trying to greylist only

john crawford jmc-dcc@sociology.osu.edu
Sun May 7 21:24:43 UTC 2006


Hello.

In testing, I'm getting dcc server bulkiness lookups
when I'm trying to ONLY use greylisting functionality with grey-query.
So if a message meets reject criterion (like, perhaps, MANY),  I'll not
greylist reject if the . Since I
have grey-query on the dccifd invocation text, I expect only
greylisting to be active.
as in
" body no-reject rcvd-nxt grey-query"
I have
GREY_CLIENT_ARGS=IPmask/24
GREY_ENABLE=ON

I'm hoping to test implement grey-query with the local grey server
referenced, yet suppress network dcc server lookups. I'm missing
something.

I'll paste my full yet sanitized dcc_conf. There are some
artifacts from doing dcc metric lookup tunings present, so maybe something
is defeating the grey-query dccifd protocol parameter.

=
as a second query, I'll see yahoo group postings come in and be
greylisted. Then I'll see a repeat, with same ip, sender and recipient,
yet the embargo number becomes #1 again.
Here's a diff of two message logs.

mail# diff msg.1LmTK3 msg.1LmTK7
2c2
< DATE: 05/07/06 00:08:45 EDT
---
 > DATE: 05/07/06 00:12:15 EDT
10c10
<  Processed in 0.507336 secs); 07 May 2006 04:08:45 -0000
---
 >  Processed in 0.508672 secs); 07 May 2006 04:12:15 -0000
12c12
<   by mail.sociology.ohio-state.edu with SMTP; 7 May 2006 04:08:44 -0000
---
 >   by mail.sociology.ohio-state.edu with SMTP; 7 May 2006 04:12:14 -0000
106c106
<       Body=3 Fuz1=3 Fuz2=3
---
 >       Body=4 Fuz1=4 Fuz2=4
114,116c114,116
<                      Body: 16b28642 f3ab5906 73ab72f5 7cdd4ccf       2
<                      Fuz1: 7bc64efb 06b05f9c 94ba06d5 e29daefc       2
<                      Fuz2: 31228794 ad26cd3e b537c314 39dad299       2
---
 >                      Body: 16b28642 f3ab5906 73ab72f5 7cdd4ccf       3
 >                      Fuz1: 7bc64efb 06b05f9c 94ba06d5 e29daefc       3
 >                      Fuz2: 31228794 ad26cd3e b537c314 39dad299       3
125c125
< rejection message: 452 4.2.1 mail 1LmTK2 from 66.163.187.208 
temporary greylist embargoed
---
 > rejection message: 452 4.2.1 mail 1LmTK6 from 66.163.187.208 
temporary greylist embargoed

So that's mystifying to me. Why wouldn't it recognize it as a 
previously embargoed
message? You will notice of course the dcc metric activity happening there (and
I'd prefer just greylisting in this instance).

Thanks for your thoughts.
John


DCC_CONF_VERSION=3
DCC_LIBEXEC=/usr/local/dcc/libexec
DCC_RUNDIR=/var/run
DCCUID=dcc
DCCD_ENABLE=off
SRVR_ID=
BRAND=
DCCD_ARGS=
GREY_CLIENT_ARGS=IPmask/24
GREY_ENABLE=ON
GREY_SRVR_ID=$SRVR_ID
GREY_DCCD_ARGS="-G 50minutes,7days,63days"
REP_ARGS=
DNSBL_ARGS=
XFLTR_ARGS=
DCCM_ENABLE=off
DCCM_ARGS="-SHELO -Smail_host -SSender -SList-ID"
DCCM_LOGDIR=log
DCCM_WHITECLNT=whiteclnt
DCCM_USERDIRS=userdirs
DCCM_LOG_AT=0
DCCM_REJECT_AT=
DCCM_CKSUMS=
DCCM_XTRA_CKSUMS=
DCCIFD_ENABLE=on
DCCIFD_ARGS="-dd -A -SHELO -Smail_host -SSender -SList-ID -aIGNORE -t 
CMN,0,MANY"
DCCIFD_LOGDIR="$DCCM_LOGDIR"
DCCIFD_WHITECLNT="$DCCM_WHITECLNT"
DCCIFD_USERDIRS="$DCCM_USERDIRS"
DCCIFD_LOG_AT="$DCCM_LOG_AT"
DCCIFD_REJECT_AT="$DCCM_REJECT_AT"
DCCIFD_CKSUMS="$DCCM_CKSUMS"
DCCIFD_XTRA_CKSUMS="$DCCM_XTRA_CKSUMS"
DBCLEAN_LOGDAYS=14
DBCLEAN_ARGS=
DCC_INFO_LOG_FACILITY=local5.info
DCC_ERROR_LOG_FACILITY=local5.err
if test -n "$DCC_INFO_LOG_FACILITY"; then
     if expr "X$DCC_INFO_LOG_FACILITY" : 'X.*\..*' >/dev/null; then
         :
     else
         DCC_INFO_LOG_FACILITY="$DCC_INFO_LOG_FACILITY.notice"
     fi
     DCC_LOG_ARGS="$DCC_LOG_ARGS -Linfo,$DCC_INFO_LOG_FACILITY"
fi
if test -z "$DCC_ERROR_LOG_FACILITY"; then
     DCC_ERROR_LOG_FACILITY=mail.err
else
     if expr "X$DCC_ERROR_LOG_FACILITY" : 'X.*\..*' >/dev/null; then
         :
     else
         DCC_ERROR_LOG_FACILITY="$DCC_ERROR_LOG_FACILITY.err"
     fi
     DCC_LOG_ARGS="$DCC_LOG_ARGS -Lerror,$DCC_ERROR_LOG_FACILITY"
fi
DCC_LOGGER="logger -s -p ${DCC_ERROR_LOG_FACILITY-mail.err} 
-t  ${LOGGER_TAG-DCC}"
Configure_DCC_LIBEXEC=/usr/local/dcc/libexec
Configure_DCC_RUNDIR=/var/run
Configure_DCCUID=dcc
Configure_DCC_LOGGER="logger -s -p ${DCC_ERROR_LOG_FACILITY-mail.err} 
-t  ${LOGGER_TAG-DCC}"
mail#




More information about the DCC mailing list

Contact vjs@rhyolite.com by mail or use the form.