[Raw Msg Headers][Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: SPF and senderokwithdns

To: Eugene Crosser <crosser@rol.ru>
Subject: Re: SPF and senderokwithdns
From: Matti Aarnio <mea@nic.funet.fi>
Date: Wed, 14 Jul 2004 12:21:21 +0300
Cc: zmailer@nic.funet.fi
In-Reply-To: <1089792339.26404.8.camel@ariel.sovam.com>; from crosser@rol.ru on Wed, Jul 14, 2004 at 12:05:39PM +0400
Original-Recipient: rfc822;zmailer-log@nic.funet.fi
References: <1089502639.21577.11.camel@pccross.average.org> <20040711140436.V13603@nic.funet.fi> <1089557924.22892.25.camel@pccross.average.org> <1089716838.7075.15.camel@ariel.sovam.com> <20040713143643.W13603@nic.funet.fi> <1089719749.7078.19.camel@ariel.sovam.com> <20040713181934.X13603@nic.funet.fi> <1089733925.7078.28.camel@ariel.sovam.com> <20040714032519.A13603@nic.funet.fi> <1089792339.26404.8.camel@ariel.sovam.com>
Sender: zmailer-owner@nic.funet.fi

On Wed, Jul 14, 2004 at 12:05:39PM +0400, Eugene Crosser wrote:
> On Wed, 2004-07-14 at 03:25 +0300, Matti Aarnio wrote:
> 
> > > I wanted to check sender_dns_verify() even for authenticated users, and
> > > for users coming from trusted networks.  Because the earlier a customer
> > > is hinted about mistyped "From" address the better.
> > > 
> > > But actually I don't care too much, just thought that it would be the
> > > right thing...
> 
> > Yes, that would be quite nice setup.
> > Snafu are those average level cluefull users with their windows...
> 
> I realized that the current code does *almost* what I want, i.e. it
> checks dns_verify for auth'ed and whoson'ed users, and for
> always_accept'ed networks.  Althogh, I'd like to suggest a diff that
> makes the code more clear, IMHO.  Attached below.

It would be clear -- IF that attribute would exist every time.
I don't think it does...   like for domains listed in   smtp-policy.relay*
file(s).   Probably it doesn't matter, unless the 'relay' listed domains
are of form:  .domain.suffix   in which case it does matter..
But then, change the  _relaytarget macro to be:
   _relaytarget relaytarget +   = _default_dot
and it won't be a problem anymore.

Anyway, I applied (manually, though!) the code that you gave below.
It compiles, I will commit..  (but can't test right now.)

> > There is also new   --enable-distcache   thing, which gets used in
> > smtpserver's TLS code.  It is 'distributed cache', and it is actually
> > the _only_ session change mechanism in the code.  Again: "It compiles"..
> > ( www.distcache.org has some documentation about ideas behind it. )
> 
> If you do *not* enable distcache, smtptls.c does not compile, because
> tls_scache_init is called at line 1167 regardless of HAVE_DISTCACHE, but
> the definition of this function is #ifdef'ed out.

Damn, I was sure that I had tested (just before commit) that it
will compile...   I had reconfigured without it, but didn't do
compile :-/

> Eugene

/Matti Aarnio <mea@nic.funet.fi>
-
To unsubscribe from this list: send the line "unsubscribe zmailer" in
the body of a message to majordomo@nic.funet.fi

Follow-Ups:
- pre3
  - From: Eugene Crosser <crosser@rol.ru> (Fri, 16 Jul 2004 15:42:17 +0300)

References:
- SPF and senderokwithdns
  - From: Eugene Crosser <crosser@rol.ru>
- Re: SPF and senderokwithdns
  - From: Matti Aarnio <mea@nic.funet.fi>
- Re: SPF and senderokwithdns
  - From: Eugene Crosser <crosser@rol.ru>
- Re: SPF and senderokwithdns
  - From: Eugene Crosser <crosser@rol.ru>
- Re: SPF and senderokwithdns
  - From: Matti Aarnio <mea@nic.funet.fi>
- Re: SPF and senderokwithdns
  - From: Eugene Crosser <crosser@rol.ru>
- Re: SPF and senderokwithdns
  - From: Matti Aarnio <mea@nic.funet.fi>
- Re: SPF and senderokwithdns
  - From: Eugene Crosser <crosser@rol.ru>
- Re: SPF and senderokwithdns
  - From: Matti Aarnio <mea@nic.funet.fi>
- Re: SPF and senderokwithdns
  - From: Eugene Crosser <crosser@rol.ru>

Prev by Date: Re: SPF and senderokwithdns
Next by Date: pre3
Prev by thread: Re: SPF and senderokwithdns
Next by thread: pre3
Index(es):
- Date
- Thread