Skip to content
GitLab
Explore
Sign in
Primary navigation
Search or go to…
Project
P
pymilter
Manage
Activity
Members
Labels
Plan
Issues
Issue boards
Milestones
Wiki
Code
Merge requests
Repository
Branches
Commits
Tags
Repository graph
Compare revisions
Snippets
Deploy
Releases
Container registry
Model registry
Monitor
Incidents
Analyze
Value stream analytics
Contributor analytics
Repository analytics
Model experiments
Help
Help
Support
GitLab documentation
Compare GitLab plans
GitLab community forum
Contribute to GitLab
Provide feedback
Keyboard shortcuts
?
Snippets
Groups
Projects
Show more breadcrumbs
misc
pymilter
Commits
806aa5a6
Commit
806aa5a6
authored
18 years ago
by
Stuart Gathman
Browse files
Options
Downloads
Patches
Plain Diff
Updated
parent
e84a803c
No related branches found
No related tags found
No related merge requests found
Changes
1
Show whitespace changes
Inline
Side-by-side
Showing
1 changed file
HOWTO
+28
-10
28 additions, 10 deletions
HOWTO
with
28 additions
and
10 deletions
HOWTO
+
28
−
10
View file @
806aa5a6
On Sun, 11 Feb 2007, Rick Saul wrote:
> Stuart I was planning to move to centos4.4 in a couple of weeks anyway...
> Your advice of where to go from here.
Oh - you are asking for a howto.
Step one. Which DSPAM is right for you?
Step one. Which DSPAM is right for you?
The DSPAM project makes dspam part of the LDA (Local Delivery Agent).
The DSPAM project makes dspam part of the LDA (Local Delivery Agent).
...
@@ -28,39 +35,42 @@ wish to install pydspam.
...
@@ -28,39 +35,42 @@ wish to install pydspam.
For basic pymilter you'll need:
For basic pymilter you'll need:
python-2.4
python-2.4
milter-0.8.
2 (the RH9 rpm should work on Fedora Core - let me know)
milter-0.8.
7
sendmail-8.13.x (with milter support enabled)
sendmail-8.13.x (with milter support enabled)
and for SPF you'll need:
and for SPF you'll need:
pydns-2.3.0-2.4
pydns-2.3.0-2.4
pyspf-2.0.3-2.py24
and for SRS you'll need:
and for SRS you'll need:
pysrs-0.30.
9
-1.py24
pysrs-0.30.
11
-1.py24
I'm pretty sure you will want to have SPF and SRS available.
I'm pretty sure you will want to have SPF and SRS available.
Step three. Activate basic milter.
Step three. Activate basic milter.
Activate the basic milter by editing /etc/mail/sendmail.mc and adding:
Activate the basic milter
and pysrs
by editing /etc/mail/sendmail.mc and adding:
define(`NO_SRS_FILE',`/etc/mail/no-srs-mailers')dnl
dnl define(`NO_SRS_FROM_LOCAL')dnl
HACK(`pysrs',`/var/run/milter/pysrs')dnl
INPUT_MAIL_FILTER(`pythonfilter', `S=local:/var/run/milter/pythonsock, F=T, T=C:5m;S:20s;R:5m;E:5m')
INPUT_MAIL_FILTER(`pythonfilter', `S=local:/var/run/milter/pythonsock, F=T, T=C:5m;S:20s;R:5m;E:5m')
You can then "make sendmail.cf" and restart sendmail.
You can then "make sendmail.cf" and restart sendmail.
Start milter and pysrs with "service milter start", "service pysrs start".
Tail /var/log/milter/milter.log while SMTP clients connect to your
Tail /var/log/milter/milter.log while SMTP clients connect to your
sendmail instance. This should show you what the milter is doing.
sendmail instance. This should show you what the milter is doing.
By default, milter-0.8.2 rejects on SPF fail, except for listed domains
By default, milter-0.8.7 rejects on SPF fail.
(that are known to be broken). Some admins don't like that, and 0.8.3 will use
the /etc/mail/access database to configure SPF responses. For now,
if you don't like SPF, you can disable spf by replacing "import spf"
with "spf = None" around line 285 in /var/log/milter/bms.py.
Step four. Tweaking the basic config.
Step four. Tweaking the basic config.
Most pymilter configuration is in /etc/mail/pymilter.cfg.
Most pymilter configuration is in /etc/mail/pymilter.cfg. To activate
changes, "service milter restart".
By default, milter scans attachments for executable extensions. You can
By default, milter scans attachments for executable extensions. You can
turn this off by setting banned_exts to the empty list. There are options
turn this off by setting banned_exts to the empty list. There are options
...
@@ -76,7 +86,9 @@ should also run pymilter with similar policies. (But this isn't
...
@@ -76,7 +86,9 @@ should also run pymilter with similar policies. (But this isn't
needed for initial testing.)
needed for initial testing.)
Configure internal_connect with subnets of your internal SMTP clients.
Configure internal_connect with subnets of your internal SMTP clients.
Internal connections skip SPF testing and other policies.
Internal connections skip SPF testing and other policies. You will
likely need to set this to allow outgoing mail if you have
an SPF policy already.
Configure internal_domains with domains used by your internal SMTP clients.
Configure internal_domains with domains used by your internal SMTP clients.
If they attempt to use any other domain, the attempt is blocked and the
If they attempt to use any other domain, the attempt is blocked and the
...
@@ -134,3 +146,9 @@ SRS config
...
@@ -134,3 +146,9 @@ SRS config
pydspam config
pydspam config
wiretap config
wiretap config
--
Stuart D. Gathman <stuart@bmsi.com>
Business Management Systems Inc. Phone: 703 591-0911 Fax: 703 591-6154
"Confutatis maledictis, flammis acribus addictis" - background song for
a Microsoft sponsored "Where do you want to go from here?" commercial.
This diff is collapsed.
Click to expand it.
Preview
0%
Loading
Try again
or
attach a new file
.
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Save comment
Cancel
Please
register
or
sign in
to comment