Hello all,
I am looking for the correct way to add postgrey to my system but whitelist everything except for com, org, and net domains. Most of my spam is from .info domains.
There seems to be no way to only go after certain domains, instead postgrey wants to go after everything except what you whitelist.
So my idea was to whitelist .com, .net, .org, .gov, and a few others while greylisting the rest. The syntax for the files want fqdn, email addresses, or domain names. But How do you just add a .TLD?
postgrey_whitelist_clients ??
*.com *.net *.org ??
this sound right?
On 3/25/2012 1:37 PM, Bob Hoffman wrote:
Hello all,
I am looking for the correct way to add postgrey to my system but whitelist everything except for com, org, and net domains. Most of my spam is from .info domains.
There seems to be no way to only go after certain domains, instead postgrey wants to go after everything except what you whitelist.
So my idea was to whitelist .com, .net, .org, .gov, and a few others while greylisting the rest. The syntax for the files want fqdn, email addresses, or domain names. But How do you just add a .TLD?
postgrey_whitelist_clients ??
*.com *.net *.org ??
this sound right? _______________________________________________ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
believe I got this working, anyone interested here is what I did so far
1- get the repo rpmforge rpm -Uvh http://packages.sw.be/rpmforge-release/rpmforge-release-0.5.2-2.el6.rf.x86_6...
2 limit forge to just the packages needed /etc/yum.repos.d/rpmforge.repo add line, just under enabled=1 includepkgs=postgrey perl-net-server perl-parse-syslog perl-BerkeleyDB perl-IO-multiplex
3 yum install postgrey
4 make a new file, /etc/sysconfig/postgrey add OPTIONS="--unix=/var/spool/postfix/postgrey/socket --delay=60" save, close
5 added to /etc/postfix/postgrey_whitelist_clients /^.com$/ /^.org$/ /^.gov$/ /^.net$/ /^.mil$/ /^.edu$/
(this file is full of junk from previous years, considering deleting it all except for above)
6 add to main.cf, above my rbls but under the auth reject stuff so it is last before them (though maybe it could be absolutely last, might be better) check_policy_service unix:postgrey/socket
7 service postgrey start, postfix reload, chkconfig postgrey on
Just checked my mail server. Getting a lot of .info spam, but I'm thinking a reject .info is in order. :)
Regards…
On Mar 25, 2012, at 3:16 PM, Bob Hoffman bob@bobhoffman.com wrote:
On 3/25/2012 1:37 PM, Bob Hoffman wrote:
Hello all,
I am looking for the correct way to add postgrey to my system but whitelist everything except for com, org, and net domains. Most of my spam is from .info domains.
There seems to be no way to only go after certain domains, instead postgrey wants to go after everything except what you whitelist.
So my idea was to whitelist .com, .net, .org, .gov, and a few others while greylisting the rest. The syntax for the files want fqdn, email addresses, or domain names. But How do you just add a .TLD?
postgrey_whitelist_clients ??
*.com *.net *.org ??
this sound right? _______________________________________________ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
believe I got this working, anyone interested here is what I did so far
1- get the repo rpmforge rpm -Uvh http://packages.sw.be/rpmforge-release/rpmforge-release-0.5.2-2.el6.rf.x86_6...
2 limit forge to just the packages needed /etc/yum.repos.d/rpmforge.repo add line, just under enabled=1 includepkgs=postgrey perl-net-server perl-parse-syslog perl-BerkeleyDB perl-IO-multiplex
3 yum install postgrey
4 make a new file, /etc/sysconfig/postgrey add OPTIONS="--unix=/var/spool/postfix/postgrey/socket --delay=60" save, close
5 added to /etc/postfix/postgrey_whitelist_clients /^.com$/ /^.org$/ /^.gov$/ /^.net$/ /^.mil$/ /^.edu$/
(this file is full of junk from previous years, considering deleting it all except for above)
6 add to main.cf, above my rbls but under the auth reject stuff so it is last before them (though maybe it could be absolutely last, might be better) check_policy_service unix:postgrey/socket
7 service postgrey start, postfix reload, chkconfig postgrey on
CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
On 3/25/2012 4:14 PM, Mailinglist wrote:
Just checked my mail server. Getting a lot of .info spam, but I'm thinking a reject .info is in order. :)
Regards… ists.centos.org/mailman/listinfo/centos
this regex seemed to work
/.*.com$/ /.*.org$/ /.*.gov$/ /.*.net$/ /.*.mil$/ /.*.edu$/
postgrey[14740]: action=pass, reason=client whitelist, client_name=mail.centos.org, client_address=72.26.200.202
and it came up on other net, com, etc
so, think that is WAI
On 3/25/2012 3:16 PM, Bob Hoffman wrote:
believe I got this working, anyone interested here is what I did so far
1- get the repo rpmforge rpm -Uvh http://packages.sw.be/rpmforge-release/rpmforge-release-0.5.2-2.el6.rf.x86_6...
2 limit forge to just the packages needed /etc/yum.repos.d/rpmforge.repo add line, just under enabled=1 includepkgs=postgrey perl-net-server perl-parse-syslog perl-BerkeleyDB perl-IO-multiplex
3 yum install postgrey
4 make a new file, /etc/sysconfig/postgrey add OPTIONS="--unix=/var/spool/postfix/postgrey/socket --delay=60" save, close
5 added to /etc/postfix/postgrey_whitelist_clients /^.com$/ /^.org$/ /^.gov$/ /^.net$/ /^.mil$/ /^.edu$/
<snip>
check that...did not whitelist the domains, centos.org got greylisted. Either it is the wrong way to regex that statement within postgrey or there needs to be more added regarding the triplet (ipaddress, domain, sender)...not sure.
probably regex is wrong, I am certainly no expert, or even a novice, of it.
Am 25.03.2012 22:23, schrieb Bob Hoffman:
On 3/25/2012 3:16 PM, Bob Hoffman wrote:
5 added to /etc/postfix/postgrey_whitelist_clients /^.com$/ /^.org$/ /^.gov$/ /^.net$/ /^.mil$/ /^.edu$/
<snip>
check that...did not whitelist the domains, centos.org got greylisted. Either it is the wrong way to regex that statement within postgrey or there needs to be more added regarding the triplet (ipaddress, domain, sender)...not sure.
probably regex is wrong, I am certainly no expert, or even a novice, of it.
Bob,
2 things:
- You should take this to a list / forum where it is more appropriate to discuss setting that kind of things up. postgrey has a mailing list and as you learn to handle Postfix you may subscribe to the Postfix list.
- You can be very sure that your regex in postgrey_whitelist_clients is wrong and does nothing useful. Have you ever seen a host with DNS name ".com"? Would you ever? No, of course not. You define the whitelisted client names to start with a dot and to end with the TLD right after the dot.
Alexander
-
Alexander Dalloz -
Bob Hoffman -
Mailinglist