malscanner server bypassed

Alex Neuman alex at NKPANAMA.COM
Sun Jun 26 20:36:21 IST 2005 

    [ The following text is in the "iso-8859-1" character set. ]
    [ Your display is set for the "US-ASCII" character set.  ]
    [ Some characters may be displayed incorrectly. ]

This could be done on sendmail if /etc/mail/access supported "AND" type
configs. Otherwise I think we could achieve something similar using
if-then-else, like this:

## all our ip, domain or baduser rules go here first ##
From:xxx.xxx.xxx.xxx OK # our ms server's IP
To:domainprotectedbyms.com 557 Sorry, you have to go through the proper MX
first

That way, after all other access rules have been processed, if it's mail
coming from our mailscanner server, it gets accepted. Otherwise, if it's
mail for one of the protected domains, it gets rejected.

I think that would work, but I refuse to run ANY mail system without
mailscanner installed... :) Kudos to Julian...
>
>  Sorry, code included below. Not sure why this wasn't included, I blame
> owa =)
>
> Chris
>
>
>
> hostlist   trusted_hosts = \
>         your.mailscanner.ip
>
> In our rcpt to: ACL (where domains.protected is a list of the mailscanner
> domains):
>
>        deny    message       = This domain is protected via a mail
> scanning service. \
>                                          Please send via the appropriate
> MX records
>                 log_message   = found attempted skip of mx record for a \
>                                          protected domain, blocked at rcpt
> time
>                 domains          =
> lsearch;/usr/exim/conf/domains.protected
>                 hosts               = !+trusted_hosts
>
>
>
>
>
> ___________________________________________________________________
>
> The contents of this e-mail may be privileged and are confidential.
> It may not be disclosed to or used by anyone other than the
> addressee(s), nor copied in any way.  Any views or opinions
> presented are solely those of the author and do not necessarily
> represent those of Knowledge Limited.
>
> If received in error, please advise the sender, then delete it from
> your system.
> ___________________________________________________________________
>

------------------------ MailScanner list ------------------------
To unsubscribe, email jiscmail at jiscmail.ac.uk with the words:
'leave mailscanner' in the body of the email.
Before posting, read the Wiki (http://wiki.mailscanner.info/) and
the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html).

Support MailScanner development - buy the book off the website!

More information about the MailScanner mailing list