-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
On Sun, 15 Mar 2015 14:53:30 -0400, Anonymous wrote in
Message-Id: <
63lbgalum7grqcpqv...@news.stray.cat.edu>:
> Hard to say what's being done, but mail for arbitrary known to be good
> usernames is not being relayed, just that for the published remailer
> addresses, so it's not blanket relay for the entire domains. And here
> is probably at least two ways to do that. Zax knows for sure :)
Amazing how much interest there seems to be in this topic! Here are all
the details. :)
In postfix
main.cf:
smtpd_relay_restrictions =
permit_mynetworks,
permit_sasl_authenticated,
check_recipient_access hash:/etc/postfix/remailer_access,
reject_unauth_destination
The remailer_access file has lots of lines, like this:
an...@anonusa.net OK
The list of remailers is produced using this script:
#!/bin/bash
grep \$remailer $1 \
| cut -f 2 -d \< \
| cut -f 1 -d \> \
| xargs printf "%-60s OK\n"
That script is called from cron.daily by this script:
#!/bin/bash
SCRIPT=/usr/local/bin/remailer-relays
DEST=/etc/postfix/remailer_access
MLIST=/home/echolot4/echolot/results/mlist2.txt
$SCRIPT $MLIST > $DEST
/usr/sbin/postmap $DEST
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
iQIcBAEBCAAGBQJVBp4iAAoJEC3jHKG+PvqnNxAP/i954nnp7HeAzJsob1EBoHCk
jvk1BOp4wCMP5TKllrlLInY+A24XSgH33jMulv2Ewha2RYNUuoJwtBuchUBhQBL+
TihLWogxWnm/SM3soHcVQ6crJMCCeV95pvWyfIx/yqr34igQjW9S/CEmG9+2fn2S
j/kpFULVQZUqGnn1UurO8b0VCVBuiv91u9HVOO+3QMBGTEyw/A+EGGu+R7jjt1g/
8zh5CN7yIyNEOiTSvaNiT9n52aQWKzWt7gGOjERlwj5jsfsSLNBMQPSKwezIgz88
1rbChPPQLa9CDnLDpkPSCTNQKWs6jVeb1WIn1cqhZuX63yGLccHjaq6Wf8NcLXGT
uTqVJXtMPrBk6l4AVAJcntyloTdYN7H2xJR/LlpcrT0zEMr2ySqNFHs8itndHtVN
JU0otDGWmn6jpgxthYlzHerXJsSroB1I7iVRkCupQ5MTuw6nYFufAn46K4+59uMo
1N3Lou1posUXmN9huJtwHry/GEjhu2E0XMckzdZ1YkSKEi4dxdf4F8dr9eE/T9Wh
Gn6ioqdTEG5Dm1yvhd9EXwT8NXqv9k4dikVJDXQPucH94OWZNm+2gRYN0ua8bhWL
Tj2pg0v+GS7LTMNYL0nX6BXc1nY7Cta2nkRoAs3zRpgHd/WNPlb/LTvQZqo1Z/tG
azGPhe/YZmxuxMtf/+ez
=RqNP