NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Postfix Discussion> 2003-05

Re: filter framework (long-ish)

From: Colin Campbell (sgcccdccitec.qld.gov.au)
Date: Mon May 05 2003 - 17:35:28 CDT

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi,

On Fri, 2 May 2003 08:59:27 -0400 (EDT)
Victor.Duchovnimorganstanley.com wrote:

> On Fri, 2 May 2003, Colin Campbell wrote:
>
> > Forgive me for perpetuating this thread but I'm not sure that will provide
> > the functionality I would like to see. I would like to see some of the
> > functionality of smtpd's check_xxx_access replicated for filtering, namely:
> >
>
> You are not forgiven, but whatever the requirements are, the queue manager
> is simply not the place to add the requisite logic, and you are unable to
> see that the new functionality can be implemented in "cleanup" or in a new
> delivery agent, instead.
>
> Lose you fixation on the queue manager, it is scheduler not a policy
> engine, and you might get closer to solving the problem.

You're probably right. My "fixation" with qmgr stems rom applying the following
(faulty?) logic:

a) filtering (from access map FILTER and main.cf's content_filter) is currently
implemented as a transport override. Since the transport resolution happens in
qmgr, that seemed the place to add the filtering functionality I need. It never
occurred to me to suggest a major overhaul of postfix's structure (move address
resolution into cleanup).

b) the filtering I need has to satisfy the following criteria:

- mail that should be filtered MUST be filtered
- mail that should not be filtered MUST NOT be filtered

These criteria force filtering decisions to be after all address rewriting.
Filtering could therefore happen in cleanup daemon, provided there was a way to
modify the qmgr's transport resolution. It seemed easier to me to just add it
after transport resolution. It never ocurred to me write a new delivery agent so
the qmgr seemd to be the place to do it.

Anyway, that's enough on all of this. I'll leave you all alone now and
investigate doing what I need with one of:

- a modified smtpprox which unfortunatley loses information about the client;
I'll have to make that filtering decision based on the sender :-(

- a new filtering delivery agent

- a "shim" between qmgr and the delivery agents

Colin
--
Colin Campbell
Unix Support/Postmaster/Hostmaster
CITEC
+61 7 3227 6334

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]