NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Postfix Discussion> 2005-10

Re: A Question About "check_client_access"

From: Rich Shepard (rshepardappl-ecosys.com)
Date: Wed Oct 12 2005 - 10:56:42 CDT

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, 12 Oct 2005, /dev/rob0 wrote:

> "postmap -q ip.add.re.ss hash:/etc/postfix/badip" tells you whether

Rob0,

In badip I have the equivalent of the first two bytes, ip.add; I don't have
all the re.ss within that block. This works 99% of the time, but occasionally
fails. I'm trying to understand the failures.

> postmap.1.html has details. access.5.html explains the format of access
> table lookups. For a list of IP addresses you might also want to
> consider the cidr format: cidr_table(5), cidr_table.5.html.

I've considered converting the whole file to a cidr table, but that's a lot
of work.

> But wait, Rich, there's more ... I am going to lead you to The Fountain of
> Postfix Knowledge. When you installed your Postfix did you enter a value
> for html_directory ? You should have. For Slackware "/usr/share/postfix"
> would be an appropriate choice, or put that under "/usr/local". Make a
> symlink from that into your apache DocumentRoot ("/var/www/htdocs" in
> Slackware.) Bookmark it (http://yourhost/postfix) in your browser, refer to
> it often.

No, no html_directory. I much prefer dead tree versions of docs, or pdf
files.

> It gets better! Well, no, not really. But I want to tell you about the one
> document which helped me start to put all the pieces together in my mind:
> http://jimsun.linxnet.com/misc/postfix-anti-UCE.txt

I've had restrictions working for several years now, but I'm gaining
greater insight from "The Book of Postfix". So far, I've read the first 10
chapters. I've tuned the smtp restrictions based on what I've learned; the
badip map has been in place a long time.

Thanks,

Rich

--
Dr. Richard B. Shepard, President | Author of "Quantifying Environmental
Applied Ecosystem Services, Inc. (TM) | Impact Assessments Using Fuzzy Logic"
<http://www.appl-ecosys.com> Voice: 503-667-4517 Fax: 503-667-8863

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]