How do I reach the dev team or security?

Benu flash@benu.widge.org
Thu Jan 5 23:07:58 UTC 2006


On Tuesday 03 January 2006 09:39, Vernon Schryver wrote:
> > From: Benu <flash@benu.widge.org>
> >
> > 1. Is greylisting (servers, clients) only available in sendmail
> > configurations?
>
> no, greylisting also works with dccifd.
[snip]
>
> With what complaint does dbclean die?

Jan  4 12:07:40 daffy dccifd[23712]: 1.3.24 listening to /var/dcc/dccifd
Jan  4 12:07:40 daffy dccd grey[23677]: /var/dcc/grey_db with 0 bytes is too 
small to be a DCC database
Jan  4 12:07:40 daffy dccd grey[23677]: could not start 
database /var/dcc/grey_db; fatal error
Jan  4 12:09:26 daffy dccd grey[23797]: lock open(/var/dcc/grey_db): No such 
file or directory
Jan  4 12:09:26 daffy dccd grey[23798]: database initially broken; starting 
`/var/dcc/libexec/dbclean  -Gon -i 12345 -4`
Jan  4 12:09:26 daffy dbclean grey[23798]: /var/dcc/grey_db-new contains the 
wrong magic string "DCC checksum database version 3"
Jan  4 12:09:26 daffy dbclean grey[23798]: could not start 
database /var/dcc/grey_db-new; fatal error
Jan  4 12:09:26 daffy dccd grey[23797]: lock open(/var/dcc/grey_db): No such 
file or directory
Jan  4 12:09:26 daffy dccd grey[23797]: could not start 
database /var/dcc/grey_db; fatal error
Jan  4 12:09:27 daffy dccifd[23712]: 1.3.24 detected 0 spam, ignored for 0, 
rejected for 0, and discarded for 0 targets among 0 total messages for 0 
targets since 01/04/06 12:07:40
Jan  4 12:09:27 daffy dccifd[23827]: 1.3.24 listening to /var/dcc/dccifd


12345 and 67890 are in map.txt
========
MAP.TXT
========
# local DCC server
127.0.0.1   RTT-1000 ms    12345 [random number]

# local greylist server
127.0.0.1   GREYLIST        67890 [matching random number]

===========
DCC_CONF
===========
DCC_CONF_VERSION=3
DCC_LIBEXEC=/var/dcc/libexec
DCC_RUNDIR=/var/run/dcc
DCCUID=dcc
DCCD_ENABLE=off
SRVR_ID=12345
BRAND=
DCCD_ARGS=
GREY_CLIENT_ARGS=
GREY_ENABLE=on
GREY_SRVR_ID=
GREY_DCCD_ARGS=
REP_ARGS=
DNSBL_ARGS=-Bsbl-xbl.spamhaus.org
XFLTR_ARGS=
DCCM_ENABLE=off
DCCM_ARGS="-SHELO -Smail_host -SSender -SList-ID"
DCCM_LOGDIR=log
DCCM_WHITECLNT=whiteclnt
DCCM_USERDIRS=userdirs
DCCM_LOG_AT=0
DCCM_REJECT_AT=
DCCM_CKSUMS=
DCCM_XTRA_CKSUMS=
DCCIFD_ENABLE=on
DCCIFD_ARGS="-SHELO -Smail_host -SSender -SList-ID"
DCCIFD_LOGDIR="$DCCM_LOGDIR"
DCCIFD_WHITECLNT="$DCCM_WHITECLNT"
DCCIFD_USERDIRS="$DCCM_USERDIRS"
DCCIFD_LOG_AT="$DCCM_LOG_AT"
DCCIFD_REJECT_AT="$DCCM_REJECT_AT"
DCCIFD_CKSUMS="$DCCM_CKSUMS"
DCCIFD_XTRA_CKSUMS="$DCCM_XTRA_CKSUMS"
DBCLEAN_LOGDAYS=14
DBCLEAN_ARGS=
DCC_INFO_LOG_FACILITY=
DCC_ERROR_LOG_FACILITY=

[snip]

> > 3. When the combo amavis+clamav+SA+DCC+postfix is employed, at what point
> > during the scanning, will amavis call dccifd? When dccproc was configured
> > I would see calls to dccproc in the mail logs, now I do not see calls to
> > dccifd in the logs. I know that DCC is working because I see its logs.
>
> I know very little and nothing useful about amavis, and about the same
> about clamav.
>
> It would be best to run dccifd as a postfix before-queue filter and let
> dccifd spam mail during the SMTP transaction.
> Second best is to run dccifd as a postfix before-queue filter but only
> adding X-DCC header lines that SpamAssassin would check for the
> string "bulk" or thresholds in the counts.  Both of these tactics would
> give the mail message to dccifd during the SMTP transaction and so
> permit the use of greylisting.

I have no reservations about using dcc in the postfix before-queue. 

Regards 



More information about the DCC mailing list

Contact vjs@rhyolite.com by mail or use the form.