[Pymilter] milter-0.8.3
Stuart D. Gathman
stuart at bmsi.com
Thu Oct 13 10:27:10 EDT 2005
Release 0.8.3 uses the standard logging module, and supports configuring more
detailed SPF policy via the sendmail access map. SMTP AUTH connections are
considered INTERNAL. Preventing forgery between internal domains is just a
matter of specifying the user-domain map - I'll define something for the next
version. We now send DSNs when mail is quarantined (rejecting if DSN fails) and
for SPF syntax errors (PermError).
There is an experimental option to add a Sender header when it is missing and
the From domain doesn't match the MAIL FROM domain. Next release, we may start
renaming and replacing an existing Sender header when neither it nor the From
domain matches MAIL FROM. Since bogus MAIL FROMs are rejected (to varying
degrees depending on the configured SPF policy), and both Sender and From and
displayed by default in many email clients, this provides some phishing
protection without rejecting mail based on headers.
--
Stuart D. Gathman <stuart at bmsi.com>
Business Management Systems Inc. Phone: 703 591-0911 Fax: 703 591-6154
"Confutatis maledictis, flamis acribus addictis" - background song for
a Microsoft sponsored "Where do you want to go from here?" commercial.
More information about the Pymilter
mailing list