subject
Subject:
Validation:
For verification purposes please type the characters you see in the picture below or the numbers you hear by clicking the accessibility icon. Listen and type the numbers you hear
 
david  
View profile  
 More options Aug 19 2005, 3:40 pm
Newsgroups: comp.mail.sendmail
From: "david" <dmgi...@spamcop.net>
Date: 19 Aug 2005 12:40:17 -0700
Local: Fri, Aug 19 2005 3:40 pm
Subject: Compound access rules?
Print | Individual message | Show original | Report this message | Find messages by this author
First off: A disclaimer ... what I'm requesting is fairly complex and I
don't really expect sendmail to be able to support it ... but I figure
it can't hurt to ask.

On to the question:

Is there any way to setup a 'compound' rule in either the access table
or a local_rule set?

The problem is this ... I'm getting a lot of mail that is perporting to
be from "supp...@mydomain.com" and "ad...@mydomain.com".  Obviously
these are viruses/works trying to propigate themselves.

What I would like to do is setup some rule that will reject mail if it
matches all of the following condition:

1. FROM domain is @mydomain.com
2. Connection is received on a specific network address (external
address, not internal)
2. FROM address does not exist as a real or aliased user

Thanks!

david


 
You must Sign in before you can post messages.
To post a message you must first join this group.
Please update your nickname on the subscription settings page before posting.
You do not have the permission required to post.
ynotssor  
View profile  
 More options Aug 20 2005, 1:19 am
Newsgroups: comp.mail.sendmail
From: "ynotssor" <ynots...@example.net>
Date: Fri, 19 Aug 2005 22:19:55 -0700
Local: Sat, Aug 20 2005 1:19 am
Subject: Re: Compound access rules?
Print | Individual message | Show original | Report this message | Find messages by this author
"david" <dmgi...@spamcop.net> wrote in message

news:1124480417.645982.283900@f14g2000cwb.googlegroups.com...

> First off: A disclaimer ... what I'm requesting is fairly complex and I
> don't really expect sendmail to be able to support it ... but I figure
> it can't hurt to ask.
[...]
> What I would like to do is setup some rule that will reject mail if it
> matches all of the following condition:

> 1. FROM domain is @mydomain.com
> 2. Connection is received on a specific network address (external
> address, not internal)
> 2. FROM address does not exist as a real or aliased user

The rejecting of email to unknown users is the default in sendmail. You
should probably undo whatever configuration changes you made to allow the
accepting of email to unknown users.

 
You must Sign in before you can post messages.
To post a message you must first join this group.
Please update your nickname on the subscription settings page before posting.
You do not have the permission required to post.
Kari Hurtta  
View profile  
 More options Aug 20 2005, 6:24 am
Newsgroups: comp.mail.sendmail
From: Kari Hurtta <hur...@attruh.keh.iki.fi>
Date: 20 Aug 2005 13:24:37 +0300
Local: Sat, Aug 20 2005 6:24 am
Subject: Re: Compound access rules?
Print | Individual message | Show original | Report this message | Find messages by this author

I do not think that sendmail rejects mail from  unknown users by default.

/ Kari Hurtta


 
You must Sign in before you can post messages.
To post a message you must first join this group.
Please update your nickname on the subscription settings page before posting.
You do not have the permission required to post.
Andrzej Adam Filip  
View profile  
 More options Aug 20 2005, 6:51 am
Newsgroups: comp.mail.sendmail
From: Andrzej Adam Filip <a...@priv.onet.pl>
Date: 20 Aug 2005 12:51:56 +0200
Local: Sat, Aug 20 2005 6:51 am
Subject: Re: Compound access rules?
Print | Individual message | Show original | Report this message | Find messages by this author

Points 1 and 2 can be achieved by publishing strong SPF record and
making your sendmail enforce it.

http://spf.pobox.com/

--
Andrzej [en:Andrew] Adam Filip a...@priv.onet.pl a...@xl.wp.pl
http://www.sendmail.org/faq/ http://anfi.homeunix.net/sendmail/


 
You must Sign in before you can post messages.
To post a message you must first join this group.
Please update your nickname on the subscription settings page before posting.
You do not have the permission required to post.
Claus Aßmann -no-copies-please  
View profile  
 More options Aug 20 2005, 10:36 am
Newsgroups: comp.mail.sendmail
From: Claus Aßmann <ca+sendmail(-no-copies-please)@mine.informatik.uni-kiel.de>
Date: Sat, 20 Aug 2005 14:36:33 +0000 (UTC)
Local: Sat, Aug 20 2005 10:36 am
Subject: Re: Compound access rules?
Print | Individual message | Show original | Report this message | Find messages by this author
Andrzej Adam Filip  wrote:

[fullquote removed]

> Points 1 and 2 can be achieved by publishing strong SPF record and
> making your sendmail enforce it.

And kiss forwarding good bye.

Why don't you suggest at least DK[IM] instead?

--
Note: please read the netiquette before posting. I will almost never
reply to top-postings which include a full copy of the previous
article(s) at the end because it's annoying, shows that the poster
is too lazy to trim his article, and it's wasting my time.


 
You must Sign in before you can post messages.
To post a message you must first join this group.
Please update your nickname on the subscription settings page before posting.
You do not have the permission required to post.
Claus Aßmann -no-copies-please  
View profile  
 More options Aug 20 2005, 11:36 am
Newsgroups: comp.mail.sendmail
From: Claus Aßmann <ca+sendmail(-no-copies-please)@mine.informatik.uni-kiel.de>
Date: Sat, 20 Aug 2005 15:36:57 +0000 (UTC)
Local: Sat, Aug 20 2005 11:36 am
Subject: Re: Compound access rules?
Print | Individual message | Show original | Report this message | Find messages by this author

david wrote:
> Is there any way to setup a 'compound' rule in either the access table
> or a local_rule set?

The latter can be used.

> What I would like to do is setup some rule that will reject mail if it
> matches all of the following condition:
> 1. FROM domain is @mydomain.com
> 2. Connection is received on a specific network address (external
> address, not internal)
> 2. FROM address does not exist as a real or aliased user

  3?

Wouldn't it be sufficient to just enforce the last condition?
sendmail X does that by default, for sendmail 8 you can try
something like this:

LOCAL_CONFIG
Kpasswd user -m -a@LOCALUSER
Kalias implicit -m -a@LOCALUSER /etc/mail/aliases
Klocal sequence alias passwd

LOCAL_RULESETS
SLocal_check_mail
R$*                     $: $>CanonAddr $1            canonify sender address
R$+<@$=w.>                $@ $>Localokmail $1          local: check user

SLocalokmail
R$+                     $: <?> $1
R<?> $- + $*              $: <?> $1
R<?> $+                   $: <@> $(local $1 $)
R$+@LOCALUSER           $@ OK
R$*                     $#error $@ 4.1.8 $: "450 Unknown user " $1
--
Note: please read the netiquette before posting. I will almost never
reply to top-postings which include a full copy of the previous
article(s) at the end because it's annoying, shows that the poster
is too lazy to trim his article, and it's wasting my time.


 
You must Sign in before you can post messages.
To post a message you must first join this group.
Please update your nickname on the subscription settings page before posting.
You do not have the permission required to post.
David Gibbs  
View profile  
 More options Aug 20 2005, 7:26 pm
Newsgroups: comp.mail.sendmail
From: David Gibbs <dmgi...@spamcop.net>
Date: Sat, 20 Aug 2005 18:26:48 -0500
Local: Sat, Aug 20 2005 7:26 pm
Subject: Re: Compound access rules?
Print | Individual message | Show original | Report this message | Find messages by this author

ynotssor wrote:
>>1. FROM domain is @mydomain.com
>>2. Connection is received on a specific network address (external
>>address, not internal)
>>2. FROM address does not exist as a real or aliased user
> The rejecting of email to unknown users is the default in sendmail. You
> should probably undo whatever configuration changes you made to allow the
> accepting of email to unknown users.

You misunderstood ... I want to reject mail that is *FROM* unknown users
on my system.  In other words ... FROM = ad...@mydomain.com, TO =
dmgi...@mydomain.com, SUBJECT = Your password has been reset, CONTENT =
virus.

The TO address, dmgi...@mydomain.com, does exist ... but the from
address, ad...@mydomain.com, does not exist.

david


 
You must Sign in before you can post messages.
To post a message you must first join this group.
Please update your nickname on the subscription settings page before posting.
You do not have the permission required to post.
End of messages
« Back to Discussions « Newer topic     Older topic »

Create a group - Google Groups - Google Home - Terms of Service - Privacy Policy
©2012 Google