Package: milter-greylist / 4.5.11-1.1

greylist.conf Patch series | download
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
Description: Correct the location of the socket, and the user the 
 daemon runs as, to conform with Debian norms.
Origin: vendor
Forwarded: not-needed
Author: Paul Martin <pm@debian.org>

Index: milter-greylist-4.5.11/greylist.conf
===================================================================
--- milter-greylist-4.5.11.orig/greylist.conf	2014-07-30 09:29:48.543484591 +0100
+++ milter-greylist-4.5.11/greylist.conf	2014-07-30 09:29:48.539484522 +0100
@@ -6,11 +6,17 @@
 #
 
 pidfile "/var/run/milter-greylist.pid"
-socket "/var/milter-greylist/milter-greylist.sock"
-dumpfile "/var/milter-greylist/greylist.db" 600
+dumpfile "/var/lib/milter-greylist/greylist.db" 600
 dumpfreq 1
+
+# For sendmail use the following two lines
+socket "/var/run/milter-greylist/milter-greylist.sock"
 user "smmsp"
 
+# For Postfix uncomment the following two lines and comment out the
+# sendmail ones above.
+#socket "/var/run/milter-greylist/milter-greylist.sock" 660
+#user "postfix"
 
 # Log milter-greylist activity to a file
 #stat ">>/var/milter-greylist/greylist.log" \
@@ -32,6 +38,15 @@
 # Your own network, which should not suffer greylisting
 list "my network" addr { 127.0.0.1/8 10.0.0.0/8 192.0.2.0/24 }
 
+# Your MXes and Mailforwardinghosts, Mailinglistsproviders, which you
+# don't want to annoy.
+list "my friends" addr {   \
+	70.103.162.0/24    \ # Debian Mail+Listservers. NEVER unwhitelist them.
+	140.211.166.0/24   \ # Debian Bugs
+	192.25.206.0/24    \ # Debian web/cvs/people
+	194.109.137.218/32 \ # Debian security/www-master.d.o
+}
+
 # This is a list of broken MTAs that break with greylisting. Derived from
 # http://cvs.puremagic.com/viewcvs/greylisting/schema/whitelist_ip.txt?rev=1.16
 list "broken mta" addr {   \
@@ -128,6 +143,7 @@
 
 # And here is the access list
 racl whitelist list "my network"
+racl whitelist list "my friends"
 racl whitelist list "broken mta"
 #racl whitelist dnsrbl "MTAWL"
 #racl blacklist urlcheck "userpref" $usrRBL "CBL" dnsrbl "CBL" \