Make DNSBL smarter

Comments (18)

1. 

   Former user Account Deleted reporter

   Clearing /etc/qpsmtpd/dnsbl_zones helps - is that a qpsmtpd issue?

   • 2016-07-14T16:48:18+00:00
2. 

   SH repo owner

   • changed status to invalid

   Well it seems that your address was marked as spam source (smtp should refuse cooperate as it did), removing content from dnsbl_zones you disabled dnsbl check completely.

   • 2016-07-14T18:06:06+00:00
3. 

   Former user Account Deleted reporter

   So you won't change anything here? I'd rather disable dnsbl check as this makes the stack completely useless.

   Perhaps an opt-in would help. Or at least an opt-out, so i don't need to maintain my own Dockerfile.

   • 2016-07-14T18:09:27+00:00
4. 

   SH repo owner

   Why would anyone allow spammers to connect to mailserver?

   • 2016-07-15T08:16:05+00:00
5. 

   Former user Account Deleted reporter

   To also allow normal users to do so? I tried to send an e-mail with several dynamic IPs in Germany and likely 90% failed. This is way to strict, if 90% of my normal IP addresses are blocked.

   • 2016-07-15T08:22:15+00:00
6. 

   SH repo owner

   • changed status to open

   Valid argument. For now its better to use /opt/qpsmtpd/config/dnsbl_allow, add your ip address/subnet in format "172.16.33."

   I will keep this issue open for voting, its not easily solvable (DNSBL is by stats far most useful spam filtering service)

   • 2016-07-15T08:37:00+00:00
7. 

   Former user Account Deleted reporter

   That would also require maintaining my own Dockerfile to change the content of the file. Isn't there a nicer solution? Like environment variables or a volume?

   • 2016-07-15T08:43:24+00:00
8. 

   SH repo owner

   create file "(your..data..dir)/_override/opt/qpsmtpd/config/dnsbl_allow" with that subnet and restart container

   (by this way you can rewrite easily any file in container)

   • 2016-07-15T08:49:20+00:00
9. 

   SH repo owner

   • changed title to Make DNSBL more smart

   • 2016-07-15T08:59:25+00:00
10. 

    SH repo owner

    • changed title to Make DNSBL smarter

    • 2016-07-15T09:00:49+00:00
11. 

    Former user Account Deleted

    Same problem here - imho a valid login should override dnsbl.

    • 2016-07-22T16:27:38+00:00
12. 

    Benoît Vézina

    Same here, make me search a lot before understanding the issue

    And so strange cause I got a server working and the other give me the dnsbl error

    If you need some diff between both server, I will send you the files you want

    • 2016-08-03T18:44:52+00:00
13. 

    Benoît Vézina

    Ok, a 3 week old version of poste.io work fine, not the last one, so it's a regression (sorry)

    Found solution for exim

    http://stackoverflow.com/questions/4574855/dnsbl-listed-at-zen-spamhaus-org-cant-get-outgoing-mail-working-am-i-interpre

    Or for postfix we need to change the order of smtpd_recipient_restrictions and put all the permited rules before the rejected one

    But did not find that info for qpsmtpd :-( (sorry again)

    • 2016-08-04T13:50:11+00:00
14. 

    SH repo owner

    I will move dnsbl check after "MAIL FROM", dnsbl will be skipped for logged users and even some latency will be removed for proper users. It will land in next update...

    • 2016-08-05T13:24:56+00:00
15. 

    Benjamin Kendinibilir

    Until the new version is out, you can use my quickfix: https://hub.docker.com/r/bkendinibilir/poste.io/

    • 2016-08-06T14:19:52+00:00
16. 

    SH repo owner

    • changed status to resolved

    fix #96: Make DNSBL smarter

    → <<cset ba7ead459d4f>>

    • 2016-08-08T07:29:24+00:00
17. 

    Former user Account Deleted reporter

    Is this included in beta 5?

    • 2016-08-15T12:34:38+00:00
18. 

    SH repo owner

    yes it is: https://poste.io/changelog

    • 2016-08-16T06:05:30+00:00
19. Log in to comment