Hallo Udo,
Am 2004-06-23 16:37:11, schrieb Udo Mueller:
>Hallo Michelle,
>Damit filtere ich auf meinem Server _ziemlich_ viel aus, u.a.
> - Absenderadressen ohne FQDN
> - Dial-Up-User
> - Mail von bekannten Spamhosts
> - usw.
>
>Vllt. kannst du damit was anfangen.
Der procmailfilter funktioniert einwandfrei !!!
Glücklicherweise habe ich vorhin vergessen, die INCLUDERC anzuhängen.
Waren mehrere Bugs drin...
Jetzt filtert er wie der Himmel...
Und wers ausprobieren will:
____ ( '~/.procmailrc' ) _____________________________________________
/
| LINEBUF=32768
| INCLUDERC=FLT_spamhaus
\______________________________________________________________________
>Gruss Udo
Greetings
Michelle
--
Linux-User #280138 with the Linux Counter, http://counter.li.org/
Michelle Konzack Apt. 917 ICQ #328449886
50, rue de Soultz MSM LinuxMichi
0033/3/88452356 67100 Strasbourg/France IRC #Debian (irc.icq.com)
SUB1=`formail -zxSubject:`
DATE1=`date +"%d/%m/%Y %T"`
###############################################################################
# Open Relay check
###############################################################################
#### first IP ####
:0H
* Received:.*\[\/[0-9]+\.[0-9]+\.[0-9]+\.[0-9]+
{
RECEIVIP=${MATCH}
:0
* ! RECEIVIP ?? 127.0.0.1
{
:0
* RECEIVIP ?? ()\/[0-9]+
{
QUAD1=${MATCH}
:0
* RECEIVIP ?? [0-9]+\.\/[0-9]+
{
QUAD2=${MATCH}
:0
* RECEIVIP ?? [0-9]+\.[0-9]+\.\/[0-9]+
{
QUAD3=${MATCH}
:0
* RECEIVIP ?? [0-9]+\.[0-9]+\.[0-9]+\.\/[0-9]+
{
RECEIVIPREV="${MATCH}.${QUAD3}.${QUAD2}.${QUAD1}"
}
}
}
:0
{ REVCHECKIP=`host ${RECEIVIPREV}.relays.ordb.org 2>&1 | grep -v 'not found.'` }
:0
* $ REVCHECKIP ?? 127\.0\.0\.(2|4)
{
:0 fhw
| formail -i "Subject: *****relays.ordb.org***** $SUB1"
}
:0
{ REVCHECKIP=`host ${RECEIVIPREV}.opm.blitzed.org 2>&1 | grep -v 'not found.'` }
:0
* $ REVCHECKIP ?? 127\.0\.0\.(2|4)
{
:0fhw
| formail -i "Subject: *****opm.blitzed.org***** $SUB1"
}
:0
{ REVCHECKIP=`host ${RECEIVIPREV}.list.dsbl.org 2>&1 | grep -v 'not found.'` }
:0
* $ REVCHECKIP ?? 127\.0\.0\.(2|4)
{
:0fhw
| formail -i "Subject: *****list.dsbl.org***** $SUB1"
}
:0
{ REVCHECKIP=`host ${RECEIVIPREV}.sbl-xbl.spamhaus.org 2>&1 | grep -v 'not found.'` }
:0
* $ REVCHECKIP ?? 127\.0\.0\.(2|4)
{
:0fhw
| formail -i "Subject: *****sbl-xbl.spamhaus.org***** $SUB1"
}
:0
{ REVCHECKIP=`host ${RECEIVIPREV}.cbl.abuseat.org 2>&1 | grep -v 'not found.'` }
:0
* $ REVCHECKIP ?? 127\.0\.0\.(2|4)
{
:0fhw
| formail -i "Subject: *****cbl.abuseat.org***** $SUB1"
}
:0
{ REVCHECKIP=`host ${RECEIVIPREV}.dul.dnsbl.sorbs.org 2>&1 | grep -v 'not found.'` }
:0
* $ REVCHECKIP ?? 127\.0\.0\.(2|4)
{
:0fhw
| formail -i "Subject: *****dul.dnsbl.sorbs.org***** $SUB1"
}
:0
{ REVCHECKIP=`host ${RECEIVIPREV}.blackholes.mail-abuse.org 2>&1 | grep -v 'not found.'` }
:0
* $ REVCHECKIP ?? 127\.0\.0\.(2|4)
{
:0fhw
| formail -i "Subject: *****blackholes.mail-abuse.org***** $SUB1"
}
:0
{ REVCHECKIP=`host ${RECEIVIPREV}.dialups.mail-abuse.org 2>&1 | grep -v 'not found.'` }
:0
* $ REVCHECKIP ?? 127\.0\.0\.(2|4)
{
:0fhw
| formail -i "Subject: *****dialups.mail-abuse.org***** $SUB1"
}
}
}
}
#### second IP ####
:0H
* Received: from.*\[.*\](.*$)+Received:.*\[\/[0-9]+\.[0-9]+\.[0-9]+\.[0-9]+
{
RECEIVIP2=${MATCH}
:0
* ! RECEIVIP2 ?? 127.0.0.1
{
:0
* RECEIVIP2 ?? ()\/[0-9]+
{
QUAD1=${MATCH}
:0
* RECEIVIP2 ?? [0-9]+\.\/[0-9]+
{
QUAD2=${MATCH}
:0
* RECEIVIP2 ?? [0-9]+\.[0-9]+\.\/[0-9]+
{
QUAD3=${MATCH}
:0
* RECEIVIP2 ?? [0-9]+\.[0-9]+\.[0-9]+\.\/[0-9]+
{
RECEIVIP2REV="${MATCH}.${QUAD3}.${QUAD2}.${QUAD1}"
}
}
}
:0
{ REV2CHECKIP=`host ${RECEIVIP2REV}.relays.ordb.org 2>&1 | grep -v 'not found.'` }
:0
* $ REV2CHECKIP ?? 127\.0\.0\.(2|4)
{
:0 fhw
| formail -i "Subject: *****relays.ordb.org***** $SUB1"
}
:0
{ REV2CHECKIP=`host ${RECEIVIP2REV}.opm.blitzed.org 2>&1 | grep -v 'not found.'` }
:0
* $ REV2CHECKIP ?? 127\.0\.0\.(2|4)
{
:0fhw
| formail -i "Subject: *****opm.blitzed.org***** $SUB1"
}
:0
{ REV2CHECKIP=`host ${RECEIVIP2REV}.list.dsbl.org 2>&1 | grep -v 'not found.'` }
:0
* $ REV2CHECKIP ?? 127\.0\.0\.(2|4)
{
:0fhw
| formail -i "Subject: *****list.dsbl.org***** $SUB1"
}
:0
{ REV2CHECKIP=`host ${RECEIVIP2REV}.sbl-xbl.spamhaus.org 2>&1 | grep -v 'not found.'` }
:0
* $ REV2CHECKIP ?? 127\.0\.0\.(2|4)
{
:0fhw
| formail -i "Subject: *****sbl-xbl.spamhaus.org***** $SUB1"
}
:0
{ REV2CHECKIP=`host ${RECEIVIP2REV}.cbl.abuseat.org 2>&1 | grep -v 'not found.'` }
:0
* $ REV2CHECKIP ?? 127\.0\.0\.(2|4)
{
:0fhw
| formail -i "Subject: *****cbl.abuseat.org***** $SUB1"
}
:0
{ REV2CHECKIP=`host ${RECEIVIP2REV}.dul.dnsbl.sorbs.org 2>&1 | grep -v 'not found.'` }
:0
* $ REV2CHECKIP ?? 127\.0\.0\.(2|4)
{
:0fhw
| formail -i "Subject: *****dul.dnsbl.sorbs.org***** $SUB1"
}
:0
{ REV2CHECKIP=`host ${RECEIVIP2REV}.blackholes.mail-abuse.org 2>&1 | grep -v 'not found.'` }
:0
* $ REV2CHECKIP ?? 127\.0\.0\.(2|4)
{
:0fhw
| formail -i "Subject: *****blackholes.mail-abuse.org***** $SUB1"
}
:0
{ REV2CHECKIP=`host ${RECEIVIP2REV}.dialups.mail-abuse.org 2>&1 | grep -v 'not found.'` }
:0
* $ REV2CHECKIP ?? 127\.0\.0\.(2|4)
{
:0fhw
| formail -i "Subject: *****dialups.mail-abuse.org***** $SUB1"
}
}
}
}
:0
* ^Subject:.*(*****relays.ordb.org*****)
OPENRELAY_relays.ordb.org/
:0
* ^Subject:.*(*****opm.blitzed.org*****)
OPENRELAY_opm.blitzed.org/
:0
* ^Subject:.*(*****list.dsbl.org*****)
OPENRELAY_list.dsbl.org/
:0
* ^Subject:.*(*****sbl-xbl.spamhaus.org*****)
OPENRELAY_sbl-xbl.spamhaus.org/
:0
* ^Subject:.*(*****cbl.abuseat.org*****)
OPENRELAY_cbl.abuseat.org/
:0
* ^Subject:.*(*****dul.dnsbl.sorbs.org*****)
OPENRELAY_dul.dnsbl.sorbs.org/
:0
* ^Subject:.*(*****blackholes.mail-abuse.org*****)
OPENRELAY_blackholes.mail-abuse.org/
:0
* ^Subject:.*(*****dialups.mail-abuse.org*****)
OPENRELAY_dialups.mail-abuse.org/
########################################### END-OF-OPENRELAY ##################
Attachment:
signature.pgp
Description: Digital signature