From: Anthony Howe
Date: 2007-08-13 14:31:02 -0400
Subject: Re: milter-cli rules not working?

Kevin Kretz wrote:
> on 08/13/2007 01:26 PM Anthony Howe said the following:

> Here's the actual cf file:
> +daemon
> verbose=debug
> access-db=/etc/mail/cli-access.db



You need to specify the database type as a prefix. If you had simply 
used the default:


then it is smart enough to recognise access.db and try first hash, then 
btree database types. Once you change the file name of the path, you 
have to specify the database type as well, since the code does not 
trigger based on the file extension.

> Well, shouldn't either of the Connect/To: rules in place (not the 
> !*kevin@kretz.net*!) have REJECTed this message?

No. For the following reasons:

1. You changed the access-db entry, therefore all the sendmail access.db 
entries are NOT referenced since they typically live in another file 
(unless you duplicate them in the new file) and the milter only opens 
one access-db and that option appears to been incorrectly specified as 
stated above.

2. The access-db mappings have a precedence order. milter-cli-* tags 
have highest precedence. The documentation shows the precedence order 
within each SMTP state, though "milter-cli-Connect: REJECT" would 
have rejected, but the problem is in the access-db specification since 
it could not read your access.db file to start with.

