[Pymilter] Possible to use a milter for reverse SRS?
Melanie Dymond Harper
mel at herald.co.uk
Mon Jan 28 14:10:30 EST 2019
On Mon, Jan 28, 2019 at 12:59:09PM -0500, Stuart D. Gathman wrote:
> On Mon, 28 Jan 2019, Melanie Dymond Harper wrote:
>
> >Hm. Okay, I've now taken out any alias declarations for the domain being
> >used as fwdomain, and the only "fancy" mail processing is now srsmilter
> >(I previously had spfmilter in there as well, but I've taken that out
> >for the moment until I can be more sure of what's happening.) As far as
> >I can tell, srsmilter isn't doing anything at all to mails coming in
> >addressed to (SRS-encoded) addresses at the domain configured as
> >fwdomain. It's accepting mail to known accounts -- which is fair enough
> >since that domain is in the local-host-names file -- but for anything
> >else it is rejecting as "unknown user", it isn't trying to unwrap it.
>
> You need to put domains you want SRS decoded into srs = in pysrs.cfg.
> Looking at the comments, I see they should be updated. Is this
> more clear?
>
> @@ -11,7 +11,8 @@
> ;sign = localdomain1.com, localdomain2.org
> # rewrite all other domains to this domain using SRS
> ;fwdomain = mydomain.com
> -# reject unsigned mail to these domains in pymilter (used by pymilter)
> +# decode (reverse) srs to these domains (see also reject_spoofed)
> +# NOTE: pysrs can also do this
> ;srs = otherdomain.com
> # do not rewrite mail to these domains
> ;nosrs = braindeadmail.com
It is more clear but, unfortunately, no more functional on this end.
fwdomain and srs are now both set to the same value (and they are
being picked up correctly; I temporarily added a couple of print
statements to check), reject_spoofed is set to true and has been all
along. socketname and miltername are set to correspond to the values
being used in sendmail.mc. miltersrs is set to true. Hm. - Mel
<!DSPAM:16895D2CF171211780664352>
More information about the Pymilter
mailing list