Hi, I attach a patch that fixes a crash. The crash can reproduce with the following greylist.conf: ... socket "inet:30025" user "nobody" ... Run...
6094
manu@...
Mar 23, 2013 1:51 am
... Right, but you implemented (c), which also has some merit, didn't you? Or did I miss something? (c) fail with error message if group cannot be found -- ...
6095
Kouhei Sutou
kou@...
Mar 23, 2013 5:39 am
Hi, In <1l0608p.1asgwu41srqp32M%manu@...> "Re: [milter-greylist] [PATCH] fix a crash bug by chown socket without group" on Sat, 23 Mar 2013 03:01:05...
6096
Bruncsak, Attila
attila.bruncsak@...
Mar 26, 2013 12:23 pm
Hello, I think the "clean" or "realclean" target of the make should remove the milter-greylist.spec since it is generated from milter-greylist.spec.in. Bests, ...
6097
manu@...
Mar 26, 2013 7:06 pm
... Right, I added that. -- Emmanuel Dreyfus http://hcpnet.free.fr/pubz manu@......
6098
Florin Grosu
fgrosu
Mar 28, 2013 11:00 am
Hello, I recently transferred milter-greylist from fedora11 server (installed from sources) to a debian squeeze server and I installed it from debian packages...
Hello: Does it work geoiplookup command from command line? I mean, what is the output of "geoiplookup 8.8.8.8" command? If it works, geoip looks well...
6101
Thomas Cameron
rhce_guy
Apr 8, 2013 3:20 am
Howdy - I've just implemented milter-greylist again, and I was curious as to whether there is any reporting available. I'd like to know how many or what...
6102
Jim Klimov
jimklimov@...
Apr 8, 2013 8:55 am
... The greylisting database file (/var/milter-greylist/greylist.db or somesuch in your system), should contain the current list of addresses in both grey and...
6103
Enrico Scholz
enscensc
Apr 8, 2013 7:03 pm
Thomas Cameron <thomas.cameron-NGNQ62rjTJDc+919tysfdA@...> ... greylisting does (still) a great job. But nolisting outperforms its. E.g. in ...
6104
manu@...
Apr 9, 2013 3:17 am
... It's odd that spammers did not yet adapt to nolisting, as it is really easy to work around. I wonder how long it will work. -- Emmanuel Dreyfus ...
6105
Peter Bonivart
peter_bonivart
Apr 9, 2013 7:02 am
... Couldn't you make the exact same argument about greylisting? After all they are very similar and all about if they resend or not. Nolisting to me is just a...
6106
Emmanuel Dreyfus
manu@...
Apr 9, 2013 7:08 am
... I do not think so. Working around greylisting means maintaining a queue. Since spammers use botnet, resources are free for them but they are not infinite. ...
6107
Jim Klimov
jimklimov@...
Apr 9, 2013 1:08 pm
... From our practice, I'd add that greylisting works to a large extent thanks to coupling with DNS RBLs, including dial-up RBL lists. While the message from...
6108
Emmanuel Dreyfus
manu@...
Apr 9, 2013 4:09 pm
... I address that by having user-configurable recipient-dependent greylisting delays. They can choose no greylisting, 15mn greylisting, 15mn greylisting + 12h...
6109
elrond421
May 18, 2013 6:49 pm
[Reviving an old discussion...] ... This would also make distribution maintaining easier. Parts of the file maintained by the distributor (socket location for...
6110
manu@...
May 19, 2013 1:43 am
... You need to monitor included file changes to detect configuration changes. Feel free to send a patch to the list. -- Emmanuel Dreyfus ...
6111
manu@...
May 19, 2013 5:12 am
Hi I am working on nsupdate support in milter-greylist, so that an action clause in an ACL can trigger a DNS update, which enables milter-greylist to feed a...
6112
Peter Bonivart
peter_bonivart
May 19, 2013 8:42 am
... A simple way would be not to change anything! If we change an included file we touch the greylist.conf-file ourselves to trigger a reload. I think those...
6113
Jim Klimov
jimklimov@...
May 19, 2013 9:17 am
... Well, I used dynamic DNS in our LAN to point a service name to recently-working instances of the service (i.e. "proxy" points to several SQUID instances if...
6114
Jim Klimov
jimklimov@...
May 19, 2013 9:27 am
I do use site-specific configurations (likely anyone does somehow) by creating a number of files named like "greylist-01-common.conf" and so on for manual...
6115
Peter Bonivart
peter_bonivart
May 19, 2013 9:37 am
... But TTL is for the client to decide if it should refresh it's cache or not (use cache or ask server again), it doesn't mean the record will expire on the...
6116
manu@...
May 19, 2013 11:03 am
... Yes, you are right. TTL is no expiration mechanism. -- Emmanuel Dreyfus http://hcpnet.free.fr/pubz manu@......
6117
Peter Bonivart
peter_bonivart
May 19, 2013 11:10 am
... Maybe the addition could be logged and the timestamp could be used by an external script to remove old entries. /peter...
6118
manu@...
May 19, 2013 2:23 pm
... That may be the easiest way. Using the greylisting database requires heavy refactoring, as the stored object is quite different from the current tuple. One...
6119
Peter Bonivart
peter_bonivart
May 19, 2013 2:39 pm
... Don't log the addition until you have actually done the nsupdate op, after that it's BINDs responsibility and it uses journaling for the transactions so it...
6120
manu@...
May 20, 2013 4:36 am
Here is milter-greylist-4.5.1 http://ftp.espci.fr/pub/milter-greylist/milter-greylist-4.5.1.tgz MD5 (milter-greylist-4.5.1.tgz) =...
6121
manu@...
May 20, 2013 4:39 am
... Another idea: for each A record stored, I can add a TXT record for the current date. For instance, for today may 20th, I blacklist 192.0.2.1 and 192.0.2.2....
6122
Jim Klimov
jimklimov@...
May 20, 2013 1:30 pm
... Hmm... I guess you're right. Still, it can be part of the expiration mechanism - if the server has the blacklist entry removed by the time of TTL...
