view dnsbl.spec.in @ 92:505e77188317

optimize verification step, cleanup documentation
author carl
date Wed, 21 Sep 2005 08:00:08 -0700
parents 962a1f8f1d9f
children e107ade3b1c0
line wrap: on
line source

Summary: DNSBL Sendmail Milter
Name: dnsbl
Version: 5.5
Release: 2
Copyright: GPL
Group: System Environment/Daemons
Source: http://www.five-ten-sg.com/util/dnsbl.tar.gz
BuildRoot: %{_tmppath}/%{name}-%{version}

Requires(pre):  /usr/sbin/groupadd
Requires(pre):  /usr/sbin/useradd
Requires(pre):  /usr/bin/getent
Requires(postun):       /usr/sbin/userdel
Requires(postun):       /usr/sbin/groupdel
Requires(post,preun):   /sbin/chkconfig
BuildRequires:  sendmail-devel >= 8.12.1
Requires:       sendmail >= 8.12.1
Requires:       sendmail-cf


%description
We present here a mechanism whereby the backup mail server can use the correct set of DNSBLs for each recipient for each message. As a side-effect, it gives us the ability to customize the set of DNSBLs on a per-recipient basis, so that fred@example.com could use SPEWS and the SBL, where all other users @example.com use only the SBL.

This milter will also decode (base64, mime, html entity, url encodings) and scan for HTTP and HTTPS URLs and bare hostnames in the body of the mail. If any of those host names have A or NS records on the SBL (or a single configurable DNSBL), the mail will be rejected unless previously whitelisted. This milter also counts the number of invalid HTML tags, and can reject mail if that count exceeds your specified limit.

The DNSBL milter reads a text configuration file (dnsbl.conf) on startup, and whenever the config file (or any of the referenced include files) is changed. The entire configuration file is case insensitive.

%prep

%setup

%build
pwd
g++ -c $CXXFLAGS -pthread dnsbl.cpp
g++ -o dnsbl dnsbl.o /usr/lib/libresolv.a -lmilter -pthread

%install
DST=%{buildroot}
if [ "%{buildroot}" = "/" -o -z "%{buildroot}" ] ; then
        echo sorry, you probably do not want me to delete the old buildroot at %{buildroot}
        exit 1
fi

rm -rf %{buildroot}
mkdir -p %{buildroot}/etc/dnsbl

install -m 644 dnsbl.conf %{buildroot}/etc/dnsbl/dnsbl.conf
install -m 644 hosts-ignore.conf %{buildroot}/etc/dnsbl/hosts-ignore.conf
install -m 644 html-tags.conf %{buildroot}/etc/dnsbl/html-tags.conf
install -m 644 tld.conf %{buildroot}/etc/dnsbl/tld.conf
install -m 644 sample.conf %{buildroot}/etc/dnsbl/sample.conf

mkdir -p %{buildroot}/usr/sbin
install -m 755 dnsbl %{buildroot}/usr/sbin/dnsbl

mkdir -p %{buildroot}/etc/rc.d/init.d
install -m 755 dnsbl.rc %{buildroot}/etc/rc.d/init.d/dnsbl

mkdir -p %{buildroot}/var/run/dnsbl

%pre
/usr/bin/getent passwd dnsbl ||
  useradd -r -d /etc/dnsbl -M -c "dnsbl pseudo-user" -s /sbin/nologin dnsbl

#[JOG] Attempt to migrate an existing, non-rpm install.
#      WARNING! This may cause blindness, loss of appetite, and a general
#      feeling of ill will towards the author of this script. Please refer
#      to the Licence file for warranty information...
if [ -f "/var/dnsbl/dnsbl.conf" -a ! -f "/etc/dnsbl/dnsbl.conf" ] ; then
        echo Existing installation found at /var/dnsbl/ Migrating configuation...
        # create the conf directory so rpm can find it in a minute...
        mkdir /etc/dnsbl/
        # and try to copy all of the relavent config files that are below this directory
        cd /var/dnsbl/
        grep '^include ' /var/dnsbl/dnsbl.conf  | cut -d ' ' -f 2 | grep -v '^/' | xargs cp --target-directory=/etc/dnsbl/ /var/dnsbl/dnsbl.conf
fi


%post
/sbin/chkconfig --add dnsbl
/sbin/chkconfig dnsbl on
/sbin/service dnsbl start

echo Remember to edit /etc/dnsbl.conf and add the following line to your sendmail.mc:
echo "INPUT_MAIL_FILTER(\`dnsbl\', \`S=local:/var/run/dnsbl/dnsbl.sock, F=T, T=C:30s;S:5m;R:5m;E:5m\')"
echo


%preun
if [ $1 -eq 0 ]; then
   /sbin/service dnsbl stop || :
   /sbin/chkconfig --del dnsbl
   userdel dnsbl || :
fi

%postun

%clean

%files
%defattr(-,root,root)
%config(noreplace) /etc/dnsbl/
%doc RELEASE_NOTES LICENSE sample.conf test.cpp
/etc/rc.d/init.d/dnsbl
/usr/sbin/dnsbl
%dir %attr(0750,dnsbl,root) /var/run/dnsbl

%changelog
* Tue Jan 03 2005 Carl Byington 1.4
- added hosts-ignore conf file
- see RELEASE_NOTES

* Thu Jul 15 2004 John Gunkel <antispam@boing.ca> 1.3
- patch to rc file no longer needed
- see RELEASE_NOTES

* Mon Jul 05 2004 John Gunkel <jgunkel@palliser.ca> 1.2
- Fixed some typos
- removed patch into separate file
- added config migration as suggested by Carl
- Added reminder to edit sendmail.mc

* Wed Jun 30 2004 John Gunkel <jgunkel@palliser.ca> 1.1
- Initial revision of spec file. Need to add a better description, docs and a sendmail.mc message