|
|
|
postfix:advance [2006/06/21 09:05]
greebo |
postfix:advance [2009/05/25 00:35]
|
| ====== Postfix advance lavel ====== | |
| |
| //see also article:// **[[postfix|Postfix]]**, **[[postfix:mx|Postifx as MX server]]** | |
| |
| ===== Getting rid off spam/virus mails ===== | |
| * http://www.policyd-weight.org/ | |
| * http://policyd.sourceforge.net/ | |
| * http://projects.puremagic.com/greylisting/ | |
| |
| ===== More RBL lists and stuff ===== | |
| |
| >> reject_rbl_client relays.ordb.org, | |
| >> reject_rbl_client relays.visi.com, | |
| >> reject_rbl_client sbl-xbl.spamhaus.com, | |
| >> reject_rbl_client sbl.spamhaus.com, | |
| >> reject_rbl_client xbl.spamhaus.com, | |
| >> reject_rbl_client hil.habeas.com, | |
| >> reject_rbl_client bl.spamcop.net, | |
| >> reject_rbl_client list.dsbl.org, | |
| >> reject_rbl_client combined.njabl.org, | |
| >> reject_rbl_client opm.blitzed.org, | |
| >> reject_rbl_client dnsbl.sorbs.net, | |
| >> reject_rbl_client dul.dnsbl.sorbs.net, | |
| >> reject_rbl_client cn-kr.blackholes.us, | |
| >> reject_rbl_client singapore.blackholes.us, | |
| >> reject_rbl_client malaysia.blackholes.us, | |
| >> reject_rbl_client nigeria.blackholes.us, | |
| >> reject_rbl_client cbl.abuseat.org, | |
| >> reject_rbl_client combined.njabl.org, | |
| >> reject_rbl_client dnsbl.ahbl.org, | |
| >> reject_rbl_client dynablock.njabl.org, | |
| >> reject_rbl_client l0.spews.dnsbl.sorbs.net, | |
| >> reject_rbl_sender relays.ordb.org, | |
| >> reject_rbl_sender relays.visi.com, | |
| >> reject_rbl_sender sbl-xbl.spamhaus.com, | |
| >> reject_rbl_sender sbl.spamhaus.com, | |
| >> reject_rbl_sender xbl.spamhaus.com, | |
| >> reject_rbl_sender hil.habeas.com, | |
| >> reject_rbl_sender bl.spamcop.net, | |
| >> reject_rbl_sender list.dsbl.org, | |
| >> reject_rbl_sender combined.njabl.org, | |
| >> reject_rbl_sender opm.blitzed.org, | |
| >> reject_rbl_sender dnsbl.sorbs.net, | |
| >> reject_rbl_sender dul.dnsbl.sorbs.net, | |
| >> reject_rbl_sender cn-kr.blackholes.us, | |
| >> reject_rbl_sender singapore.blackholes.us, | |
| >> reject_rbl_sender malaysia.blackholes.us, | |
| >> reject_rbl_sender nigeria.blackholes.us, | |
| >> reject_rbl_sender cbl.abuseat.org, | |
| >> reject_rbl_sender combined.njabl.org, | |
| >> reject_rbl_sender dnsbl.ahbl.org, | |
| >> reject_rbl_sender dynablock.njabl.org, | |
| >> reject_rbl_sender l0.spews.dnsbl.sorbs.net, | |
| >> reject_rhsbl_sender dsn.rfc-ignorant.org, | |
| >> reject_rhsbl_client blackhole.securitysage.com, | |
| >> reject_rhsbl_sender blackhole.securitysage.com, | |
| |
| ==== signature ==== | |
| If you haven't set it up, try this: | |
| (postfix: master.cf you can set up different ip addresses, aliases, and | |
| send 'local' email to one of them: | |
| |
| In this case, the default is to filter. | |
| But, if coming in through 127.0.0.1 (already filtered, amavis->postfix | |
| and back) no filter. | |
| |
| smtp inet n - n - - smtpd | |
| -o content_filter=dfilt: | |
| 127.0.0.1:smtp inet n - n - - smtpd | |
| |
| dfilt unix - n n - - pipe | |
| flags=Rq user=filter argv=/usr/local/etc/postfix/disclaimer -f | |
| ${sender} -- ${recipient} | |
| |
| ---/usr/local/etc/postfix/disclaimer is: | |
| # Localize these. | |
| INSPECT_DIR=/var/spool/filter | |
| SENDMAIL=/usr/sbin/sendmail | |
| |
| # Exit codes from <sysexits.h> | |
| EX_TEMPFAIL=75 | |
| EX_UNAVAILABLE=69 | |
| |
| # Clean up when done or when aborting. | |
| trap "rm -f in.$$" 0 1 2 3 15 | |
| |
| # Start processing. | |
| cd $INSPECT_DIR || { echo $INSPECT_DIR does not exist; exit | |
| $EX_TEMPFAIL; } | |
| |
| cat >in.$$ || { echo Cannot save mail to file; exit $EX_TEMPFAIL; } | |
| |
| /usr/local/bin/altermime --input=in.$$ --htmltoo \ | |
| --disclaimer=/var/amavis/etc/disclaimer.txt \ | |
| --xheader="X-Confidential-Material: Please visit | |
| http://www.secnap.com" || \ | |
| { echo Message content rejected; exit | |
| $EX_UNAVAILABLE; } | |
| |
| $SENDMAIL "$@" <in.$$ | |
| |
| exit $? | |
| |
| //TODO// | |
| |
| |
