Little help w/ greylisting bypass for SMTP AUTH-ed sessions

Vernon Schryver vjs@calcite.rhyolite.com
Mon Dec 11 05:50:27 UTC 2006


> From: Pawel Osiczko 

> R<$={TrustAuthMech}> $* $: $(macro {dcc_notspam} $@ authenticated $) <> $2
> was in fact not in my sendmail.cf even though I munged my mc file with
> hackmc.
>
> The last addition in hackmc which is meant to add pertinent lines after
> SLocal_check_mail (the delimiters are
> "/^S${AUTH}check_mail/,/^SLocal_check_mail/{" ). The issue is that my
> sendmail.cf generated by m4 (version 8.13.8) spits out:
>
> ######################################################################
> ###  check_mail -- check SMTP `MAIL FROM:' command argument
> ######################################################################
>
> SLocal_check_mail
> (...)
>
> So, I've fixed it like so in hackmc:
>
> 185c185
> <           -e "/^S${AUTH}check_mail/,/^SLocal_check_mail/{"            \
> ---
> >           -e "/^#* *check_mail/,/^SLocal_check_mail/{"                \

I do not think that is a bug in hackmc.
When the shell variable ${AUTH} is "#", the range pattern is not matched,
and the block of sed commands should not be executed
so that the TrustAuthMech line will not be added.
The shell variable ${AUTH} is set to '#' by default and cleared
only with `hackmc -T`.


> This presumes that you are passing -T into hackmc. Additionally, I had
> FEATURE(`delay_checks')dnl which had to be disabled. After that things
> started working.

I just tried some quick experiments and found that the TrustAuthMech
disappears or appears with FEATURE(`delay_checks').

So I think the bug in hackmc is that the comment about -T should have
this line added:

#	FEATURE(`delay_checks') must NOT be used.


thanks for figuring out the FEATURE(`delay_checks') connection.


Vernon Schryver    vjs@rhyolite.com



More information about the DCC mailing list

Contact vjs@rhyolite.com by mail or use the form.