Milter-greylist

Hi,

I'm using milter-greylist 3.03 on Ubuntu. I've seen the feature to 
autowhitelist a set (MTA/from addr/to addr) dynamically via the mxsync 
interface. Now I would like to do exactly this but without specifying 
the MTA (i.e. have it a "match all" or *). The idea behind is that we 
have a system that scans all outgoing email and extracts the 
sender/recipient pairs. We would like to feed the inverted pair to the 
autowhitelist, so that answers from our communication partners will be 
accepted directly.

Is that possible?
- with my version of milter-greylist (if yes, how?)
- with a newer version of milter-greylist (if yes, how?)
- not at all

It seems the mxsync insists on getting an MTA addr specified.

OK in the meantime I found a fallback solution in case there's no better 
one: completely disable IP checks with -L 0

But I hope for a more elegant way :-)

Thanks for your help!
Carsten

On Thu, Jul 28, 2011 at 02:19:50PM +0200, Carsten Grammes wrote:
[Adding entries to white/grey lists]
> Is that possible?
> - with my version of milter-greylist (if yes, how?)
> - with a newer version of milter-greylist (if yes, how?)
> - not at all

This is not possible right now. A nice wy of doing it would be to 
add a socket interface to milter-greylist to add/delete/list items
in the lists with a ccommand line tool. Once we get there, we could
even dynamically add ACL, it would be quite nice. 

One day, if I or someone else needs that enough to implement it.

-- 
Emmanuel Dreyfus
manu@...

You might be able to populate a hash or socketmap with your address pairs, have a sendmail check_compat rule set a macro if the map matches, and have milter-greylist check that macro.

I've contemplated something like that, based on webmail "Emailed Contacts" addressbooks, but haven't coded a line. I'd also like a -5 SpamAssassin bump. I'd be interested in dividing the work or at least sharing QA. I can easily handle the sendmail ruleset hack.

On Thu, Jul 28, 2011 at 07:47:23AM -0500, Rich Graves wrote:
> You might be able to populate a hash or socketmap with your address pairs, have a sendmail check_compat rule set a macro if the map matches, and have milter-greylist check that macro.

check_compat ruleset is called immediately before delivery, that's far to
late to signal milter-greylist during envelope processing ...

This have to be done in check_rcpt where you get your address pair with
the stored envelope from address. Even in this case I am not sure if the
milter callback for "rcpt to" (milter-greylist) is called before or
after the ruleset. To get this working the ruleset should be called
before.


Johann E. K.