Per User Blacklist

permalink · 30/09/2006, 05h01

I've been searching around, and I can't find anything relavent.
I'm new to sendmail language, and run a small family webserver/mailserver.

I wish to implement and per-user blacklist, that is if UserA says he
doesn't want to recieve mail from address spam@spam.com or domain
spam.com, I don't want his blacklist to block mails going to UserB.

Orginally, I had just been adding to access map, but that affects
everybody. One family member has blacklisted monster.com because he's
sick of getting emails from them, an another brother has complained his
email from monster bounced. Glad it wasn't a job offer!

In general, this server doesn't recieve much spam, and I don't want the
hassle of 40 hours of reading to implement a full-scale spam solution,
I'm prettysure sendmail can do what I want it to with the rulesets, but
my attempts thus far have been futile.

Can anybody point me in the right direction here?

Thanks for any advice you can give me.

permalink · 30/09/2006, 06h04

73blazer wrote:
> I've been searching around, and I can't find anything relavent.
> I'm new to sendmail language, and run a small family webserver/mailserver.
>
> I wish to implement and per-user blacklist, that is if UserA says he
> doesn't want to recieve mail from address spam@spam.com or domain
> spam.com, I don't want his blacklist to block mails going to UserB.
>
> Orginally, I had just been adding to access map, but that affects
> everybody. One family member has blacklisted monster.com because he's
> sick of getting emails from them, an another brother has complained his
> email from monster bounced. Glad it wasn't a job offer!
>
> In general, this server doesn't recieve much spam, and I don't want the
> hassle of 40 hours of reading to implement a full-scale spam solution,
> I'm prettysure sendmail can do what I want it to with the rulesets, but
> my attempts thus far have been futile.
>
> Can anybody point me in the right direction here?
>
> Thanks for any advice you can give me.

Sorry:Version AIX5.3/8.13.4
Compiled with: DNSMAP LDAPMAP LOG MAP_REGEX MATCHGECOS MILTER MIME7TO8
MIME8TO7 NAMED_BIND NDBM NETINET NETUNIX NEWDB NIS NISPLUS
PIPELINING SCANF USERDB USE_LDAP_INIT USE_TTYPATH XDEBUG

My Sendmail specs:

permalink · 30/09/2006, 06h49

73blazer wrote:
> I've been searching around, and I can't find anything relavent.
> I'm new to sendmail language, and run a small family webserver/mailserver.
>
> I wish to implement and per-user blacklist, that is if UserA says he
> doesn't want to recieve mail from address spam@spam.com or domain
> spam.com, I don't want his blacklist to block mails going to UserB.
>
> Orginally, I had just been adding to access map, but that affects
> everybody. One family member has blacklisted monster.com because he's
> sick of getting emails from them, an another brother has complained his
> email from monster bounced. Glad it wasn't a job offer!
>
> In general, this server doesn't recieve much spam, and I don't want the
> hassle of 40 hours of reading to implement a full-scale spam solution,
> I'm prettysure sendmail can do what I want it to with the rulesets, but
> my attempts thus far have been futile.
>
> Can anybody point me in the right direction here?
>
> Thanks for any advice you can give me.

Strictly speaking, this is not really a sendmail issue - sendmail is
an MTA that philosophically stays out of the business of what's in
the email payload or who it's from. It does have some limited
abilities in this area, primarily in getting rid of stuff that
is not protocol conformant or that is trying to swamp your system.
See these options for your access file:

GreetPause
ClientRate
ClientConn

However, a variety of tools work in harmony with sendmail to thwart
spam. One of the best combinations out there is MailScanner working with
SpamAssassin:

http://www.mailscanner.info/

In and of itself, this (I don't believe) will give you per-user
blacklisting (I could be wrong - I've never tried that, and MailScanner
has pretty sophisticated rule-based stuff you possibly could use for
this purpose, I dunno). For that, many people recommend procmail:

http://pm-doc.sourceforge.net/

Although sendmail itself does not attempt to meddle with email
payloads or scan source addresses, it works very nicely with
so-called "blackhole lists". Look at the 'dnsbl' feature
described at:

http://www.sendmail.org/m4/features.html

This should be a pretty good start. For the record, I use only
MailScanner, SpamAssassin, and clamav (for virus suppression),
and they work marvelously, so I've not bothered fiddling with
per user blacklisting myself. If I had to, I'd look into integrating
procmail into that mix. MailScanner is an excellent general purpose
"harness" for doing these sorts of things, and is probably the first
place to get started.

HTH,
----------------------------------------------------------------------------
Tim Daneliuk tundra@tundraware.com
PGP Key: http://www.tundraware.com/PGP/

permalink · 30/09/2006, 09h29

In comp.mail.sendmail 73blazer <73blazer@yoyoma.com>:
> I've been searching around, and I can't find anything relavent.
> I'm new to sendmail language, and run a small family webserver/mailserver.

> I wish to implement and per-user blacklist, that is if UserA says he
> doesn't want to recieve mail from address spam@spam.com or domain
> spam.com, I don't want his blacklist to block mails going to UserB.

Generally not a sendmail issue. There are several possibilities,
mailscanner as already pointed out might be just what you want,
it can integrate SA (SpamAssassin) and AV scanner(s) into
receiving/delivering mail with various MTA.

http://www.mailscanner.info/

Mailwatch is a http frontend and should allow to set up per user
blacklist, if you have those user local on the MTA:

http://mailwatch.sourceforge.net/

Iirc you can teach per user bayes with it, which is a safer
approach then just blacklisting.

In general tossing spam as early as possible (rejecting during
smtp time) is the best way. One of the best approaches today
needing minimal resources would be greylisting. If possible
adaptive during smtp time, though I am not aware of any other MTA
then exim (+sa-exim) providing adaptive greylisting.

Fighting spam needs careful MTA + SA setup, to keep legitimate
mail flow with lowest user impact possible. False positive are
hardly avoidable for a large enough user base these days. YMMV

Strange enough 80% of all spam comes from a few well known
people, there seem just zero political volition to stop it. You
can find those dudes, most with pictures if you check out the
ROSKO list:

http://www.spamhaus.org/

Good luck

--
Michael Heiming (X-PGP-Sig > GPG-Key ID: EDD27B94)
mail: echo zvpunry@urvzvat.qr | perl -pe 'y/a-z/n-za-m/'
#bofh excuse 456: Noobs anywhere...

permalink · 30/09/2006, 10h03

73blazer <73blazer@yoyoma.com> writes:

> I've been searching around, and I can't find anything relavent.
> I'm new to sendmail language, and run a small family webserver/mailserver.
>
> I wish to implement and per-user blacklist, that is if UserA says he
> doesn't want to recieve mail from address spam@spam.com or domain
> spam.com, I don't want his blacklist to block mails going to UserB.
>
> Orginally, I had just been adding to access map, but that affects
> everybody. One family member has blacklisted monster.com because he's
> sick of getting emails from them, an another brother has complained
> his email from monster bounced. Glad it wasn't a job offer!
>
> In general, this server doesn't recieve much spam, and I don't want
> the hassle of 40 hours of reading to implement a full-scale spam
> solution, I'm prettysure sendmail can do what I want it to with the
> rulesets, but my attempts thus far have been futile.
>
> Can anybody point me in the right direction here?
>
> Thanks for any advice you can give me.

There had been check_local package that implemented such functionality
via sendmail.cf *ONLY*.
* It has never been included in sendmail.org distribution
* Its author has discontinued the support and the package site is
inaccessible
* AFAIK copies of the last public version are accessible on internet

--
[pl2en: Andrew] Andrzej Adam Filip : anfi@priv.onet.pl : anfi@xl.wp.pl

permalink · 30/09/2006, 13h07

73blazer wrote:

> I wish to implement and per-user blacklist, that is if UserA says he
> doesn't want to recieve mail from address spam@spam.com or domain
> spam.com, I don't want his blacklist to block mails going to UserB.

You can use a milter like MIMEDefang (http://www.mimedefang.org) to
do this very easily. Code up your rules in Perl.

Regards,

David.

permalink · 30/09/2006, 14h38

73blazer wrote:
> I've been searching around, and I can't find anything relavent.
> I'm new to sendmail language, and run a small family webserver/mailserver.
>
> I wish to implement and per-user blacklist, that is if UserA says he
> doesn't want to recieve mail from address spam@spam.com or domain
> spam.com, I don't want his blacklist to block mails going to UserB.
>
> Orginally, I had just been adding to access map, but that affects
> everybody. One family member has blacklisted monster.com because he's
> sick of getting emails from them, an another brother has complained his
> email from monster bounced. Glad it wasn't a job offer!
>
> In general, this server doesn't recieve much spam, and I don't want the
> hassle of 40 hours of reading to implement a full-scale spam solution,
> I'm prettysure sendmail can do what I want it to with the rulesets, but
> my attempts thus far have been futile.
>
> Can anybody point me in the right direction here?
>
> Thanks for any advice you can give me.

Thank you very much for all your detailed replies.
Yes I relaize this shouldn't be sendmails job.
I will investigate the tools presented to me here, I've not heard of a
couple of them.

permalink · 30/09/2006, 20h42

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Sat, 30 Sep 2006 00:01:50 -0400, 73blazer wrote:

> I've been searching around, and I can't find anything relavent. I'm new
> to
> sendmail language, and run a small family webserver/mailserver.

> I wish to implement and per-user blacklist, that is if UserA says he
> doesn't want to recieve mail from address spam@spam.com or domain
> spam.com, I don't want his blacklist to block mails going to UserB.

Possibly overkill for what you want, but
<http://www.five-ten-sg.com/dnsbl/> can easily do that.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.6 (GNU/Linux)

iD8DBQFFHsipL6j7milTFsERAmp3AJ4168PgoKzhL94LVY6PH+ 7d6GGxdQCeLWqS
OV4PxBqFkxvv91JRRYZjYs8=
=Q+Jc
-----END PGP SIGNATURE-----

30/09/2006, 05h01	#1 (permalink)
73blazer Messages: n/a Hébergeur:	Per User Blacklist I've been searching around, and I can't find anything relavent. I'm new to sendmail language, and run a small family webserver/mailserver. I wish to implement and per-user blacklist, that is if UserA says he doesn't want to recieve mail from address spam@spam.com or domain spam.com, I don't want his blacklist to block mails going to UserB. Orginally, I had just been adding to access map, but that affects everybody. One family member has blacklisted monster.com because he's sick of getting emails from them, an another brother has complained his email from monster bounced. Glad it wasn't a job offer! In general, this server doesn't recieve much spam, and I don't want the hassle of 40 hours of reading to implement a full-scale spam solution, I'm prettysure sendmail can do what I want it to with the rulesets, but my attempts thus far have been futile. Can anybody point me in the right direction here? Thanks for any advice you can give me.

30/09/2006, 06h04	#2 (permalink)
73blazer Messages: n/a Hébergeur:	Re: Per User Blacklist 73blazer wrote: > I've been searching around, and I can't find anything relavent. > I'm new to sendmail language, and run a small family webserver/mailserver. > > I wish to implement and per-user blacklist, that is if UserA says he > doesn't want to recieve mail from address spam@spam.com or domain > spam.com, I don't want his blacklist to block mails going to UserB. > > Orginally, I had just been adding to access map, but that affects > everybody. One family member has blacklisted monster.com because he's > sick of getting emails from them, an another brother has complained his > email from monster bounced. Glad it wasn't a job offer! > > In general, this server doesn't recieve much spam, and I don't want the > hassle of 40 hours of reading to implement a full-scale spam solution, > I'm prettysure sendmail can do what I want it to with the rulesets, but > my attempts thus far have been futile. > > Can anybody point me in the right direction here? > > Thanks for any advice you can give me. Sorry:Version AIX5.3/8.13.4 Compiled with: DNSMAP LDAPMAP LOG MAP_REGEX MATCHGECOS MILTER MIME7TO8 MIME8TO7 NAMED_BIND NDBM NETINET NETUNIX NEWDB NIS NISPLUS PIPELINING SCANF USERDB USE_LDAP_INIT USE_TTYPATH XDEBUG My Sendmail specs:

30/09/2006, 06h49	#3 (permalink)
Tim Daneliuk Messages: n/a Hébergeur:	Re: Per User Blacklist 73blazer wrote: > I've been searching around, and I can't find anything relavent. > I'm new to sendmail language, and run a small family webserver/mailserver. > > I wish to implement and per-user blacklist, that is if UserA says he > doesn't want to recieve mail from address spam@spam.com or domain > spam.com, I don't want his blacklist to block mails going to UserB. > > Orginally, I had just been adding to access map, but that affects > everybody. One family member has blacklisted monster.com because he's > sick of getting emails from them, an another brother has complained his > email from monster bounced. Glad it wasn't a job offer! > > In general, this server doesn't recieve much spam, and I don't want the > hassle of 40 hours of reading to implement a full-scale spam solution, > I'm prettysure sendmail can do what I want it to with the rulesets, but > my attempts thus far have been futile. > > Can anybody point me in the right direction here? > > Thanks for any advice you can give me. Strictly speaking, this is not really a sendmail issue - sendmail is an MTA that philosophically stays out of the business of what's in the email payload or who it's from. It does have some limited abilities in this area, primarily in getting rid of stuff that is not protocol conformant or that is trying to swamp your system. See these options for your access file: GreetPause ClientRate ClientConn However, a variety of tools work in harmony with sendmail to thwart spam. One of the best combinations out there is MailScanner working with SpamAssassin: http://www.mailscanner.info/ In and of itself, this (I don't believe) will give you per-user blacklisting (I could be wrong - I've never tried that, and MailScanner has pretty sophisticated rule-based stuff you possibly could use for this purpose, I dunno). For that, many people recommend procmail: http://pm-doc.sourceforge.net/ Although sendmail itself does not attempt to meddle with email payloads or scan source addresses, it works very nicely with so-called "blackhole lists". Look at the 'dnsbl' feature described at: http://www.sendmail.org/m4/features.html This should be a pretty good start. For the record, I use only MailScanner, SpamAssassin, and clamav (for virus suppression), and they work marvelously, so I've not bothered fiddling with per user blacklisting myself. If I had to, I'd look into integrating procmail into that mix. MailScanner is an excellent general purpose "harness" for doing these sorts of things, and is probably the first place to get started. HTH, ---------------------------------------------------------------------------- Tim Daneliuk tundra@tundraware.com PGP Key: http://www.tundraware.com/PGP/

30/09/2006, 09h29	#4 (permalink)
Michael Heiming Messages: n/a Hébergeur:	Re: Per User Blacklist In comp.mail.sendmail 73blazer <73blazer@yoyoma.com>: > I've been searching around, and I can't find anything relavent. > I'm new to sendmail language, and run a small family webserver/mailserver. > I wish to implement and per-user blacklist, that is if UserA says he > doesn't want to recieve mail from address spam@spam.com or domain > spam.com, I don't want his blacklist to block mails going to UserB. Generally not a sendmail issue. There are several possibilities, mailscanner as already pointed out might be just what you want, it can integrate SA (SpamAssassin) and AV scanner(s) into receiving/delivering mail with various MTA. http://www.mailscanner.info/ Mailwatch is a http frontend and should allow to set up per user blacklist, if you have those user local on the MTA: http://mailwatch.sourceforge.net/ Iirc you can teach per user bayes with it, which is a safer approach then just blacklisting. In general tossing spam as early as possible (rejecting during smtp time) is the best way. One of the best approaches today needing minimal resources would be greylisting. If possible adaptive during smtp time, though I am not aware of any other MTA then exim (+sa-exim) providing adaptive greylisting. Fighting spam needs careful MTA + SA setup, to keep legitimate mail flow with lowest user impact possible. False positive are hardly avoidable for a large enough user base these days. YMMV Strange enough 80% of all spam comes from a few well known people, there seem just zero political volition to stop it. You can find those dudes, most with pictures if you check out the ROSKO list: http://www.spamhaus.org/ Good luck -- Michael Heiming (X-PGP-Sig > GPG-Key ID: EDD27B94) mail: echo zvpunry@urvzvat.qr \| perl -pe 'y/a-z/n-za-m/' #bofh excuse 456: Noobs anywhere...

30/09/2006, 10h03	#5 (permalink)
Andrzej Adam Filip Messages: n/a Hébergeur:	Re: Per User Blacklist 73blazer <73blazer@yoyoma.com> writes: > I've been searching around, and I can't find anything relavent. > I'm new to sendmail language, and run a small family webserver/mailserver. > > I wish to implement and per-user blacklist, that is if UserA says he > doesn't want to recieve mail from address spam@spam.com or domain > spam.com, I don't want his blacklist to block mails going to UserB. > > Orginally, I had just been adding to access map, but that affects > everybody. One family member has blacklisted monster.com because he's > sick of getting emails from them, an another brother has complained > his email from monster bounced. Glad it wasn't a job offer! > > In general, this server doesn't recieve much spam, and I don't want > the hassle of 40 hours of reading to implement a full-scale spam > solution, I'm prettysure sendmail can do what I want it to with the > rulesets, but my attempts thus far have been futile. > > Can anybody point me in the right direction here? > > Thanks for any advice you can give me. There had been check_local package that implemented such functionality via sendmail.cf ONLY. * It has never been included in sendmail.org distribution * Its author has discontinued the support and the package site is inaccessible * AFAIK copies of the last public version are accessible on internet -- [pl2en: Andrew] Andrzej Adam Filip : anfi@priv.onet.pl : anfi@xl.wp.pl

30/09/2006, 13h07	#6 (permalink)
David F. Skoll Messages: n/a Hébergeur:	Re: Per User Blacklist 73blazer wrote: > I wish to implement and per-user blacklist, that is if UserA says he > doesn't want to recieve mail from address spam@spam.com or domain > spam.com, I don't want his blacklist to block mails going to UserB. You can use a milter like MIMEDefang (http://www.mimedefang.org) to do this very easily. Code up your rules in Perl. Regards, David.

30/09/2006, 14h38	#7 (permalink)
73blazer Messages: n/a Hébergeur:	Re: Per User Blacklist 73blazer wrote: > I've been searching around, and I can't find anything relavent. > I'm new to sendmail language, and run a small family webserver/mailserver. > > I wish to implement and per-user blacklist, that is if UserA says he > doesn't want to recieve mail from address spam@spam.com or domain > spam.com, I don't want his blacklist to block mails going to UserB. > > Orginally, I had just been adding to access map, but that affects > everybody. One family member has blacklisted monster.com because he's > sick of getting emails from them, an another brother has complained his > email from monster bounced. Glad it wasn't a job offer! > > In general, this server doesn't recieve much spam, and I don't want the > hassle of 40 hours of reading to implement a full-scale spam solution, > I'm prettysure sendmail can do what I want it to with the rulesets, but > my attempts thus far have been futile. > > Can anybody point me in the right direction here? > > Thanks for any advice you can give me. Thank you very much for all your detailed replies. Yes I relaize this shouldn't be sendmails job. I will investigate the tools presented to me here, I've not heard of a couple of them.

30/09/2006, 20h42	#8 (permalink)
Carl Byington Messages: n/a Hébergeur:	Re: Per User Blacklist -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Sat, 30 Sep 2006 00:01:50 -0400, 73blazer wrote: > I've been searching around, and I can't find anything relavent. I'm new > to > sendmail language, and run a small family webserver/mailserver. > I wish to implement and per-user blacklist, that is if UserA says he > doesn't want to recieve mail from address spam@spam.com or domain > spam.com, I don't want his blacklist to block mails going to UserB. Possibly overkill for what you want, but <http://www.five-ten-sg.com/dnsbl/> can easily do that. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.6 (GNU/Linux) iD8DBQFFHsipL6j7milTFsERAmp3AJ4168PgoKzhL94LVY6PH+ 7d6GGxdQCeLWqS OV4PxBqFkxvv91JRRYZjYs8= =Q+Jc -----END PGP SIGNATURE-----

Outils de la discussion
Afficher une version imprimable Envoyer un lien vers cette page par email