On Wed, 25 Mar 1998, Timothy J Luoma wrote:
I use it with sendmail 8.8.8 and tcpwrapper every days and there is about
80% spam rejected :-) Sounds very good !
How does tcpwrapper know what hosts to allow/deny ? Do you have
sendmail : ALL
in /etc/hosts.allow and
sendmail : luserdomain.com,jerk.com,etc
in /etc/hosts.deny ?
This not really difficult to do such work ;-)
Here is my configuration :
You need first rblcheck 1.2 from http://www.xnet.com/~emarshal/rblcheck/
and just the following tricks ;-)
In your /etc/hosts.allow just add the following lines :
---8<---
sendmail: ALL: spawn /usr/local/bin/rblcheck -q %a && \
exec /usr/sbin/sendmail -bs || /bin/echo \\
"469 Connection refused. You are in my Black List !!!\r\b\r\n"
&& \
(safe_finger -l @%h 2>&1 | /bin/mail -s "%d-%h %u" root)
---8<---
In your /etc/inetd.conf just add this line :
smtp stream tcp nowait root /usr/sbin/tcpd /usr/sbin/sendmail -bs
And check that your sendmail is _not_ working as a daemon ;-) That's all
Also if you have huge queue you can add a /usr/sbin/sendmail -q in the
root crontab... This should help to send some waiting messages... ;-)
It think we can use this to wait for official 8.9.0 sendmail since there
is some cf/feature/rbl.m4 there... ;-)
/Xavier
--
Xavier Beaudouin - Network Administrator and Consultant
Phone/Fax/Linux Box (8N1) : +33 1 4734 3366
Cellular Phone : +33 6 6026 5108
Home Page : http://www.oav.net
Emails : kiwi(_at_)oav(_dot_)net, kiwi(_at_)kazar(_dot_)com,
kiwi(_at_)worldnet(_dot_)net
Les implications cogno-intellectuelles de ce message
n'impliquent que son auteur
--
"Life is like a bowl of soup with hairs floating on it. You have to
eat it nevertheless."
-- Flaubert