$- $: $(badhosts $1.$2.$3.$4 $) look up host address
R IPv6 : $+ $: $(badhosts IPv6:$1 $) look up host or network
address
R $-.$-.$-.$- $: $(badhosts $1.$2.$3 $) look up network address
* We illustrate this scheme, despite the fact that it is available in the access database, because other meaningful
uses for this rule set are rare.
This is the Title of the Book, eMatter Edition
Copyright ?© 2007 O??™Reilly & Associates, Inc. All rights reserved.
254 | Chapter 7: How to Handle Spam
R $*<> $#error $@ 5.1.3 $: 550 Sorry, $1 denied
R $* $@ ok otherwise OK
The first rule looks up the host part in the database. If it is found, the value (reason
for rejection) is returned and the two characters < > are appended. The second rule
looks for anything to the left of the $| that ends in < > and, if anything is found,
issues the error:*
550 5.1.3 Sorry, reason for reject denied
Rejected connections are handled in the same way as connections rejected by the
access database (?§7.5 on page 277).
The rest of the rules do the same thing, but also check for the IP address.
If the Local_check_relay rule set returns a #error or #discard delivery agent, the connection
is rejected. If it returns a $#OK,?? the connection is accepted and subsequent
check_relay rule set rules are skipped:
SLocal_check_relay
R $* $# OK skip check_relay rule set rules
But if it returns a $@OK, further check_relay rule set rules are allowed which might
themselves reject the connection:
SLocal_check_relay
R $* $@ OK allow check_relay rule set rules
Note that the rules presented here are not nearly as complex or sophisticated as your
site will likely need.
Pages:
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473