Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in
Simple guide to add "greylist" work with qmail
View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Documentation, Tips & Tricks
View previous topic :: View next topic  
Author Message
ismark
n00b
n00b


Joined: 29 Jun 2002
Posts: 40

PostPosted: Thu Jan 13, 2005 1:22 am    Post subject: Simple guide to add "greylist" work with qmail Reply with quote

INSTALL
(1) install mail server, please reference https://forums.gentoo.org/viewtopic.php?t=171499

(2) download "qgreylist" from http://www.jonatkins.com/qgreylist/qgreylist-0.2.tar.gz

(3) tar zxvf qgreylist-0.2.tar.gz

(4) cp greylist /var/qmail/bin

(5) mkdir /var/qmail/greylist

(6) chown qmaild:qmail /var/qmail/greylist

(7) nano -w /var/qmail/control/conf-smtpd
(7a) add QMAIL_SMTP_PRE="${QMAIL_SMTP_PRE} /var/qmail/bin/greylist" before QMAIL_SMTP_PRE="${QMAIL_SMTP_PRE} rblsmtpd -r relays.ordb.org"



TEST
(1) send mail from other mail server
(2) ls /var/qmail/greylist
(3) read log from /var/log/mail
Back to top
View user's profile Send private message
neenee
Veteran
Veteran


Joined: 20 Jul 2003
Posts: 1786

PostPosted: Thu Jan 13, 2005 8:07 am    Post subject: Reply with quote

hm. since i do not know what greylisting is, i looked it up:

Code:
Greylisting is a new method of blocking significant amounts of spam at the mailserver level, but without resorting to heavyweight statistical analysis or other heuristical (and error-prone) approaches. Consequently, implementations are fairly lightweight, and may even decrease network traffic and processor load on your mailserver.

Greylisting relies on the fact that most spam sources do not behave in the same way as "normal" mail systems. Although it is currently very effective by itself, it will perform best when it is used in conjunction with other forms of spam prevention. For a detailed description of the method, see the Whitepaper.

The term Greylisting is meant to describe a general method of blocking spam based on the behavior of the sending server, rather than the content of the messages. Greylisting does not refer to any particular implementation of these methods. Consequently, there is no single Greylisting product.


more info can be found here.
Back to top
View user's profile Send private message
ismark
n00b
n00b


Joined: 29 Jun 2002
Posts: 40

PostPosted: Thu Jan 13, 2005 10:14 am    Post subject: Reply with quote

It is SIMPLE but WORKABLE!!!!

After I apply it into my mail server, SPAM mail cut over 90%.
Back to top
View user's profile Send private message
thinair
Tux's lil' helper
Tux's lil' helper


Joined: 01 Nov 2002
Posts: 144
Location: Suisse

PostPosted: Fri Feb 25, 2005 2:35 pm    Post subject: Reply with quote

greylist with relay-ctrl :

greylist must be after QMAIL_SMTP_PRE="${QMAIL_SMTP_PRE} relay-ctrl-check"

like this :

QMAIL_TCPSERVER_PRE="${QMAIL_TCPSERVER_PRE} envdir /etc/relay-ctrl relay-ctrl-chdir"

QMAIL_SMTP_PRE="${QMAIL_SMTP_PRE} relay-ctrl-check"
QMAIL_SMTP_PRE="${QMAIL_SMTP_PRE} /var/qmail/bin/greylist"

_________________
http://www.gentoofr.org
Le site francophone de GNU/Linux Gentoo
Back to top
View user's profile Send private message
Xeper
n00b
n00b


Joined: 03 Jun 2003
Posts: 17
Location: Duisburg/Germany

PostPosted: Fri Apr 29, 2005 12:43 pm    Post subject: Reply with quote

Hi guys

I know this topic is quite old but is greylist still alive?
I tried to use it on my system but I do fail because of "syslog".
Here are the problems (this appeared in /var/log/qmail/qmail-smtpd/current):

Quote:

@400000004272285a061b703c getservbyname failed for tcp at /var/qmail/bin/greylist line 322
@400000004272285a062a933c unix dgram connect: No such file or directory at /var/qmail/bin/greylist line 322
@400000004272285a06389cfc stream /dev/conslog is not writable at /var/qmail/bin/greylist line 322
@400000004272285a0646606c console is not writable at /var/qmail/bin/greylist line 322
@400000004272285a0653be4c no connection to syslog available at /var/qmail/bin/greylist line 322


Well line 322 in /var/qmail/bin/greylist says: syslog "debug", "running cleanup" if $debugmsg;
I checked the existence of Sys::Syslog and also merged dev-perl/Unix-Syslog (dunno if its necessary).
So it has something to do with perl and the system logger - mine is metalog. I've no clue about perl so I cant say.

Has someone experiences this problem?
Here some infos about my System:

mail-mta/qmail-1.03-r13
app-admin/metalog-0.8_pre20031130
dev-lang/perl-5.8.5-r5
(my system is mostly "stable" branch)

If someone needs further information, just ask.
thanks
Back to top
View user's profile Send private message
mephman
n00b
n00b


Joined: 29 Aug 2002
Posts: 5
Location: Siegburg/Germany

PostPosted: Sat Apr 30, 2005 9:38 am    Post subject: Reply with quote

thinair wrote:
greylist with relay-ctrl :

greylist must be after QMAIL_SMTP_PRE="${QMAIL_SMTP_PRE} relay-ctrl-check"

like this :

QMAIL_TCPSERVER_PRE="${QMAIL_TCPSERVER_PRE} envdir /etc/relay-ctrl relay-ctrl-chdir"

QMAIL_SMTP_PRE="${QMAIL_SMTP_PRE} relay-ctrl-check"
QMAIL_SMTP_PRE="${QMAIL_SMTP_PRE} /var/qmail/bin/greylist"


Am I right, if I think this is the only possibility to control relay? Please correct me if I'm wrong, but greylisting breaks SMTP-AUTH. Since this is done later in chain.

Or ist there any possiblity to run greylisting only, if there isn't done a successful SMTP-AUTH?
Back to top
View user's profile Send private message
cerb
Tux's lil' helper
Tux's lil' helper


Joined: 28 Jun 2002
Posts: 89

PostPosted: Fri Aug 19, 2005 9:27 pm    Post subject: Reply with quote

the new qgreylist supports this option.

but i have another tricky question: my qmail apparently does not resend a message after it got greylisted by another server. it receives the 450 error and the immediately states "giving up on ..:" in the log. the mail simply vanishes - there is no error message, no mail to me saying that there was a delivery problem and no mail to the postmaster - the mail just disappears from the queue and is gone.

any suggestions??
_________________
Linux is a wigwam - no Windows, no Gates, Apache inside :-)
Back to top
View user's profile Send private message
Vieri
l33t
l33t


Joined: 18 Dec 2005
Posts: 870

PostPosted: Mon Jul 03, 2006 12:43 pm    Post subject: Reply with quote

There's an ebuild for qgreylist but it hasn't entered portage yet.

https://bugs.gentoo.org/show_bug.cgi?id=107361

Feedback in bugzilla appreciated.
Back to top
View user's profile Send private message
luker2701
n00b
n00b


Joined: 22 Jun 2006
Posts: 9

PostPosted: Tue Sep 26, 2006 3:57 pm    Post subject: Reply with quote

Quote:

(7) nano -w /var/qmail/control/conf-smtpd
(7a) add QMAIL_SMTP_PRE="${QMAIL_SMTP_PRE} /var/qmail/bin/greylist" before QMAIL_SMTP_PRE="${QMAIL_SMTP_PRE} rblsmtpd -r relays.ordb.org"

Why would one want to have greylisting before RBLs? Wouldn't it make more sense to block known open-relays first, then greylist any connection that gets past the RBLs?

Here's an excerpt of my /var/qmail/control/conf-smtpd file.
Code:

# You might want to use rblsmtpd with this, but you need to fill in a RBL
# server here first, see http://cr.yp.to/ucspi-tcp/rblsmtpd.html for more
# details
#QMAIL_SMTP_PRE="${QMAIL_SMTP_PRE} rblsmtpd -r RBL-SERVER"
QMAIL_SMTP_PRE="${QMAIL_SMTP_PRE} rblsmtpd -r relays.ordb.org"
QMAIL_SMTP_PRE="${QMAIL_SMTP_PRE} rblsmtpd -r list.dsbl.org"
QMAIL_SMTP_PRE="${QMAIL_SMTP_PRE} rblsmtpd -r dnsbl.sorbs.net"
QMAIL_SMTP_PRE="${QMAIL_SMTP_PRE} rblsmtpd -r sbl.spamhaus.org"

# Add greylisting if the IP makes it past the spam/open-relay lists.
QMAIL_SMTP_PRE="${QMAIL_SMTP_PRE} /var/qmail/bin/greylist"
Back to top
View user's profile Send private message
Vieri
l33t
l33t


Joined: 18 Dec 2005
Posts: 870

PostPosted: Tue Sep 26, 2006 6:00 pm    Post subject: Reply with quote

luker2701 wrote:

Why would one want to have greylisting before RBLs? Wouldn't it make more sense to block known open-relays first, then greylist any connection that gets past the RBLs?

The way I see it (correct me if I'm wrong) is that RBL lookups are "costly" networkwise. On the other hand, greylisting is "lightweight" and done locally. So that might explain the preferred order.
Back to top
View user's profile Send private message
tminos
n00b
n00b


Joined: 10 Apr 2002
Posts: 25
Location: California

PostPosted: Wed Sep 27, 2006 6:51 pm    Post subject: Reply with quote

I would recommend looking into qpsmtpd as well. Its a replace for qmail-smtpd written in Perl, and its very highly configurable and extensible. I was able to switch without any of the 10,000 clients I have ever noticing. The greylisting plugin it has along with its ability to call spamassassin over spamc/Unix socket reduced the load on my mailserver dramatically (I was using Qmail-Scanner). I have at least a dozen plugins I've written myself to make management and monitoring easier too--I'd highly recommend giving it a try.
Back to top
View user's profile Send private message
Vieri
l33t
l33t


Joined: 18 Dec 2005
Posts: 870

PostPosted: Wed Sep 27, 2006 7:34 pm    Post subject: Reply with quote

Looks interesting especially since it integrates SPF, grelisting, etc.
Would be nice to have an ebuild for this...;-)
Back to top
View user's profile Send private message
Martz
n00b
n00b


Joined: 04 Mar 2004
Posts: 72

PostPosted: Thu Sep 28, 2006 5:47 pm    Post subject: Reply with quote

I use greylisting with postfix and it rocks :D Excellent solution, although there are some downsides - like some silly MTAs out there dont retry mail, and pools of smtp servers like hotmail which dont send from the same IP or address block every time.

RBL should be done before greylisting, while expensive - it rejects known spam before checking for spam. Its logical from a spam filtering point, rather than cost. RBL + greylisting + requiring valid HELO will reduce a massive amount of spam.
Back to top
View user's profile Send private message
plazmid
n00b
n00b


Joined: 14 Dec 2007
Posts: 2

PostPosted: Fri Dec 14, 2007 6:46 am    Post subject: Re: Simple guide to add "greylist" work with qmail Reply with quote

ismark wrote:
INSTALL
(7) nano -w /var/qmail/control/conf-smtpd
(7a) add QMAIL_SMTP_PRE="${QMAIL_SMTP_PRE} /var/qmail/bin/greylist" before QMAIL_SMTP_PRE="${QMAIL_SMTP_PRE} rblsmtpd -r relays.ordb.org"


The problem is in the following: if greylist is set before rblsmtd, then it works fine, but the rblsmtpd check is not reached. In the same time, if greylist is set after rblsmtd, then both greylist and rblsmtpd works fine. What`s wrong? Any idea?

p.s. there isn`t anything about rblsmtpd in smtd logs (tail qmail/qmail-smtpd/current).

    @40000000476225fd22a05f4c tcpserver: ok 10843 :192.168.0.3:25 sita.openmoko.org:88.198.124.203::43014
    @40000000476225ff3212429c tcpserver: status: 2/40
    @40000000476225ff32146d4c tcpserver: pid 10849 from 88.198.124.203
    @40000000476225ff321fa84c tcpserver: ok 10849 :192.168.0.3:25 sita.openmoko.org:88.198.124.203::43025
    @40000000476226013303789c qmail-spp (vpopmail_check_recipient.sh) [10853]: xxx@xxx exists (vuserinfo).
    @40000000476226032fed7284 qmail-spp (vpopmail_check_recipient.sh) [10878]: xxx@xxx exists (vuserinfo).
    @40000000476226041cfb2aa4 tcpserver: end 10843 status 0
    @40000000476226041cfb2e8c tcpserver: status: 1/40
    @400000004762260518af05ec tcpserver: end 10849 status 0
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Documentation, Tips & Tricks All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum