<HTML><HEAD>
<META http-equiv=Content-Type content="text/html; charset=iso-8859-15">
<META content="MSHTML 6.00.2900.3527" name=GENERATOR></HEAD>
<BODY style="MARGIN: 4px 4px 1px; FONT: 10pt Segoe UI">
<DIV>I can check to see if I can send to another port. </DIV>
<DIV> </DIV>
<DIV>How do I configure another sendmail daemon to listen on a different port? Will this daemon receive and send or would I specify the "out queue" of the Mailscanner sendmail process as it's queue? Not real sure about this.</DIV>
<DIV> </DIV>
<DIV>Gary<BR><BR>>>> Scott Silva <ssilva@sgvwater.com> 5/27/2009 3:55 PM >>><BR>on 5-22-2009 5:47 PM Gary Faith spake the following:<BR>> I am trying to get around the problem of whitelisting my entire domain<BR>> which is what I did earlier by allowing any message FROM my domain name<BR>> without scanning. As I said earlier, this caused problems because<BR>> people were using my server to send spam using my domain. I only want<BR>> it to not scan e-mail when it is from the server that authenticates. <BR>> <BR>> The server that I am talking about is a mail server, which used to have<BR>> a static IP, I use for another unrelated business and my personal<BR>> e-mail. Due to circumstances, I had to move the server to dynamic DSL<BR>> (YUCK!) and now I need to relay the mail through the mail scanner<BR>> because outbound mail would be blocked by RBL's and I have no option to<BR>> add another mail scanner server at this time. There are other<BR>> people that I need to have admin access to mailwatch & mailscanner<BR>> giving them the ability to add users, change configuration, read &<BR>> release messages, etc. I do not want others to be able to read my other<BR>> business & personal e-mails, etc. So you see that is why I don't want<BR>> all mail scanned. <BR>> <BR>> I need a solutions and I thought someone on this list would have a<BR>> brilliant idea on how to do this. It can't be that hard, can it?<BR>> <BR>>>>> Eli Wapniarski <eli@orbsky.homelinux.org> 5/21/2009 12:54 AM >>><BR>> Gary... With all due respect. Assuming that the mail coming from your<BR>> servers is not affected by something bad is a mistake. Not to mention,<BR>> spam that uses your domain as email addresses in the to / from to get<BR>> around just the kind of scenario is also makes your strategy a mistake.<BR>> <BR>> What harm besides having your server do some work would be caused by<BR>> having all the mail scanned?<BR>> <BR>> On Thursday 21 May 2009 04:50:33 Gary Faith wrote:<BR>>> I am running MailScanner 4.75 on x86_64 and Sendmail 8.13. I have a<BR>> situation where I am relaying e-mail for a trusted mail server with a<BR>> dynamic IP who connects to my mail scanner via SMTP Auth. I don't have<BR>> a need for scanning the outbound e-mail from this server but I do need<BR>> to have the inbound mail scanned. So I figured I would add the domain<BR>> to scan.messages.rules. <BR>>> <BR>>> From: domain.com no<BR>>> <BR>>> This had the effect of stopping scanning of the mail which was<BR>> desired but now spam is coming in with the From addresss the same as<BR>> the To address like: xyz@domain.com to xyz@domain.com. These messages<BR>> are not being scanned and getting passed through due to the rule above. <BR>> Obviously, I didn't think this through correctly and I need a better<BR>> solution.<BR>>> <BR>>> What is required:<BR>>> 1. Outbound mail from the server with a dynamic IP which<BR>> authenticates to the mail scanner via SMTP Auth = Not Scanned. I<BR>> wouldn't care if it just goes from sendmail-in to sendmail-out and not<BR>> even go through mailscanner but I don't know if that is possible.<BR>>> 2. All other mail scanned (like normal).<BR>>> <BR>>> I know I can't base a rule on the IP address since it is dynamic but I<BR>> am unsure of any other way to accomplish this. Any thoughts on how I<BR>> can accomplish this?<BR>>> <BR>>> Thanks,<BR>>><BR>>> Gary Faith<BR>>><BR>Can you set your system to send to your scanner on another port? You could set<BR>another daemon to listen on that port and then dump the mail on without<BR>scanning it.<BR><BR></DIV></BODY></HTML>