Mercurial > dnsbl

annotate ChangeLog @ 87:7a432c2b473f

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
add multiple debug syslog levels, remove duplicate dnsbl definitions
author carl
date Tue, 19 Jul 2005 22:55:07 -0700
parents d554e41f2886
children 7245c45cef7a
Ignore whitespace changes - Everywhere: Within whitespace: At end of lines:
rev   line source
41
d95af8129dfa updates for 3.2, changing file layout, add queueid to messages
carl
parents:
diff changeset
1 $Id$
d95af8129dfa updates for 3.2, changing file layout, add queueid to messages
carl
parents:
diff changeset
2
87
7a432c2b473f add multiple debug syslog levels, remove duplicate dnsbl definitions
carl
parents: 80
diff changeset
3 5.1 2005-07-20
7a432c2b473f add multiple debug syslog levels, remove duplicate dnsbl definitions
carl
parents: 80
diff changeset
4 Add multiple syslog debug levels. Detect and silently remove
7a432c2b473f add multiple debug syslog levels, remove duplicate dnsbl definitions
carl
parents: 80
diff changeset
5 duplicate DNSBL definitions. That allows us to accept mail to
7a432c2b473f add multiple debug syslog levels, remove duplicate dnsbl definitions
carl
parents: 80
diff changeset
6 recipients in multiple domains that use the same blacklist and yet
7a432c2b473f add multiple debug syslog levels, remove duplicate dnsbl definitions
carl
parents: 80
diff changeset
7 only check that blacklist once. This may happen when your config
7a432c2b473f add multiple debug syslog levels, remove duplicate dnsbl definitions
carl
parents: 80
diff changeset
8 file directly includes as child contexts the config files used on
7a432c2b473f add multiple debug syslog levels, remove duplicate dnsbl definitions
carl
parents: 80
diff changeset
9 your clients mail servers.
7a432c2b473f add multiple debug syslog levels, remove duplicate dnsbl definitions
carl
parents: 80
diff changeset
10
80
d554e41f2886 start coding on new config syntax
carl
parents: 75
diff changeset
11 5.0 2005-07-16
87
7a432c2b473f add multiple debug syslog levels, remove duplicate dnsbl definitions
carl
parents: 80
diff changeset
12 Major changes to the syntax of the config file. Content filtering
80
d554e41f2886 start coding on new config syntax
carl
parents: 75
diff changeset
13 is no longer a global mail server setting.
75
1142e46be550 start coding on new config syntax
carl
parents: 70
diff changeset
14
69
fb8afa205293 fix fedora core 3 compile error - enum list cannot end with comma
carl
parents: 68
diff changeset
15 4.6 2005-04-02
fb8afa205293 fix fedora core 3 compile error - enum list cannot end with comma
carl
parents: 68
diff changeset
16 Fix enum compilation error on Fedora Core 3.
fb8afa205293 fix fedora core 3 compile error - enum list cannot end with comma
carl
parents: 68
diff changeset
17 Discovered by Nigel Horne <njh@bandsman.co.uk>
fb8afa205293 fix fedora core 3 compile error - enum list cannot end with comma
carl
parents: 68
diff changeset
18
70
c812a06f87bf fix fedora core 3 compile error - enum list cannot end with comma
carl
parents: 69
diff changeset
19 Remove bad html tag command from the default conf file. Spammers
c812a06f87bf fix fedora core 3 compile error - enum list cannot end with comma
carl
parents: 69
diff changeset
20 seem to have abandoned this.
c812a06f87bf fix fedora core 3 compile error - enum list cannot end with comma
carl
parents: 69
diff changeset
21
c812a06f87bf fix fedora core 3 compile error - enum list cannot end with comma
carl
parents: 69
diff changeset
22 Add toolbar.msn.click-url.com in hosts-ignore.conf. These are all
c812a06f87bf fix fedora core 3 compile error - enum list cannot end with comma
carl
parents: 69
diff changeset
23 commented, but you might want to uncomment them.
c812a06f87bf fix fedora core 3 compile error - enum list cannot end with comma
carl
parents: 69
diff changeset
24
68
0e387cd3784b add uuencode decoding
carl
parents: 66
diff changeset
25 4.5 2005-01-22
0e387cd3784b add uuencode decoding
carl
parents: 66
diff changeset
26 Add uuencode decoding for old style attachments.
0e387cd3784b add uuencode decoding
carl
parents: 66
diff changeset
27
66
14f0b04e2e15 need to cleanup zombie children
carl
parents: 62
diff changeset
28 4.4 2005-01-18
14f0b04e2e15 need to cleanup zombie children
carl
parents: 62
diff changeset
29 Bug fix in forked process termination that left zombies.
14f0b04e2e15 need to cleanup zombie children
carl
parents: 62
diff changeset
30
62
7ad7d8b100bf only keep 20% of the open resolver sockets in the ready pool.
carl
parents: 61
diff changeset
31 4.3 2005-01-16
7ad7d8b100bf only keep 20% of the open resolver sockets in the ready pool.
carl
parents: 61
diff changeset
32 Only keep 20% of the resolver sockets in the ready pool.
7ad7d8b100bf only keep 20% of the open resolver sockets in the ready pool.
carl
parents: 61
diff changeset
33
61
7f44a4974bf6 Use resolver processes even if we don't have the interfaces, and need to use gethostbyname.
carl
parents: 60
diff changeset
34 4.2 2005-01-08
7f44a4974bf6 Use resolver processes even if we don't have the interfaces, and need to use gethostbyname.
carl
parents: 60
diff changeset
35 Use the separate resolver processes even if we don't have the
7f44a4974bf6 Use resolver processes even if we don't have the interfaces, and need to use gethostbyname.
carl
parents: 60
diff changeset
36 resolver interfaces and need gethostbyname.
7f44a4974bf6 Use resolver processes even if we don't have the interfaces, and need to use gethostbyname.
carl
parents: 60
diff changeset
37
60
390ed250c5d2 use local unix domain socket for resolver process communication
carl
parents: 59
diff changeset
38 4.1 2005-01-06
390ed250c5d2 use local unix domain socket for resolver process communication
carl
parents: 59
diff changeset
39 Use a local unix domain socket for the resolver process
390ed250c5d2 use local unix domain socket for resolver process communication
carl
parents: 59
diff changeset
40 communication, rather than a tcp/ip socket.
390ed250c5d2 use local unix domain socket for resolver process communication
carl
parents: 59
diff changeset
41
59
510a511ad554 Add resolver processes to allow better performance on busy machines
carl
parents: 57
diff changeset
42 4.0 2005-01-03
510a511ad554 Add resolver processes to allow better performance on busy machines
carl
parents: 57
diff changeset
43 Initialize the thread mutex objects early, before they are needed
510a511ad554 Add resolver processes to allow better performance on busy machines
carl
parents: 57
diff changeset
44 by possible calls to my_syslog.
510a511ad554 Add resolver processes to allow better performance on busy machines
carl
parents: 57
diff changeset
45
510a511ad554 Add resolver processes to allow better performance on busy machines
carl
parents: 57
diff changeset
46 Fork off a separate resolver listener process, so we can do multiple
510a511ad554 Add resolver processes to allow better performance on busy machines
carl
parents: 57
diff changeset
47 dns operations in parallel. For each simultaneous inbound email,
510a511ad554 Add resolver processes to allow better performance on busy machines
carl
parents: 57
diff changeset
48 we have a separate sendmail process, a milter thread, and a dns
510a511ad554 Add resolver processes to allow better performance on busy machines
carl
parents: 57
diff changeset
49 resolver process.
510a511ad554 Add resolver processes to allow better performance on busy machines
carl
parents: 57
diff changeset
50
57
419e00901570 changes to handle 5iantlavalamp.com
carl
parents: 56
diff changeset
51 3.7 2004-10-28
419e00901570 changes to handle 5iantlavalamp.com
carl
parents: 56
diff changeset
52 Added an 'ignore' command to the conf file, used to ignore some
419e00901570 changes to handle 5iantlavalamp.com
carl
parents: 56
diff changeset
53 hosts that might end up on the SBL and otherwise trip the content
419e00901570 changes to handle 5iantlavalamp.com
carl
parents: 56
diff changeset
54 scanning filter. In particular, many recent Microsoft Word
419e00901570 changes to handle 5iantlavalamp.com
carl
parents: 56
diff changeset
55 documents contain the string www.5iantlavalamp.com which is
419e00901570 changes to handle 5iantlavalamp.com
carl
parents: 56
diff changeset
56 associated with their smart tags stuff. That is currently hosted at
419e00901570 changes to handle 5iantlavalamp.com
carl
parents: 56
diff changeset
57 216.168.224.70, which is shared with a site that ended up on the
419e00901570 changes to handle 5iantlavalamp.com
carl
parents: 56
diff changeset
58 SBL.
419e00901570 changes to handle 5iantlavalamp.com
carl
parents: 56
diff changeset
59
54
dca56b2de019 updates for 3.6, better documentation on removing content filtering, missing some files in cvs
carl
parents: 53
diff changeset
60 3.6 2004-09-08
dca56b2de019 updates for 3.6, better documentation on removing content filtering, missing some files in cvs
carl
parents: 53
diff changeset
61 Contributions from Dan Harkless <software@harkless.org>
dca56b2de019 updates for 3.6, better documentation on removing content filtering, missing some files in cvs
carl
parents: 53
diff changeset
62 Better documentation for disabling the content filtering.
56
57607387263d updates for 3.6, better documentation on removing content filtering, missing some files in cvs
carl
parents: 54
diff changeset
63 Don't bother looking at the body text if we are not doing
57607387263d updates for 3.6, better documentation on removing content filtering, missing some files in cvs
carl
parents: 54
diff changeset
64 content filtering.
54
dca56b2de019 updates for 3.6, better documentation on removing content filtering, missing some files in cvs
carl
parents: 53
diff changeset
65
53
c2371bb6cf84 3.5 - better error message when rejecting based on ns records on the sbl
carl
parents: 52
diff changeset
66 3.5 2004-07-17
c2371bb6cf84 3.5 - better error message when rejecting based on ns records on the sbl
carl
parents: 52
diff changeset
67 Extend the error message for content filtering when the NS record
c2371bb6cf84 3.5 - better error message when rejecting based on ns records on the sbl
carl
parents: 52
diff changeset
68 points to an ip address on the SBL. Include the original host name
c2371bb6cf84 3.5 - better error message when rejecting based on ns records on the sbl
carl
parents: 52
diff changeset
69 that referenced that NS name.
c2371bb6cf84 3.5 - better error message when rejecting based on ns records on the sbl
carl
parents: 52
diff changeset
70
c2371bb6cf84 3.5 - better error message when rejecting based on ns records on the sbl
carl
parents: 52
diff changeset
71
52
a84752107aca host names cannot have consecutive periods.
carl
parents: 48
diff changeset
72 3.4 2004-07-15
53
c2371bb6cf84 3.5 - better error message when rejecting based on ns records on the sbl
carl
parents: 52
diff changeset
73 Tokens with two consecutive periods cannot be ip addresses or host
c2371bb6cf84 3.5 - better error message when rejecting based on ns records on the sbl
carl
parents: 52
diff changeset
74 names.
52
a84752107aca host names cannot have consecutive periods.
carl
parents: 48
diff changeset
75
a84752107aca host names cannot have consecutive periods.
carl
parents: 48
diff changeset
76 Updated dnsbl.spec file for building rpms from John Gunkel.
a84752107aca host names cannot have consecutive periods.
carl
parents: 48
diff changeset
77
a84752107aca host names cannot have consecutive periods.
carl
parents: 48
diff changeset
78
48
5ef10dc14457 properly drop root privs
carl
parents: 47
diff changeset
79 3.3 2004-07-09
5ef10dc14457 properly drop root privs
carl
parents: 47
diff changeset
80 Drop root priviledges properly, including the group id.
5ef10dc14457 properly drop root privs
carl
parents: 47
diff changeset
81
5ef10dc14457 properly drop root privs
carl
parents: 47
diff changeset
82
47
71252053d258 changes for 3.2
carl
parents: 44
diff changeset
83 3.2 2004-07-09
41
d95af8129dfa updates for 3.2, changing file layout, add queueid to messages
carl
parents:
diff changeset
84
43
acbe44bbba22 seems to drop root privs ok now
carl
parents: 41
diff changeset
85 Contributions from John Gunkel <jgunkel@palliser.ca>:
acbe44bbba22 seems to drop root privs ok now
carl
parents: 41
diff changeset
86 Add .spec file for building rpms, contributed by John Gunkel
acbe44bbba22 seems to drop root privs ok now
carl
parents: 41
diff changeset
87
acbe44bbba22 seems to drop root privs ok now
carl
parents: 41
diff changeset
88 Changes to file layout to conform to RedHat/LSB standards.
41
d95af8129dfa updates for 3.2, changing file layout, add queueid to messages
carl
parents:
diff changeset
89
43
acbe44bbba22 seems to drop root privs ok now
carl
parents: 41
diff changeset
90 Add some html (actually xml) tags used by Apple mac print
acbe44bbba22 seems to drop root privs ok now
carl
parents: 41
diff changeset
91 subsystem that were tripping the html tag detector.
acbe44bbba22 seems to drop root privs ok now
carl
parents: 41
diff changeset
92
acbe44bbba22 seems to drop root privs ok now
carl
parents: 41
diff changeset
93 Help with changes required to allow dnsbl to drop root
44
6b79046b18c2 changes for 3.2
carl
parents: 43
diff changeset
94 priviledges. Move the socket to /var/run/dnsbl/dnsbl.sock
41
d95af8129dfa updates for 3.2, changing file layout, add queueid to messages
carl
parents:
diff changeset
95
d95af8129dfa updates for 3.2, changing file layout, add queueid to messages
carl
parents:
diff changeset
96 Change parser to handle &#xnnn; obfuscated urls with charaters
d95af8129dfa updates for 3.2, changing file layout, add queueid to messages
carl
parents:
diff changeset
97 specified in hex.
d95af8129dfa updates for 3.2, changing file layout, add queueid to messages
carl
parents:
diff changeset
98
d95af8129dfa updates for 3.2, changing file layout, add queueid to messages
carl
parents:
diff changeset
99 Make bad_html tags more sensitive to binary tags, to reduce false
d95af8129dfa updates for 3.2, changing file layout, add queueid to messages
carl
parents:
diff changeset
100 positives in .zip or .tar.gz file attachments.
d95af8129dfa updates for 3.2, changing file layout, add queueid to messages
carl
parents:
diff changeset
101
d95af8129dfa updates for 3.2, changing file layout, add queueid to messages
carl
parents:
diff changeset
102 Add sendmail queueid to the dnsbl syslog messages.
44
6b79046b18c2 changes for 3.2
carl
parents: 43
diff changeset
103
6b79046b18c2 changes for 3.2
carl
parents: 43
diff changeset
104 Fix one place where host names were not forced to lower case.
6b79046b18c2 changes for 3.2
carl
parents: 43
diff changeset
105 Discovered by Nigel Horne <njh@bandsman.co.uk>
6b79046b18c2 changes for 3.2
carl
parents: 43
diff changeset
106
6b79046b18c2 changes for 3.2
carl
parents: 43
diff changeset
107 Remove duplicate dns queries within the same smtp transaction from
6b79046b18c2 changes for 3.2
carl
parents: 43
diff changeset
108 the body content filtering. This helps if the mail server does not
6b79046b18c2 changes for 3.2
carl
parents: 43
diff changeset
109 have a nearby caching dns server.
6b79046b18c2 changes for 3.2
carl
parents: 43
diff changeset
110
6b79046b18c2 changes for 3.2
carl
parents: 43
diff changeset
111 Add host_soft_limit config keyword. Use only one of host_limit or
6b79046b18c2 changes for 3.2
carl
parents: 43
diff changeset
112 host_soft_limit, since the last one wins. The host_limit is a hard
6b79046b18c2 changes for 3.2
carl
parents: 43
diff changeset
113 upper limit on the number of host names in a message. The
6b79046b18c2 changes for 3.2
carl
parents: 43
diff changeset
114 host_soft_limit allows unlimited host names, but only checks a
6b79046b18c2 changes for 3.2
carl
parents: 43
diff changeset
115 random sample of them against the dnsbl.
47
71252053d258 changes for 3.2
carl
parents: 44
diff changeset
116
71252053d258 changes for 3.2
carl
parents: 44
diff changeset
117 The main thread has dropped root priviledges, but other threads
71252053d258 changes for 3.2
carl
parents: 44
diff changeset
118 are still running as root. This needs to be fixed.