Yahoo Groups archive

Milter-greylist

Index last updated: 2026-04-28 23:32 UTC

Thread

Regualr expression in greylist.conf

Regualr expression in greylist.conf

2006-11-09 by LE BOURDOULOUS Alain DSIC BEERTD CGN Mes

Hello,


I use milter greylist 3.0 rc7.
I have a problem to find the best regular expression for french sub domain ( xxx.fr)
acl whitelist from /.*@.*\.fr/

For example the follow domain match with this ACL
home5353.freeserve.co.uk

I try this one, but it's the same:
acl whitelist from /.*@.*\.fr$/


Thanks
Le Bourdoulous Alain



--

Le Bourdoulous Alain
SG . DSIC . SDIEE . BEERTD
Ministère de l'Intérieur, de la sécurité intérieure
et des libertés locales

Tél. : +33 (0)2 23 44 83 10
Fax. : +33 (0)2 23 44 83 19
Mél : alain.lebourdoulous@...
Intranet : http://messagerie.dti.mi/
Internet : http://interieur.gouv.fr/

Re: [milter-greylist] Regualr expression in greylist.conf

2006-11-09 by Oliver Fromme

> I use milter greylist 3.0 rc7.
 > I have a problem to find the best regular expression for
 > french sub domain ( xxx.fr)
 > acl whitelist from /.*@.*\.fr/

You cannot use backslashes in regular expressions.
(Well, at least in milter-greylist 2.x, but I think
it didn't change in 3.x.)

 > For example the follow domain match with this ACL
 > home5353.freeserve.co.uk
 > 
 > I try this one, but it's the same:
 > acl whitelist from /.*@.*\.fr$/

As explained above, you should remove the backslash.
No other TLD ends with "fr", so it should be OK.
If you're paranoid, you can use /.*[.]fr$/ because
the "." loses its special meaning inside "[]".

Note that it is not recommended to match by sender email
addresses, because they can be easily forged (and in fact
they _are_ forged in many -- if not most -- cases of
spam).

If you want to check the TLD of the sending MTA, you
should better just write:

acl whitelist domain fr

The "domain" keyword performs a suffix match on the domain
name of the connecting MTA (as resolved by sendmail).

Best regards
   Oliver

PS:  Please don't post HTML-only messages to technical
public mailing lists.  You'll get more replies when using
plain text instead of HTML.

-- 
Oliver Fromme,  secnetix GmbH & Co. KG, Marktplatz 29, 85567 Grafing
Dienstleistungen mit Schwerpunkt FreeBSD: http://www.secnetix.de/bsd
Any opinions expressed in this message may be personal to the author
and may not necessarily reflect the opinions of secnetix in any way.

"I invented Ctrl-Alt-Delete, but Bill Gates made it famous."
        -- David Bradley, original IBM PC design team

Re: [milter-greylist] Regualr expression in greylist.conf

2006-11-09 by LE BOURDOULOUS Alain DSIC BEERTD CGN Mes

Why laposte.net is whitelisted by the follow ACL ?


acl whitelist domain fr


Nov  9 19:43:20 tigre milter-greylist: kA9IhFAS012405: skipping greylist 
because sender DNS name mx.laposte.net is whitelisted, 
(from=<christine.robinot@...>, 
rcpt=<christine.robinot@...>, 
addr=mx.laposte.net[81.255.54.11])




[]# dig ANY mx.laposte.net

mx.laposte.net.         533     IN      A       81.255.54.7
mx.laposte.net.         533     IN      A       81.255.54.10
mx.laposte.net.         533     IN      A       81.255.54.11

laposte.net.            126106  IN      NS      ns3.laposte.net.
laposte.net.            126106  IN      NS      ns2.laposte.net.

ns3.laposte.net.        107138  IN      A       80.118.33.250
ns2.laposte.net.        83968   IN      A       83.145.100.45


Thanks

Alain



Oliver Fromme a écrit :
> 
> 
> 
>  > I use milter greylist 3.0 rc7.
>  > I have a problem to find the best regular expression for
>  > french sub domain ( xxx.fr)
>  > acl whitelist from /.*@.*\.fr/
> 
> You cannot use backslashes in regular expressions.
> (Well, at least in milter-greylist 2.x, but I think
> it didn't change in 3.x.)
> 
>  > For example the follow domain match with this ACL
>  > home5353.freeserve.co.uk
>  >
>  > I try this one, but it's the same:
>  > acl whitelist from /.*@.*\.fr$/
> 
> As explained above, you should remove the backslash.
> No other TLD ends with "fr", so it should be OK.
> If you're paranoid, you can use /.*[.]fr$/ because
> the "." loses its special meaning inside "[]".
> 
> Note that it is not recommended to match by sender email
> addresses, because they can be easily forged (and in fact
> they _are_ forged in many -- if not most -- cases of
> spam).
> 
> If you want to check the TLD of the sending MTA, you
> should better just write:
> 
> acl whitelist domain fr
> 
> The "domain" keyword performs a suffix match on the domain
> name of the connecting MTA (as resolved by sendmail).
> 
> Best regards
> Oliver
> 
> PS: Please don't post HTML-only messages to technical
> public mailing lists. You'll get more replies when using
> plain text instead of HTML.
> 
> -- 
> Oliver Fromme, secnetix GmbH & Co. KG, Marktplatz 29, 85567 Grafing
> Dienstleistungen mit Schwerpunkt FreeBSD: http://www.secnetix.de/bsd 
> <http://www.secnetix.de/bsd>
> Any opinions expressed in this message may be personal to the author
> and may not necessarily reflect the opinions of secnetix in any way.
> 
> "I invented Ctrl-Alt-Delete, but Bill Gates made it famous."
> -- David Bradley, original IBM PC design team
> 
> 


-- 
*Le Bourdoulous Alain
*SG* .** ***DSIC* .* SDIEE* .* BEERTD
Ministère de l'Intérieur, de la sécurité intérieure
et des libertés locales

Tél. : +33 (0)2 23 44 83 10
Fax. : +33 (0)2 23 44 83 19
Mél : alain.lebourdoulous@...
Intranet : http://messagerie.dti.mi/
Internet : http://interieur.gouv.fr/

Re: [milter-greylist] Regualr expression in greylist.conf

2006-11-09 by Oliver Fromme

> Why laposte.net is whitelisted by the follow ACL ?
 > 
 > acl whitelist domain fr
 > 
 > Nov  9 19:43:20 tigre milter-greylist: kA9IhFAS012405: skipping greylist 
 > because sender DNS name mx.laposte.net is whitelisted, 
 > (from=<christine.robinot@...>, 
 > rcpt=<christine.robinot@...>, 
 > addr=mx.laposte.net[81.255.54.11])

Are you sure that it is whitelisted by that ACL line?  How
do you know?  It could be whitelisted by someting else.

For example, if it was greylisted before and successfully
resent, it gets whitelisted automatically for a certain
time.  Of course, it could also be whitelisted by a
different acl line in your configuration.

Best regards
   Oliver

-- 
Oliver Fromme,  secnetix GmbH & Co. KG, Marktplatz 29, 85567 Grafing
Dienstleistungen mit Schwerpunkt FreeBSD: http://www.secnetix.de/bsd
Any opinions expressed in this message may be personal to the author
and may not necessarily reflect the opinions of secnetix in any way.

$ dd if=/dev/urandom of=test.pl count=1
$ file test.pl
test.pl: perl script text executable

Re: [milter-greylist] Regualr expression in greylist.conf

2006-11-09 by eclark

> rcpt=<christine.robinot@...>,

Thats why. You need to specify from domain, not just domain.

On Thursday 09 November 2006 01:48 pm, LE BOURDOULOUS Alain DSIC BEERTD CGN 
Messagerie wrote:
Show quoted textHide quoted text
> Why laposte.net is whitelisted by the follow ACL ?
>
>
> acl whitelist domain fr
>
>
> Nov  9 19:43:20 tigre milter-greylist: kA9IhFAS012405: skipping greylist
> because sender DNS name mx.laposte.net is whitelisted,
> (from=<christine.robinot@...>,
> rcpt=<christine.robinot@...>,
> addr=mx.laposte.net[81.255.54.11])
>
>
>
>
> []# dig ANY mx.laposte.net
>
> mx.laposte.net.         533     IN      A       81.255.54.7
> mx.laposte.net.         533     IN      A       81.255.54.10
> mx.laposte.net.         533     IN      A       81.255.54.11
>
> laposte.net.            126106  IN      NS      ns3.laposte.net.
> laposte.net.            126106  IN      NS      ns2.laposte.net.
>
> ns3.laposte.net.        107138  IN      A       80.118.33.250
> ns2.laposte.net.        83968   IN      A       83.145.100.45
>
>
> Thanks
>
> Alain
>
> Oliver Fromme a écrit :
> >  > I use milter greylist 3.0 rc7.
> >  > I have a problem to find the best regular expression for
> >  > french sub domain ( xxx.fr)
> >  > acl whitelist from /.*@.*\.fr/
> >
> > You cannot use backslashes in regular expressions.
> > (Well, at least in milter-greylist 2.x, but I think
> > it didn't change in 3.x.)
> >
> >  > For example the follow domain match with this ACL
> >  > home5353.freeserve.co.uk
> >  >
> >  > I try this one, but it's the same:
> >  > acl whitelist from /.*@.*\.fr$/
> >
> > As explained above, you should remove the backslash.
> > No other TLD ends with "fr", so it should be OK.
> > If you're paranoid, you can use /.*[.]fr$/ because
> > the "." loses its special meaning inside "[]".
> >
> > Note that it is not recommended to match by sender email
> > addresses, because they can be easily forged (and in fact
> > they _are_ forged in many -- if not most -- cases of
> > spam).
> >
> > If you want to check the TLD of the sending MTA, you
> > should better just write:
> >
> > acl whitelist domain fr
> >
> > The "domain" keyword performs a suffix match on the domain
> > name of the connecting MTA (as resolved by sendmail).
> >
> > Best regards
> > Oliver
> >
> > PS: Please don't post HTML-only messages to technical
> > public mailing lists. You'll get more replies when using
> > plain text instead of HTML.
> >
> > --
> > Oliver Fromme, secnetix GmbH & Co. KG, Marktplatz 29, 85567 Grafing
> > Dienstleistungen mit Schwerpunkt FreeBSD: http://www.secnetix.de/bsd
> > <http://www.secnetix.de/bsd>
> > Any opinions expressed in this message may be personal to the author
> > and may not necessarily reflect the opinions of secnetix in any way.
> >
> > "I invented Ctrl-Alt-Delete, but Bill Gates made it famous."
> > -- David Bradley, original IBM PC design team

Move to quarantaine

This moves the raw source file on disk only. The archive index is not changed automatically, so you still need to run a manual refresh afterward.