|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
wish list: RBL processing on trusted Received IP addresses
postfix-users-mail
asthe.com
Date: Tue Sep 02 2003 - 04:10:42 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
I have anti-spam controls that work well for EMail that is being sent
direct to my site. I also have several sites that forward EMail to me
that cannot/will-not put similar anti-spam controls in their sites.
Other than the fact that their anti-spam controls are less strict,
these sites are well maintained. In particular I can trust the
Received: headers that these sites create.
It would be VERY helpful if I could give a list of trusted-clients:
trusted-clients =
hash:/etc/postfix/trusted-clients
Whenever client (site sending my server EMail) is one of those
'trusted-clients', then a set of anti-spam processing is perform on the
IP address that the trusted client placed into their Received; header.
For example:
trusted_client_restrictions =
check_client_access hash:/etc/postfix/sender-ip
reject_rbl_client blackholes.easynet.nl
reject_rbl_client cbl.abuseat.org
reject_rbl_client list.dsbl.org
reject_rbl_client opm.blitzed.org
reject_rbl_client sbl.spamhaus.org
In effect, the trusted_client_restrictions is performed on the IP address
found in the 2nd Received: header (the one after the Received: header
added by my site) whenever the client is one of the trusted-clients.
I realize that the trusted_client_restrictions would occur only after
the DATA/message was received, but that would still be a BIG help.
For example:
* trusted MX sites
If you trust your backup MX sites, you could add them to the
trusted-clients list. You could them perform RBL blocking on
IP address of the sites that sent you EMail through them.
* trusted mailing forwarding sites
You receive EMail on a site that forwards EMail to you (say via
.forward or some other mechanism). You could them perform RBL blocking on
IP address of the sites that send you EMail via this forwarding site.
Has something like this been done? Is anyone interested in implementing
(or helping implement) such a feature?
chongo (Landon Curt Noll) /\oo/\
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]