Mercurial > dnsbl
annotate ChangeLog @ 92:505e77188317
optimize verification step, cleanup documentation
author | carl |
---|---|
date | Wed, 21 Sep 2005 08:00:08 -0700 |
parents | ca46fafc6621 |
children | 91c27c00048f |
rev | line source |
---|---|
88
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
1 $Id$ |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
2 |
92 | 3 5.5 2005-09-21 |
4 Cleanup debug logging. Verify from/to pairs now remembers the last | |
5 from value sent to the remote server to prevent unnecessary rset | |
6 commands. | |
7 | |
90
962a1f8f1d9f
add verify statement to verify addresses with better mx host
carl
parents:
89
diff
changeset
|
8 5.4 2005-09-18 |
962a1f8f1d9f
add verify statement to verify addresses with better mx host
carl
parents:
89
diff
changeset
|
9 Add verify statement to specify the smtp host to be used to verify |
962a1f8f1d9f
add verify statement to verify addresses with better mx host
carl
parents:
89
diff
changeset
|
10 envelope from / recipient pairs. |
962a1f8f1d9f
add verify statement to verify addresses with better mx host
carl
parents:
89
diff
changeset
|
11 |
962a1f8f1d9f
add verify statement to verify addresses with better mx host
carl
parents:
89
diff
changeset
|
12 Authenticated clients are now exempt from all white/black listing |
962a1f8f1d9f
add verify statement to verify addresses with better mx host
carl
parents:
89
diff
changeset
|
13 in addition to the dnsbl lookups. |
962a1f8f1d9f
add verify statement to verify addresses with better mx host
carl
parents:
89
diff
changeset
|
14 |
91 | 15 dcc_to should not look at substitute mail_host. That is only used |
16 by dcc_from. | |
17 | |
89 | 18 5.3 2005-08-07 |
19 Properly quit if the config file has syntax errors on startup. Send | |
20 mail to root if the config file needs to be reloaded since it was | |
21 modified, but contains syntax errors. In this case, we continue to | |
22 use the old configuration. | |
23 | |
88
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
24 5.2 2005-08-02 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
25 Patch from Stephen Johnson <stephen.johnson@arkansas.gov> fixing the |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
26 lack of a default return value in CONTEXT::acceptable_content(). |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
27 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
28 5.1 2005-07-20 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
29 Add multiple syslog debug levels. Detect and silently remove |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
30 duplicate DNSBL definitions. That allows us to accept mail to |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
31 recipients in multiple domains that use the same blacklist and yet |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
32 only check that blacklist once. This may happen when your config |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
33 file directly includes as child contexts the config files used on |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
34 your clients mail servers. |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
35 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
36 5.0 2005-07-16 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
37 Major changes to the syntax of the config file. Content filtering |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
38 is no longer a global mail server setting. |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
39 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
40 4.6 2005-04-02 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
41 Fix enum compilation error on Fedora Core 3. |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
42 Discovered by Nigel Horne <njh@bandsman.co.uk> |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
43 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
44 Remove bad html tag command from the default conf file. Spammers |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
45 seem to have abandoned this. |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
46 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
47 Add toolbar.msn.click-url.com in hosts-ignore.conf. These are all |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
48 commented, but you might want to uncomment them. |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
49 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
50 4.5 2005-01-22 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
51 Add uuencode decoding for old style attachments. |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
52 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
53 4.4 2005-01-18 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
54 Bug fix in forked process termination that left zombies. |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
55 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
56 4.3 2005-01-16 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
57 Only keep 20% of the resolver sockets in the ready pool. |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
58 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
59 4.2 2005-01-08 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
60 Use the separate resolver processes even if we don't have the |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
61 resolver interfaces and need gethostbyname. |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
62 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
63 4.1 2005-01-06 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
64 Use a local unix domain socket for the resolver process |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
65 communication, rather than a tcp/ip socket. |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
66 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
67 4.0 2005-01-03 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
68 Initialize the thread mutex objects early, before they are needed |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
69 by possible calls to my_syslog. |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
70 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
71 Fork off a separate resolver listener process, so we can do multiple |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
72 dns operations in parallel. For each simultaneous inbound email, |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
73 we have a separate sendmail process, a milter thread, and a dns |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
74 resolver process. |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
75 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
76 3.7 2004-10-28 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
77 Added an 'ignore' command to the conf file, used to ignore some |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
78 hosts that might end up on the SBL and otherwise trip the content |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
79 scanning filter. In particular, many recent Microsoft Word |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
80 documents contain the string www.5iantlavalamp.com which is |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
81 associated with their smart tags stuff. That is currently hosted at |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
82 216.168.224.70, which is shared with a site that ended up on the |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
83 SBL. |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
84 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
85 3.6 2004-09-08 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
86 Contributions from Dan Harkless <software@harkless.org> |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
87 Better documentation for disabling the content filtering. |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
88 Don't bother looking at the body text if we are not doing |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
89 content filtering. |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
90 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
91 3.5 2004-07-17 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
92 Extend the error message for content filtering when the NS record |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
93 points to an ip address on the SBL. Include the original host name |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
94 that referenced that NS name. |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
95 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
96 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
97 3.4 2004-07-15 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
98 Tokens with two consecutive periods cannot be ip addresses or host |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
99 names. |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
100 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
101 Updated dnsbl.spec file for building rpms from John Gunkel. |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
102 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
103 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
104 3.3 2004-07-09 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
105 Drop root priviledges properly, including the group id. |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
106 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
107 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
108 3.2 2004-07-09 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
109 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
110 Contributions from John Gunkel <jgunkel@palliser.ca>: |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
111 Add .spec file for building rpms, contributed by John Gunkel |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
112 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
113 Changes to file layout to conform to RedHat/LSB standards. |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
114 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
115 Add some html (actually xml) tags used by Apple mac print |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
116 subsystem that were tripping the html tag detector. |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
117 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
118 Help with changes required to allow dnsbl to drop root |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
119 priviledges. Move the socket to /var/run/dnsbl/dnsbl.sock |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
120 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
121 Change parser to handle &#xnnn; obfuscated urls with charaters |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
122 specified in hex. |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
123 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
124 Make bad_html tags more sensitive to binary tags, to reduce false |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
125 positives in .zip or .tar.gz file attachments. |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
126 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
127 Add sendmail queueid to the dnsbl syslog messages. |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
128 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
129 Fix one place where host names were not forced to lower case. |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
130 Discovered by Nigel Horne <njh@bandsman.co.uk> |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
131 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
132 Remove duplicate dns queries within the same smtp transaction from |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
133 the body content filtering. This helps if the mail server does not |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
134 have a nearby caching dns server. |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
135 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
136 Add host_soft_limit config keyword. Use only one of host_limit or |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
137 host_soft_limit, since the last one wins. The host_limit is a hard |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
138 upper limit on the number of host names in a message. The |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
139 host_soft_limit allows unlimited host names, but only checks a |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
140 random sample of them against the dnsbl. |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
141 |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
142 The main thread has dropped root priviledges, but other threads |
7245c45cef7a
fix for missing default return value in CONTEXT::acceptable_content()
carl
parents:
87
diff
changeset
|
143 are still running as root. This needs to be fixed. |