Sendmail + dk-milter + sid-filter setup with DNS+BIND9

Gerard Seibert gerard-seibert at suscom.net
Sat Sep 17 14:40:02 PDT 2005 

On Sat, 17 Sep 2005 17:55:33 +0100, Hanno Krusken <lr101fc at yahoo.co.uk>
Subject: Sendmail + dk-milter + sid-filter setup with DNS+BIND9
Wrote these words of wisdom:

> 
> Hi all,
> need help to setup DNS for mai domain.
> I would like to get dk-milter to sign all my outgoing mail to be DNS confirm with my "domain.net"
> That means, my emails get classified as [BULK] or "SPAM" if I send mails to strong anti-spam-NX1.mail.domains with out a propper DNS setup.
> 
> by dig in to the /var/log/maillog, sendmail and dk-milter staring ok, with the dk-filter.pid file, but if I send a mail to test my domainkey, or even just any other mail, sendmail can't connect to get dk-milter involfed.
> the same error happend to sid-filter as well.
> 
> I'm running:
> FreeBSD-5.4-RELENG-p7 with the latest ports-update
> Sendmail-8.13.5
> host+BIND9
> 
> 
> #
> # /etc/namedb/localhost.rev (entry)
> #
> _domainkey	IN	TXT	"g=; k=rsa; t=y; p=MHwwDQYJK
> 
> #
> # /var/log/maillog
> #
> dk-filter[683]: Sendmail DomainKeys Filter v0.3.0 starting (args: -l -p local:/var/run/dk-filter -P /var/run/dk-filter.pid -d DOMAIN.net -c nofws -H -m MSA -s /var/db/domainkeys/mail.key.pem -S default)                                <------------------------------#
> milter-greylist: cannot read dumpfile "/var/milter-greylist/greylist.db"
> milter-greylist: cannot read dumpfile "/var/milter-greylist/greylist.db"
> milter-greylist: starting with an empty greylist
> milter-greylist: starting with an empty greylist
> sid-filter[700]: Sendmail Sender-ID Filter v0.2.9 starting (args: -l -p local:/var/run/sid-filter -P /var/run/sid-filter.pid -t -r 0)
> sm-mta[710]: starting daemon (8.13.5): SMTP+queueing at 00:00:01
> sm-msp-queue[713]: starting daemon (8.13.5): queueing at 00:00:01
> sendmail[1795]: j8HG0RKw001795: from=hanno, size=669, class=0, nrcpts=1, msgid=<my.email. at my.domain.net>, relay=hanno at localhost
> sm-mta[1800]: j8HG0SKk001800: Milter (dk-filter): error connecting to filter: Operation timed out with DOMAIN.net      <---------------------#
> sm-mta[1800]: j8HG0SKk001800: Milter (dk-filter): error connecting to filter: Operation timed out with DOMAIN.net
> sm-mta[1800]: j8HG0SKk001800: Milter (dk-filter): to error state
> sm-mta[1800]: j8HG0SKk001800: Milter (sid-filter): error connecting to filter: Connection refused by /var/sid-filter/sid-filter.sock
> sm-mta[1800]: j8HG0SKk001800: Milter (sid-filter): error connecting to filter: Connection refused by /var/sid-filter/sid-filter.sock
> sm-mta[1800]: j8HG0SKk001800: Milter (sid-filter): to error state
> milter-greylist: j8HG0SKk001800: skipping greylist because address 127.0.0.1 is whitelisted, (from=<my.email. at my.domain.net>, rcpt=<dk at dk.crynwr.com>, addr=127.0.0.1)
> sm-mta[1800]: j8HG0SKk001800: from=<my.email. at my.domain.net>, size=820, class=0, nrcpts=1, msgid=<my.email. at my.domain.net>, proto=ESMTP, daemon=IPv4, relay=ix260.net [127.0.0.1]
> sm-mta[1800]: j8HG0SKk001800: Milter add: header: X-Virus-Scanned: ClamAV version 0.86.2, clamav-milter version 0.86 on IX260.ix260.net
> sm-mta[1800]: j8HG0SKk001800: Milter add: header: X-Virus-Status: Clean
> sm-mta[1800]: j8HG0SKk001800: Milter add: header: X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-2.0 (DOMAIN.net [127.0.0.1]); Sat, 17 Sep 2005 17:01:44 +0100 (BST)
> sendmail[1795]: j8HG0RKw001795: to=dk at dk.crynwr.com, ctladdr=hanno (1001/1001), delay=00:01:17, xdelay=00:01:17, mailer=relay, pri=30669, relay=[127.0.0.1] [127.0.0.1], dsn=2.0.0, stat=Sent (j8HG0SKk001800 Message accepted for delivery)
> sm-mta[2108]: j8HG0SKk001800: to=<dk at dk.crynwr.com>, ctladdr=<my.email. at my.domain.net> (1001/1001), delay=00:00:03, xdelay=00:00:02, mailer=esmtp, pri=30820, relay=pdam.crynwr.com. [192.203.178.8], dsn=2.0.0, stat=Sent (ok 1126972906 qp 30295)
> 
> #
> # /etc/mail/my.domain.mc
> #
> divert(0)
> VERSIONID(`$FreeBSD: src/etc/sendmail/freebsd.mc,v 1.29 2003/12/24 21:15:09 gshapiro Exp $')
> OSTYPE(freebsd5)
> DOMAIN(generic)
> FEATURE(access_db, `hash -o -T<TMPF> /etc/mail/access')
> FEATURE(blacklist_recipients)
> FEATURE(local_lmtp)
> FEATURE(mailertable, `hash -o /etc/mail/mailertable')
> FEATURE(virtusertable, `hash -o /etc/mail/virtusertable')
> FEATURE(accept_unqualified_senders)
> FEATURE(`nocanonify', `canonify_hosts')
> FEATURE(`dnsbl', `dnsbl.sorbs.net',, `t')
> FEATURE(`dnsbl', `sbl-xbl.spamhaus.org',, `t')
> define(`confDIRECT_SUBMISSION_MODIFIERS', `C')
> define(`confDONT_BLAME_SENDMAIL', `GroupReadableSASLDBFile')
> define(`confEBINDIR', `/usr/local/libexec')dnl
> define(`UUCP_MAILER_PATH', `/usr/local/bin/uux')dnl
> define(`confBIND_OPTS', `WorkAroundBrokenAAAA')
> define(`confNO_RCPT_ACTION', `add-to-undisclosed')
> define(`confPRIVACY_FLAGS', `authwarnings,noexpn,novrfy')
> define(`confPRIVACY_FLAGS', `novrfy, noexpn')
> MAILER(local)
> MAILER(smtp)
> dnl Cw localhost
> Cw DOMAIN.net
> dnl Xdk-filter, S=inet:8891 at localhost
> INPUT_MAIL_FILTER(`dk-filter', `S=inet:8891 at DOMAIN.net')                                <-----------------------------------#
> INPUT_MAIL_FILTER(`clmilter', `S=local:/var/run/clamav/clmilter.sock, F=T, T=S:4m;R:4m')
> INPUT_MAIL_FILTER(`greylist', `S=local:/var/milter-greylist/milter-greylist.sock')
> INPUT_MAIL_FILTER(`sid-filter',`S=local:/var/sid-filter/sid-filter.sock')
> define(`confMILTER_MACROS_CONNECT', `j, {if_addr}')
> define(`confMILTER_MACROS_HELO', `{verify}, {cert_subject}')
> define(`confMILTER_MACROS_ENVFROM', `i, {auth_authen}')
> define(`confINPUT_MAIL_FILTER',`dk-filter,clmilter,greylist,sid-filter')

*************** REPLY SEPARATOR ***************
On 9/17/2005 5:32:36 PM Gerard Seibert Replied:

I am not sure if it means anything or not, but it seems that you are
missing several "`" and "'" marks around your statements in the both the
"define" and "FEATURE" areas. According to my copy of O'Reilly's
"Sendmail", they are required.

     (\___/)   (\___/)   (\___/)   (\___/)   (\___/)   (\___/)
     /0\ /0\   /o\ /o\   /0\ /0\   /O\ /O\   /o\ /o\   /0\ /0\
     \__V__/   \__V__/   \__V__/   \__V__/   \__V__/   \__V__/
    /|:. .:|\ /|;, ,;|\ /|:. .:|\ /|;, ,;|\ /|;, ,;|\ /|:. .:|\
    \\:::::// \\;;;;;// \\:::::// \\;;;;;// \\;;;;;// \\::::://
jgs--`"" ""`---`"" ""`---`"" ""`---`"" ""`---`"" ""`---`"" ""`---
^~^^~^~^~^~^^~~^^^~^~~^~^~^~^^~~^^^~^~~^~^~^~^^~~^^^~^^~^~^~^^~~^^

More information about the freebsd-questions mailing list