novice - RBL questions & init.d script

Julian Field mailscanner at ecs.soton.ac.uk
Thu Mar 11 20:40:39 GMT 2004 

At 20:26 11/03/2004, you wrote:
>Hi - novice to Mailscanner here...
>finally got it configured,(solaris 9 w/ sendmail) and starting to test it.
>
>I have read the faq on rbls, and am thinking of using RBLs in both MTA
>and in Mailscanner or spamassassin..  still have a few questions:
>
>1) MTA- suggestions for conservative RBLs with very low/nil false
>positive rate to use with sendmail ??

XBL+SBL (Spamhaus.org run a combined list)

>2) not clear on how to choose between using mailscanner, or spamassasin
>rbl checks, or both. given that priority here would be to not lose/delay
>any mail, even if it lets some spam thru.

You can make MailScanner just tag it whichever you choose.

>3)rbls which list dialups/dsl/dynamic ips:... I am confused about
>whether these can be used within Mailscanners/spamassassin rbl checks...
>will this give  false  positives, since the dialup may legitimately
>appear in a received-from header? how does Mailscanner determine the
>"originating" MTA?

MailScanner RBL's just use the machine at the other end of the SMTP
connection. SpamAssassin RBL's check all the Received: headers in the message.

>4)other 'best rbl' practices

Don't use too many. You'll just end up blocking everything :-)

>init.d script:
>
>I am wondering about restarting Mailscanner.  i see the
>check_mailscanner script, which appears to start it, but does not stop it.
>
>I wonder if someone has a  init.d script to stop/start at boot time, etc.

Here's an extract from my Solaris /etc/init.d/sendmail.ecs script.

case $1 in
'start')
         $SENDMAIL/bin/start.sendmail
         $MAILSCANNER/bin/check_mailscanner
         ;;

'stop')
         pid=`head -1 $SENDMAIL/etc/sendmail.pid`
         echo 'Stopping sendmail (out)...'
         kill $pid
         pid=`head -1 $SENDMAIL/etc/sendmail.in.pid`
         echo 'Stopping sendmail (in)...'
         kill $pid
         pid=`head -1 $MAILSCANNER/var/MailScanner.pid`
         /bin/kill $pid
         ;;

Hopefully that's enough to get you going. The "start.sendmail" script is
attached. It's derived from the startup script published by
www.sendmail.org, plus the last few lines which start up sendmail in the
way that MailScanner likes it.

Best not to call your startup script /etc/init.d/sendmail as your next
Solaris sendmail patch will over-write it. How I love Solaris's patches :-(

>also if I make config changes, can I just send a HUP to mailscanner to
>get it to re-read its .conf file, or do I need to kill and restart it?

Most of the time, yes. It's just changes that affect the whole system that
require a kill and restart.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: start.sendmail
Type: application/octet-stream
Size: 1881 bytes
Desc: not available
Url : http://lists.mailscanner.info/pipermail/mailscanner/attachments/20040311/3ac7689b/start.obj
-------------- next part --------------
--
Julian Field
www.MailScanner.info
Professional Support Services at www.MailScanner.biz
MailScanner thanks transtec Computers for their support
PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654

More information about the MailScanner mailing list