Re: Bug#457318: ITP: qmail -- a secure, reliable, efficient, simple message transfer agent

To: Florian Weimer <fw@deneb.enyo.de>
Cc: Turbo Fredriksson <turbo@debian.org>, debian-devel@lists.debian.org
Subject: Re: Bug#457318: ITP: qmail -- a secure, reliable, efficient, simple message transfer agent
From: Toni Mueller <toni@debian.org>
Date: Mon, 24 Dec 2007 12:27:45 +0100
Message-id: <[🔎] 20071224112746.30212.qmail@oak.oeko.net>
In-reply-to: <[🔎] 87k5n4fpsd.fsf@mid.deneb.enyo.de>
References: <[🔎] 20071221182530.GA23785@a.mx.sbih.org> <[🔎] 476C1134.6010107@debian.org> <[🔎] 20071221192600.GA31231@uio.no> <[🔎] fkhcpf$46a$1@ger.gmane.org> <[🔎] 87ejdd7hun.fsf@pumba.bayour.com> <[🔎] 87abo1d2oz.fsf@debian.org> <[🔎] 8763yp70vb.fsf@pumba.bayour.com> <[🔎] 20071223234905.GB4436@www.lobefin.net> <[🔎] 87mys061w9.fsf@pumba.bayour.com> <[🔎] 87k5n4fpsd.fsf@mid.deneb.enyo.de>

Hi Florian,

On Mon, 24.12.2007 at 09:41:22 +0100, Florian Weimer <fw@deneb.enyo.de> wrote:
> * Turbo Fredriksson:
> > (and claims that this makes Qmail wide open for spams is rubish - it's
> > only if/when configured incorrectly that this becomes a problem)
> 
> How can you configure DJB qmail so that it rejects mail for non-existing
> local mailboxes at SMTP dialog time?

afaik, this is not possible with stock qmail (Turbo may know better),
but it can be done with netqmail (a DJB-approved version that was put
together by some of the high-profile users and developers on the qmail
list), and it's trivial to do using qmail-ldap.

For netqmail, which, most notably contains the QMAILQUEUE patch, you
can implement the recipient checking in the alternative queueing
program. I also, at some time in the past, did a patch to qmail that
checked against a flat file of email addresses, one per line, and with
qmail-ldap, which also contains that patch, you can configure a simple
switch (set RCPTCHECK="1" in your tcpserver's access control file) that
will cause qmail-ldap to reject all mail addresses it can't resolve
using either LDAP only (this is what I use), or LDAP + system accounts.

Best,
--Toni++

Reply to:

References:
- Re: Bug#457318: ITP: qmail -- a secure, reliable, efficient, simple message transfer agent
  - From: "John H. Robinson, IV" <jaqque@debian.org>
- Re: Bug#457318: ITP: qmail -- a secure, reliable, efficient, simple message transfer agent
  - From: "Leo \"costela\" Antunes" <costela@debian.org>
- Re: Bug#457318: ITP: qmail -- a secure, reliable, efficient, simple message transfer agent
  - From: "Steinar H. Gunderson" <sgunderson@bigfoot.com>
- Re: Bug#457318: ITP: qmail -- a secure, reliable, efficient, simple message transfer agent
  - From: "Leo \"costela\" Antunes" <costela@debian.org>
- Re: Bug#457318: ITP: qmail -- a secure, reliable, efficient, simple message transfer agent
  - From: Turbo Fredriksson <turbo@debian.org>
- Re: Bug#457318: ITP: qmail -- a secure, reliable, efficient, simple message transfer agent
  - From: Kalle Kivimaa <killer@debian.org>
- Re: Bug#457318: ITP: qmail -- a secure, reliable, efficient, simple message transfer agent
  - From: Turbo Fredriksson <turbo@debian.org>
- Re: Bug#457318: ITP: qmail -- a secure, reliable, efficient, simple message transfer agent
  - From: Stephen Gran <sgran@debian.org>
- Re: Bug#457318: ITP: qmail -- a secure, reliable, efficient, simple message transfer agent
  - From: Turbo Fredriksson <turbo@debian.org>
- Re: Bug#457318: ITP: qmail -- a secure, reliable, efficient, simple message transfer agent
  - From: Florian Weimer <fw@deneb.enyo.de>

Prev by Date: Re: Bug#457318: ITP: qmail -- a secure, reliable, efficient, simple message transfer agent
Next by Date: Need information
Previous by thread: Re: Bug#457318: ITP: qmail -- a secure, reliable, efficient, simple message transfer agent
Next by thread: Re: Bug#457318: ITP: qmail -- a secure, reliable, efficient, simple message transfer agent
Index(es):
- Date
- Thread