Jeremiah Foster
2006-Sep-13 10:17 UTC
[Pkg-exim4-users] blacklisting not working despite following debian documentation
Hi there, I am trying to stop a domain name [rima-tde.net] from sending spam to my server. I am using the document /usr/share/doc/exim4-config/default-acl to set up my exim4.conf.template. It says; /etc/exim4/local_host_blacklist contains a list of IP addresses, networks and host names whose messages will be denied with the error message "locally blacklisted". This is a full exim 4 host list. Again, negative items can be used here, and there is also an explicit whitelist read in from /etc/exim4/local_host_whitelist, and whitelist entries override blacklistings. So my /etc/exim4/local_host_blacklist looks like this: rima-tde.net 80.25.220.24 Yet when I do this to fake a SMTP connection; exim -bh 80.25.220.24 The blacklisting fails. Here is the relevant snippet from the debugging output:>>> check hosts = ${ifexists{/etc/exim4/local_host_blacklist}{/etc/exim4/local_host_blacklist}{}}>>> no IP address found for host rima-tde.net (during SMTP connection from24.red-80-25-220.staticip.rima-tde.net (localhost) [ 80.25.220.24]) LOG: no IP address found for host rima-tde.net (during SMTP connection from 24.red-80-25-220.staticip.rima-tde.net (localhost) [ 80.25.220.24])>>> host in "/etc/exim4/local_host_blacklist"? no (failed to find IP addressfor rima-tde.net)>>> deny: condition test failedDoes anyone know why the blacklist is failing? Thank you, Jeremiah -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.alioth.debian.org/pipermail/pkg-exim4-users/attachments/20060913/bb1cce71/attachment.htm
Marc Haber
2006-Sep-13 10:30 UTC
[Pkg-exim4-users] blacklisting not working despite following debian documentation
On Wed, Sep 13, 2006 at 12:17:21PM +0200, Jeremiah Foster wrote:> I am trying to stop a domain name [rima-tde.net] from sending spam to my > server. I am using the document /usr/share/doc/exim4-config/default-acl to > set up my exim4.conf.template. It says; > > /etc/exim4/local_host_blacklist contains a list of IP addresses, > networks and host names whose messages will be denied with the error > message "locally blacklisted". This is a full exim 4 host list. Again, > negative items can be used here, and there is also an explicit > whitelist read in from /etc/exim4/local_host_whitelist, and whitelist > entries override blacklistings. > > So my /etc/exim4/local_host_blacklist looks like this: > > rima-tde.net > 80.25.220.24This blacklists the host rima-tde.net. 80.25.220.24 resolves to 24.red-80-25-220.staticip.rima-tde.net, which is no exact match. If you want to blacklist everything that ends in .rima-tde.net, use *.rima-tde.net in the host list. Greetings Marc -- ----------------------------------------------------------------------------- Marc Haber | "I don''t trust Computers. They | Mailadresse im Header Mannheim, Germany | lose things." Winona Ryder | Fon: *49 621 72739834 Nordisch by Nature | How to make an American Quilt | Fax: *49 621 72739835
Jeremiah Foster
2006-Sep-13 10:36 UTC
[Pkg-exim4-users] blacklisting not working despite following debian documentation
Thanks very much Marc. On 9/13/06, Marc Haber <mh+pkg-exim4-users@zugschlus.de> wrote:> > On Wed, Sep 13, 2006 at 12:17:21PM +0200, Jeremiah Foster wrote: > > I am trying to stop a domain name [rima-tde.net] from sending spam to my > > server. I am using the document /usr/share/doc/exim4-config/default-acl > to > > set up my exim4.conf.template. It says; > > > > /etc/exim4/local_host_blacklist contains a list of IP addresses, > > networks and host names whose messages will be denied with the error > > message "locally blacklisted". This is a full exim 4 host list. Again, > > negative items can be used here, and there is also an explicit > > whitelist read in from /etc/exim4/local_host_whitelist, and whitelist > > entries override blacklistings. > > > > So my /etc/exim4/local_host_blacklist looks like this: > > > > rima-tde.net > > 80.25.220.24 > > This blacklists the host rima-tde.net. 80.25.220.24 resolves to > 24.red-80-25-220.staticip.rima-tde.net, which is no exact match. > > If you want to blacklist everything that ends in .rima-tde.net, use > *.rima-tde.net in the host list. > > Greetings > Marc > > -- > > ----------------------------------------------------------------------------- > Marc Haber | "I don''t trust Computers. They | Mailadresse im > Header > Mannheim, Germany | lose things." Winona Ryder | Fon: *49 621 > 72739834 > Nordisch by Nature | How to make an American Quilt | Fax: *49 621 > 72739835 > > _______________________________________________ > Pkg-exim4-users mailing list > Pkg-exim4-users@lists.alioth.debian.org > http://lists.alioth.debian.org/mailman/listinfo/pkg-exim4-users >-------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.alioth.debian.org/pipermail/pkg-exim4-users/attachments/20060913/0fe1acea/attachment.html