ports/90018: Update port: mail/postfix-policyd-weight

Robert Felber robtone at ek-muc.de
Tue Dec 6 11:30:03 UTC 2005 

>Number:         90018
>Category:       ports
>Synopsis:       Update port: mail/postfix-policyd-weight
>Confidential:   no
>Severity:       non-critical
>Priority:       low
>Responsible:    freebsd-ports-bugs
>State:          open
>Quarter:        
>Keywords:       
>Date-Required:
>Class:          maintainer-update
>Submitter-Id:   current-users
>Arrival-Date:   Tue Dec 06 11:30:01 GMT 2005
>Closed-Date:
>Last-Modified:
>Originator:     Robert Felber
>Release:        FreeBSD 5.3-STABLE i386
>Organization:
Autohaus Erich Kuttendreier (Ford Main Dealer Munich)
>Environment:
System: FreeBSD 5.3-STABLE
>Description:

Makefile changes: changed master site, got an own domain (policyd-weight.org)
                  pkg-install script added which takes care of adding user
                  "polw"
                  ./file/pkg-message.in changed to give a warning of the rather
                  important change
0.1.12 beta

- improved multirecipient awareness. It is now possible to build up restriction
  classes within postfix to either explicitly say "check policy service" or to
  make user exceptions. This is important for ISP. This was not possible with
  previous versions.

- -d debug switch added. In debug mode nothing is sent to syslog but STDOUT
  also it turns on Net::DNS debugging
  It prints some perl/OS/Net:DNS/policyd-weight version infos and configuration
  this switch is NOT FOR USE IN MASTER.CF

- permission/accessibility checks for configuration files added. Syslog if
  either permission denied, or config is world-writeable. Recommended mode is
  0644 and owner root, group root (or wheel on bsd).

- cache outsourced to an own cache daemon. Decreases drastically frequent DNS
  lookups and thus network delays and CPU time.
  For security reasons policyd-weight must not run as nobody or root. Set up
  an own user for that and update master.cf (user=$your_user)
  Several configuration items for the cache have been added

- some scores adjusted to let pass DynDNS MX users with a envelope of
  foo at bar.dyndns.org
  Also the spamcop score has been lowered

- helo_from_mx_eq_ip_score added

- some more scores adjusted

- FROM Domain vs HELO regex check adjusted

- Process UID check added, policyd-weight must have it's own user. Update
  master.cf

- dynmaic clients whose score cause a REJECT will be rejected with a note:
  "; please relay via your ISP ($from_domain)"

- critical fix: First perform Sender Domain MX lookups. If the Client is a
  MX for that Domain, don't do HELO vs FROM pattern matching.

- Halved the weight of RBL results agains HELO/FROM pattern mismatches.

- removed scoring for HELO == dynamic host regexp check if client address ==
  dynhost check was true. This might (and will) permit more spam to get through.
  But also some dynamic host MTAs which don't use dyndns possibilities.


>How-To-Repeat:
>Fix:

--- postfix-policyd-weight-0.1.12.diff begins here ---
diff -ruN /usr/ports/mail/postfix-policyd-weight/Makefile postfix-policyd-weight-0.1.12/Makefile
--- /usr/ports/mail/postfix-policyd-weight/Makefile	Tue Oct 25 00:00:52 2005
+++ postfix-policyd-weight-0.1.12/Makefile	Tue Dec  6 12:11:32 2005
@@ -2,13 +2,13 @@
 # Date created:				25 Apr 2005
 # Whom:					Robert Felber <robtone at ek-muc.de>
 #
-# $FreeBSD: ports/mail/postfix-policyd-weight/Makefile,v 1.7 2005/10/24 09:33:33 jylefort Exp $
+# $FreeBSD: ports/mail/postfix-policyd-weight/Makefile,v 1.6 2005/09/06 07:45:05 jylefort Exp $
 #
 
 PORTNAME=	policyd-weight
-PORTVERSION=	0.1.11
+PORTVERSION=	0.1.12
 CATEGORIES=	mail
-MASTER_SITES=	http://robtone.mine.nu/postfix/releases/
+MASTER_SITES=	http://www.policyd-weight.org/releases/
 PKGNAMEPREFIX=	postfix-
 
 MAINTAINER=	robtone at ek-muc.de
@@ -23,6 +23,9 @@
 do-install:
 	${INSTALL_SCRIPT} ${WRKSRC}/${PORTNAME} ${PREFIX}/libexec/postfix
 	${INSTALL_DATA} ${WRKSRC}/${PORTNAME}.conf.sample ${PREFIX}/etc
+
+pre-install:
+	PKG_PREFIX=${PREFIX} ${SH} ${PKGINSTALL} ${PKGNAME} PRE-INSTALL
 
 post-install:
 	@${CAT} ${PKGMESSAGE}
diff -ruN /usr/ports/mail/postfix-policyd-weight/distinfo postfix-policyd-weight-0.1.12/distinfo
--- /usr/ports/mail/postfix-policyd-weight/distinfo	Tue Oct 25 00:00:52 2005
+++ postfix-policyd-weight-0.1.12/distinfo	Tue Dec  6 12:04:23 2005
@@ -1,2 +1,2 @@
-MD5 (policyd-weight-0.1.11.tar.gz) = 1d4ad10437054bf47e781265c2e2e9d3
-SIZE (policyd-weight-0.1.11.tar.gz) = 20139
+MD5 (policyd-weight-0.1.12.tar.gz) = d2cdbc239ca278c4da412289ee42d12b
+SIZE (policyd-weight-0.1.12.tar.gz) = 26530
diff -ruN /usr/ports/mail/postfix-policyd-weight/files/pkg-message.in postfix-policyd-weight-0.1.12/files/pkg-message.in
--- /usr/ports/mail/postfix-policyd-weight/files/pkg-message.in	Tue Sep  6 10:27:14 2005
+++ postfix-policyd-weight-0.1.12/files/pkg-message.in	Tue Dec  6 11:52:18 2005
@@ -2,7 +2,7 @@
 * To run this from %%PREFIX%%/etc/postfix/master.cf:
 
 policy  unix  -       n       n       -       -       spawn
-  user=nobody argv=%%PREFIX%%/libexec/postfix/policyd-weight
+  user=polw argv=%%PREFIX%%/libexec/postfix/policyd-weight
 
 * To use this from Postfix SMTPD, use in %%PREFIX%%/etc/postfix/main.cf
 
@@ -23,4 +23,11 @@
 * edit %%PREFIX%%/etc/policyd-weight.conf
 * An example is provided in %%PREFIX%%/etc/policyd-weight.conf.sample
 *
+*
+* ATTENTION !!! ATTENTION
+*
+* if you are already using policyd-weight you MUST update your master.cf and
+* change the user=nobody argument to user=polw
+* 
+* ATTENTION !!! ATTENTION
 *************
diff -ruN /usr/ports/mail/postfix-policyd-weight/pkg-descr postfix-policyd-weight-0.1.12/pkg-descr
--- /usr/ports/mail/postfix-policyd-weight/pkg-descr	Mon Apr 25 18:54:05 2005
+++ postfix-policyd-weight-0.1.12/pkg-descr	Tue Dec  6 11:48:29 2005
@@ -1,8 +1,8 @@
 Policyd-weight is (as the name says) a weighted policyd for Postfix.
 It uses HELO, MAIL FROM and the MTA IP address for scoring their
-correctness. It also uses definable DNSBLs in a scored fashion.
+correctness. It also uses definable DNSBLs and RHSBLs in a scored fashion.
 
-WWW: http://robtone.mine.nu/postfix/
+WWW: http://www.policyd-weight.org
 
 - Robert Felber
 robtone at ek-muc.de
diff -ruN /usr/ports/mail/postfix-policyd-weight/pkg-install postfix-policyd-weight-0.1.12/pkg-install
--- /usr/ports/mail/postfix-policyd-weight/pkg-install	Thu Jan  1 01:00:00 1970
+++ postfix-policyd-weight-0.1.12/pkg-install	Tue Dec  6 11:54:43 2005
@@ -0,0 +1,31 @@
+#!/bin/sh
+#
+
+if [ "$2" != "PRE-INSTALL" ]; then
+    exit 0
+fi
+
+USER=polw
+GROUP=${USER}
+
+if ! pw groupshow "${GROUP}" 2>/dev/null 1>&2; then
+	if pw groupadd ${GROUP} ; then
+		echo "Added group \"${GROUP}\"."
+	else
+		echo "Adding group \"${GROUP}\" failed..."
+		exit 1
+	fi
+fi
+
+if ! pw usershow "${USER}" 2>/dev/null 1>&2; then
+	if pw useradd ${USER} -g ${GROUP} -h - \
+		-s "/sbin/nologin" -d "/nonexistent" \
+		-c "Policyd-weight Cache Owner"; \
+	then
+		echo "Added user \"${USER}\"."
+	else
+		echo "Adding user \"${USER}\" failed..."
+		exit 1
+	fi
+fi
+exit 0
--- postfix-policyd-weight-0.1.12.diff ends here ---

>Release-Note:
>Audit-Trail:
>Unformatted:

More information about the freebsd-ports-bugs mailing list