|
Firewall Wizards
mailing list archives
Re: NoSpam! 2.07 & InfoSec Resources
From: Darren Reed <darrenr () cyber com au>
Date: Fri, 7 Nov 1997 16:34:50 +1100 (EST)
In some mail I received from Jason R. Rhoads, sie wrote
[To be removed from this list send the message "unsubscribe fwtk-users" in the
BODY of a mail message to majordomo () ex tis com ]
Version 2.07 of NoSpam! is now available:
http://www.sabernet.net/products
What is it? NoSpam! is an patch for smap, the sendmail wrapper client
included in the TIS Firewall Toolkit. The patch provides a mechanism
to stop spam from being delivered to users at your site.
What concerns me most, with smap, is preventing the site from being
used as a relay. I'm aware of sendmail bits to stop relaying, but,
do they work in conjunction with smap ?
I've looked at http://www.cih.com/~hagan/smap-hacks/ but I'm not sure
what's there does what I want.
My scenario at present is:
Internet-----[X]Firewall[Z]----Company_A
[Y]
|
Company_B,Company_C
At the moment, I'm borderline hacking smap to do the following, when
receiving email:
smap: local-addr [X] permit to company_A from *
smap: local-addr [X] permit to company_B from *
smap: local-addr [X] permit to company_C from *
smap: local-addr [Y] permit to * from company_B
smap: local-addr [Y] permit to * from company_C
smap: local-addr [Z] permit to * from company_A
and deny everything else (with each line being a complete rule). Is there
already a patch to do this ? What's important here is the association with
the interfaces. Although this is to primarily defend against spam, I'm not
eager to use spam keywords and narrow its perceived usage.
Also, how are anti-spam patches for smap currently dealing with addresses
such as:
joe%foo.bar%bar.baz () company com
?
Darren
 By Date 
By Thread
Current thread:
|
Intro
