spf-discuss
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Postfix and SPF question

2004-06-08 10:31:25
from [Jim Ramsay] [Permanent Link] 
This is a multi-part message in MIME format.
Here's an update:
- Fixed my TODO (recipient rewriting requires the 'formail' executable which is distributed with procmail at http://www.procmail.org)
- I had a typo in my usage instructions in my last post. (Missed a '|' character in the alias map), and a couple typos in the files themselves. 

To use:

- Put them both somewhere you'll remember
- Install the Mail::SRS module from CPAN and say "yes" to the 'srs' executable question
- Edit the "Settings" section in my scripts, and make sure the paths and settings are right for you, especially the 'delim' variable which MUST be the same as postfix's recipient_delimiter variable. 

- Set up an alias in your postfix $alias_maps or $alias_database as follows:
SRS0        |/path/to/srs-translate.sh

- Change any .forward files from:
email(_dot_)address(_at_)host(_dot_)com
to:
|"/path/to/srs-forward.sh email(_dot_)address(_at_)host(_dot_)com"

- Restart postfix

--
Jim Ramsay
"Me fail English?  That's unpossible!"

-------
Sender Policy Framework: http://spf.pobox.com/
Archives at http://archives.listbox.com/spf-discuss/current/
To unsubscribe, change your address, or temporarily deactivate your subscription, please go to http://v2.listbox.com/member/?listname=spf-discuss(_at_)v2(_dot_)listbox(_dot_)com
#!/bin/sh
#
# Un-forwards an SRS-bounce message to the proper recipient
#
# Copyright (c) 2004 Jim Ramsay <i(_dot_)am(_at_)jimramsay(_dot_)com>
# 
# This program is free software; you can redistribute it and/or
# modify it under the terms of the GNU General Public License
# as published by the Free Software Foundation; either version 2
# of the License, or (at your option) any later version.
# 
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
# 
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA  02111-1307, USA.
# 
# Usage:
# ------
#
# This is designed to be called by postfix's local(8) delivery program.
# For example, I use the following alias in my alias_maps to make it work:
#
# SRS0     |/path/to/srs-translate.sh
#
# Requires:
# ---------
#
# Depends on the 'srs' executable which is distributed with the perl 
# Mail::srs module by Shevek, available on CPAN.
#
# Recipient rewriting requires the 'formail' executable, destributed with 
# procmail, available at http://www.procmail.org
#

########################################################################
# Settings:

# - The postfix recipient_delimiter:
delim='+'
# - The location of the 'srs' program (comes with Mail::srs)
srsApp="/usr/bin/srs"
# - The secret parameter for 'srs' (see `srs --help` for more info)
#   (Should be --secret=secretstring or --secretfile=/path/to/secret)
secret="--secretfile=/etc/mail/srs/secret"
# - The path to the sendmail executable:
sendmail="/usr/sbin/sendmail"
# - The path to the formail executable:
#   (Set to an empty string to disable 'To:' header rewriting)
formail="/usr/bin/formail"

########################################################################
# Advanced Settings:

# - The commandline to run to convert the address
srs="$srsApp --reverse --separator=$delim $secret"
# - In postfix, the untranslated address is in RECIPIENT
raw_address=$RECIPIENT

########################################################################
# Program:

# Perform the translation
good_address=`$srs $raw_address`
  
if [ $? != 0 ]; then
  # SRS Rewrite failed for some reason
  exit 67
fi

if [ -x "$formail" ]; then
  # Rewrite the 'To:' header in the message and send it on
  exec $formail -i "To: $good_address" | $sendmail -f "$SENDER" $good_address
else
  # Rewrite was successful - send it on:
  exec $sendmail -f "$SENDER" $good_address
fi

-------
Sender Policy Framework: http://spf.pobox.com/
Archives at http://archives.listbox.com/spf-discuss/current/
To unsubscribe, change your address, or temporarily deactivate your 
subscription, 
please go to 
http://v2.listbox.com/member/?listname=spf-discuss(_at_)v2(_dot_)listbox(_dot_)com
#!/bin/sh
#
# Forwards an email, rewriting the sender using SRS.
#
# Copyright (c) 2004 Jim Ramsay <i(_dot_)am(_at_)jimramsay(_dot_)com>
#
# This program is free software; you can redistribute it and/or
# modify it under the terms of the GNU General Public License
# as published by the Free Software Foundation; either version 2
# of the License, or (at your option) any later version.
# 
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
# 
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA  02111-1307, USA.
#
# Usage:
# ------
#
#   srs-forward recipient_list
#
# This should be called from a postfix .forward file
#
# Instead of:
#   mail(_at_)otherserver(_dot_)com
# Put:
#   |"/path/to/srs-forward mail(_at_)otherserver(_dot_)com"
#
# Requires:
# ---------
#
# Depends on the 'srs' executable which is distributed with the perl 
# Mail::srs module by Shevek, available on CPAN.
#

########################################################################
# Settings:

# - The postfix recipient_delimiter:
delim='+'
# - The location of the 'srs' program (comes with Mail::srs)
srsApp="/usr/bin/srs"
# - The secret parameter for 'srs' (see `srs --help` for more info)
#   (Should be --secret=secretstring or --secretfile=/path/to/secret)
secret="--secretfile=/etc/mail/srs/secret"
# - The path to the sendmail executable:
sendmail="/usr/sbin/sendmail"
# - The hostname to appear on the right-hand side of the @ in the final result
#   (The default of `hostname` should be fine, unless you have set your
#    $myhost in postfix to something else)
aliasHost=`hostname`

########################################################################
# Advanced Settings:

# - The commandline to translate the address
srs="$srsApp --forward --separator=$delim --alias=$aliasHost $secret"
# - In postfix, the untranslated address is in SENDER
raw_address=$SENDER

########################################################################
# Program:

# Ensure we have at least one recipient
if [ $# == 0 ]; then
  basename=`basename $0`
  echo "Usage:"
  echo "    $basename recpipent_list"
  exit 1
fi

# Perform the translation
good_address=`$srs $raw_address`

if [ $? != 0 ]; then
  # SRS Rewrite failed for some reason
  exit 67
fi

# Rewrite was successful - send it on:
exec $sendmail -f $good_address "$@"
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  help with reference implementation, Philip Tucker
Next by Date:  Re: "fallback" domain list, Meng Weng Wong
Previous by Thread:  Re: Postfix and SPF question, Jim Ramsay
Next by Thread:  RE: Re: Postfix and SPF question, Gerhard W. Recher
Indexes:  [Date] [Thread] [Top] [All Lists]