[milters] Archive

Lists Index Date Thread Search

Article: 1242
From: Quentin Campbell
Date: 2006-11-10 07:35:18 -0500
Subject: Milter-link whitelisting per recipient

Removal...........: milters-request@milter.info?subject=remove
More information..: http://www.milter.info/#Support
--------------------------------------------------------

I seem not to have properly understood the use of access file entries to
white/black-list using milter-link. I hope someone can put me right on
this.

I relay for a domain, 'northumbria.ac.uk', and want all mail to that
site filtered by milter-link except for a recipient who needs to be
whitelisted. He has also requested whitelisting from the DNSBL blocking
carried out by my Sendmail configuration.

In /etc/mail/access on cheviot51.ncl.ac.uk I thus have:

Connect:127.0.0.1               RELAY
# ...and to the domains we host
To:northumbria.ac.uk            RELAY
Connect:northumbria.ac.uk       RELAY
...
milter-ahead-To:northumbria.ac.uk       SKIP
milter-ahead-Connect:northumbria.ac.uk  SKIP
milter-link-To:northumbria.ac.uk        SKIP
milter-link-Connect:northumbria.ac.uk   SKIP
...
Spam:Postmaster@northumbria.ac.uk       FRIEND
milter-link-To:Postmaster@northumbria.ac.uk     OK
# Added at request of Debbie 11/02/05
# Users want to receive mail from *.ja & *.kr domains
Spam:tim.johnson@northumbria.ac.uk      FRIEND
milter-link-To:tim.johnson@northumbria.ac.uk    OK
...

After doing a "makemap hash access <access" with those contents in
'access' I see in the logs the following set of records for QID
kA94DPqC009308:

Nov  9 04:13:35 cheviot51 sendmail[9308]: kA94DPqC009308:
from=<maralecovin@argentina.sun.com>, size=1472, class=0, nrcpts=1,
msgid=<000001c703b3$b490db50$113ba8c0@twvffmx>, proto=SMTP, daemon=MTA,
relay=125-229-203-96.dynamic.hinet.net [125.229.203.96]
Nov  9 04:13:35 cheviot51 milter-link[30335]: 15816 kA94DPqC009308:
black listed URL host www.mitujunhertshieasde.com by .multi.surbl.org
Nov  9 04:13:35 cheviot51 sendmail[9308]: kA94DPqC009308: Milter: data,
reject=550 5.7.1 black listed URL host www.mitujunhertshieasde.com by
.multi.surbl.org
Nov  9 04:13:35 cheviot51 sendmail[9308]: kA94DPqC009308:
to=<tim.johnson@northumbria.ac.uk>, delay=00:00:03, pri=31472,
stat=black listed URL host www.mitujunhertshieasde.com by
.multi.surbl.org

So my whitelisting of 'tim.johnson@northumbria.ac.uk' for milter-link is
not operating as I expected. The permissions on /etc/mail/access.db are:

-rw-r-----  1 root smmsp 12288 Nov 10 08:16 access.db

and /etc/group has:

smmsp:x:51:milter

Milter-link must be reading /etc/mail/access.db OK for it to be
rejecting mail. 

Note that the FEATURE(`delay_checks', `friend') used to build
sendmail.cf along with the access file entry of
"Spam:tim.johnson@northumbria.ac.uk FRIEND" _is_ operating as expected. 

What is wrong with the milter-link entries in my 'access' file?

Thanks

Quentin


Lists Index Date Thread Search