notdcc: dcc.0 annotate

annotate dcc.0 @ 3:b689077d4918

Ignore old patches

author	Peter Gervai <grin@grin.hu>
date	Tue, 10 Mar 2009 14:31:24 +0100
parents	c7f6b056b673
children

rev	line source
0 c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	1 DCC(8) Distributed Checksum Clearinghouse DCC(8)
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	2
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	3 NNAAMMEE
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	4 DDCCCC -- Distributed Checksum Clearinghouse
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	5
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	6 DDEESSCCRRIIPPTTIIOONN
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	7 The Distributed Checksum Clearinghouse or DDCCCC is a cooperative, distrib-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	8 uted system intended to detect "bulk" mail or mail sent to many people.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	9 It allows individuals receiving a single mail message to determine that
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	10 many other people have received essentially identical copies of the mes-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	11 sage and so reject or discard the message.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	12
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	13 Source for the server, client, and utilities is available at Rhyolite
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	14 Software, LLC, http://www.rhyolite.com/dcc/ It is free for organizations
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	15 that do not sell spam or virus filtering services.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	16
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	17 HHooww tthhee DDCCCC IIss UUsseedd
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	18 The DCC can be viewed as a tool for end users to enforce their right to
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	19 "opt-in" to streams of bulk mail by refusing bulk mail except from
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	20 sources in a "whitelist." Whitelists are the responsibility of DCC
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	21 clients, since only they know which bulk mail they solicited.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	22
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	23 False positives or mail marked as bulk by a DCC server that is not bulk
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	24 occur only when a recipient of a message reports it to a DCC server as
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	25 having been received many times or when the "fuzzy" checksums of differ-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	26 ing messages are the same. The fuzzy checksums ignore aspects of mes-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	27 sages in order to compute identical checksums for substantially identical
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	28 messages. The fuzzy checksums are designed to ignore only differences
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	29 that do not affect meanings. So in practice, you do not need to worry
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	30 about DCC false positive indications of "bulk," but not all bulk mail is
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	31 unsolicited bulk mail or spam. You must either use whitelists to distin-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	32 guish solicited from unsolicited bulk mail or only use DCC indications of
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	33 "bulk" as part of a scoring system such as SpamAssassin. Besides unso-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	34 licited bulk email or spam, bulk messages include legitimate mail such as
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	35 order confirmations from merchants, legitimate mailing lists, and empty
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	36 or test messages.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	37
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	38 A DCC server estimates the number copies of a message by counting check-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	39 sums reported by DCC clients. Each client must decide which bulk mes-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	40 sages are unsolicited and what degree of "bulkiness" is objectionable.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	41 Client DCC software marks, rejects, or discards mail that is bulk accord-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	42 ing to local thresholds on target addresses from DCC servers and unso-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	43 licited according to local whitelists.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	44
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	45 DCC servers are usually configured to receive reports from as many tar-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	46 gets as possible, including sources that cannot be trusted to not exag-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	47 gerate the number of copies of a message they see. A user of a DCC
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	48 client angry about receiving a message could report it with 1,000,000
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	49 separate DCC reports or with a single report claiming 1,000,000 targets.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	50 An unprincipled user could subscribe a "spam trap" to mailing lists such
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	51 as those of the IETF or CERT. Such abuses of the system area not prob-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	52 lems, because much legitimate mail is "bulk." You cannot reject bulk
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	53 mail unless you have a whitelist of sources of legitimate bulk mail.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	54
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	55 DCC can also be used by an Internet service provider to detect bulk mail
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	56 coming from its own customers. In such circumstances, the DCC client
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	57 might be configured to only log bulk mail from unexpected (not
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	58 whitelisted) customers.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	59
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	60 WWhhaatt tthhee DDCCCC IIss
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	61 A DCC server accumulates counts of cryptographic checksums of messages
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	62 but not the messages themselves. It exchanges reports of frequently seen
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	63 checksums with other servers. DCC clients send reports of checksums
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	64 related to incoming mail to a nearby DCC server running dccd(8). Each
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	65 report from a client includes the number of recipients for the message.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	66 A DCC server accumulates the reports and responds to clients the the cur-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	67 rent total number of recipients for each checksum. The client adds an
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	68 SMTP header to incoming mail containing the total counts. It then dis-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	69 cards or rejects mail that is not whitelisted and has counts that exceed
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	70 local thresholds.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	71
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	72 A special value of the number of addressees is "MANY" and means it is
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	73 certain that this message was bulk and might be unsolicited, perhaps
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	74 because it came from a locally blacklisted source or was addressed to an
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	75 invalid address or "spam trap." The special value "MANY" is merely the
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	76 largest value that fits in the fixed sized field containing the count of
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	77 addressees. That "infinity" accumulated total can be reached with mil-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	78 lions of independent reports as well as with one or two.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	79
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	80 DCC servers _f_l_o_o_d or send reports of checksums of bulk mail to neighbor-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	81 ing servers.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	82
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	83 To keep a server's database of checksums from growing without bound,
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	84 checksums are forgotten when they become old. Checksums of bulk mail are
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	85 kept longer. See dbclean(8).
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	86
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	87 DCC clients pick the nearest working DCC server using a small shared or
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	88 memory mapped file, _/_v_a_r_/_d_c_c_/_m_a_p. It contains server names, port num-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	89 bers, passwords, recent performance measures, and so forth. This file
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	90 allows clients to use quick retransmission timeouts and to waste little
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	91 time on servers that have temporarily stopped working or become unreach-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	92 able. The utility program cdcc(8) is used to maintain this file as well
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	93 as to check the health of servers.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	94
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	95 XX--DDCCCC HHeeaaddeerrss
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	96 The DCC software includes several programs used by clients. Dccm(8) uses
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	97 the sendmail "milter" interface to query a DCC server, add header lines
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	98 to incoming mail, and reject mail whose total checksum counts are high.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	99 Dccm is intended to be run with SMTP servers using sendmail.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	100
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	101 Dccproc(8) adds header lines to mail presented by file name or _s_t_d_i_n, but
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	102 relies on other programs such as procmail to deal with mail with large
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	103 counts. Dccsight(8) is similar but deals with previously computed check-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	104 sums.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	105
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	106 Dccifd(8) is similar to dccproc but is not run separately for each mail
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	107 message and so is far more efficient. It receives mail messages via a
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	108 socket somewhat like dccm, but with a simpler protocol that can be used
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	109 by Perl scripts or other programs.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	110
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	111 DCC SMTP header lines are of one of the forms:
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	112
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	113 X-DCC-brand-Metrics: client server-ID; bulk cknm1=count cknm2=count ...
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	114 X-DCC-brand-Metrics: client; whitelist
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	115 where
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	116 _w_h_i_t_e_l_i_s_t appears if the global or per-user _w_h_i_t_e_c_l_n_t file marks the
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	117 message as good.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	118 _b_r_a_n_d is the "brand name" of the DCC server, such as "RHYOLITE".
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	119 _c_l_i_e_n_t is the name or IP address of the DCC client that added the
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	120 header line to the SMTP message.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	121 _s_e_r_v_e_r_-_I_D is the numeric ID of the DCC server that the DCC client con-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	122 tacted.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	123 _b_u_l_k is present if one or more checksum counts exceeded the DCC
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	124 client's thresholds to make the message "bulky."
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	125 _b_u_l_k _r_e_p is present if the DCC reputation of the IP address of the
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	126 sender is bad.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	127 _c_k_n_m_1,_c_k_n_m_2,... are types of checksums:
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	128 _I_P address of SMTP client
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	129 _e_n_v___F_r_o_m SMTP envelope value
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	130 _F_r_o_m SMTP header line
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	131 _M_e_s_s_a_g_e_-_I_D SMTP header line
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	132 _R_e_c_e_i_v_e_d last Received: header line in the SMTP message
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	133 _s_u_b_s_t_i_t_u_t_e SMTP header line chosen by the DCC client, pre-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	134 fixed with the name of the header
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	135 _B_o_d_y SMTP body ignoring white-space
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	136 _F_u_z_1 filtered or "fuzzy" body checksum
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	137 _F_u_z_2 another filtered or "fuzzy" body checksum
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	138 _r_e_p DCC reputation of the mail sender or the esti-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	139 mated probability that the message is bulk.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	140 Counts for _I_P, _e_n_v___F_r_o_m, _F_r_o_m, _M_e_s_s_a_g_e_-_I_d, _R_e_c_e_i_v_e_d, and
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	141 _s_u_b_s_t_i_t_u_t_e checksums are omitted by the DCC client if the
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	142 server says it has no information. Counts for _F_u_z_1 and _F_u_z_2
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	143 are omitted if the message body is empty or contains too lit-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	144 tle of the right kind of information for the checksum to be
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	145 computed.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	146 _c_o_u_n_t is the total number of recipients of messages with that check-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	147 sum reported directly or indirectly to the DCC server. The
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	148 special count "MANY" means that DCC client have claimed that
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	149 the message is directed at millions of recipients. "MANY"
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	150 imples the message is definitely bulk, but not necessarily
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	151 unsolicited. The special counts "OK" and "OK2" mean the
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	152 checksum has been marked "good" or "half-good" by DCC servers.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	153
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	154 MMaaiilliinngg lliissttss
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	155 Legitimate mailing list traffic differs from spam only in being solicited
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	156 by recipients. Each client should have a private whitelist.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	157
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	158 DCC whitelists can also mark mail as unsolicited bulk using blacklist
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	159 entries for commonly forged values such as "From: user@public.com".
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	160
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	161 WWhhiittee aanndd BBllaacckklliissttss
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	162 DCC server and client whitelist files share a common format. Server
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	163 files are always named _w_h_i_t_e_l_i_s_t and one is required to be in the DCC
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	164 home directory with the other server files. Client whitelist files are
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	165 named _w_h_i_t_e_c_l_n_t in the DCC home directory or a subdirectory specified
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	166 with the --UU option for dccm(8). They specify mail that should not be
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	167 reported to a DCC server or that is always unsolicited and almost cer-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	168 tainly bulk.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	169
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	170 A DCC whitelist file contains blank lines, comments starting with "#",
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	171 and lines of the following forms:
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	172 _i_n_c_l_u_d_e _f_i_l_e
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	173 Copies the contents of _f_i_l_e into the whitelist. It can occur
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	174 only in the main whitelist or whiteclnt file and not in an
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	175 included file. The file name should be absolute or relative to
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	176 the DCC home directory.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	177
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	178 _c_o_u_n_t _v_a_l_u_e
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	179 lines specify checksums that should be white- or blacklisted.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	180 _c_o_u_n_t _e_n_v___F_r_o_m _8_2_1_-_p_a_t_h
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	181 _c_o_u_n_t _e_n_v___T_o _d_e_s_t_-_m_a_i_l_b_o_x
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	182 _c_o_u_n_t _F_r_o_m _8_2_2_-_m_a_i_l_b_o_x
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	183 _c_o_u_n_t _M_e_s_s_a_g_e_-_I_D _<_s_t_r_i_n_g_>
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	184 _c_o_u_n_t _R_e_c_e_i_v_e_d _s_t_r_i_n_g
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	185 _c_o_u_n_t _S_u_b_s_t_i_t_u_t_e _h_e_a_d_e_r _s_t_r_i_n_g
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	186 _c_o_u_n_t _H_e_x _c_t_y_p_e _c_k_s_u_m
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	187 _c_o_u_n_t _i_p _I_P_-_a_d_d_r_e_s_s
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	188
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	189 _M_A_N_Y _v_a_l_u_e
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	190 indicates that millions of targets have received messages
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	191 with the header, IP address, or checksum _v_a_l_u_e.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	192 _O_K _v_a_l_u_e
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	193 _O_K_2 _v_a_l_u_e
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	194 say that messages with the header, IP address, or check-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	195 sum _v_a_l_u_e are OK and should not reported to DCC servers
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	196 or be greylisted. _O_K_2 says that the message is "half
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	197 OK." Two _O_K_2 checksums associated with a message are
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	198 equivalent to one _O_K.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	199 A DCC server never shares or _f_l_o_o_d_s reports containing
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	200 checksums marked in its whitelist with OK or OK2 to other
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	201 servers. A DCC client does not report or ask its server
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	202 about messages with a checksum marked OK or OK2 in the
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	203 client whitelist. This is intended to allow a DCC client
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	204 to keep private mail so private that even its checksums
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	205 are not disclosed.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	206 _M_X _I_P_-_a_d_d_r_e_s_s_-_o_r_-_h_o_s_t_n_a_m_e
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	207 _M_X_D_C_C _I_P_-_a_d_d_r_e_s_s_-_o_r_-_h_o_s_t_n_a_m_e
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	208 mark an address or block of addresses of trust mail
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	209 relays including MX servers, smart hosts, and bastion or
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	210 DMZ relays. The DCC clients dccm(8), dccifd(8), and
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	211 dccproc(8) parse and skip initial Received: headers added
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	212 by listed MX servers to determine the external sources of
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	213 mail messages. Unsolicited bulk mail that has been for-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	214 warded through listed addresses is discarded by dccm(8)
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	215 and dccifd(8) as if with --aa _D_I_S_C_A_R_D instead of rejected.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	216 _M_X_D_C_C marks addresses that are MX servers that run DCC
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	217 clients. The checksums for a mail message that has been
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	218 forwarded through an address listed as MXDCC queried
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	219 instead of reported.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	220 _S_U_B_M_I_T _I_P_-_a_d_d_r_e_s_s_-_o_r_-_h_o_s_t_n_a_m_e
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	221 marks an IP address or block addresses of SMTP submission
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	222 clients such as web browsers that cannot tolerate 4yz
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	223 temporary rejections but that cannot be trusted to not
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	224 send spam. Since they are local addresses, DCC Reputa-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	225 tions are not computed for them.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	226
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	227 _v_a_l_u_e in _c_o_u_n_t _v_a_l_u_e lines can be
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	228 _d_e_s_t_-_m_a_i_l_b_o_x
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	229 is an RFC 821 address or a local user name.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	230 _8_2_1_-_p_a_t_h
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	231 is an RFC 821 address.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	232 _8_2_2_-_m_a_i_l_b_o_x
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	233 is an RFC 822 address with optional name.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	234 _S_u_b_s_t_i_t_u_t_e _h_e_a_d_e_r
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	235 is the name of an SMTP header such as "Sender" or the
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	236 name of one of two SMTP envlope values, "HELO," or
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	237 "Mail_Host" for the resolved host name from the _8_2_1_-_p_a_t_h
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	238 in the message.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	239 _H_e_x _c_t_y_p_e _c_k_s_u_m
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	240 starts with the string _H_e_x followed a checksum type, and
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	241 a string of four hexadecimal numbers obtained from a DCC
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	242 log file or the dccproc(8) command using --CCQQ. The check-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	243 sum type is _b_o_d_y, _F_u_z_1, or _F_u_z_2 or one of the preceding
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	244 checksum types such as _e_n_v___F_r_o_m.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	245 _I_P_-_a_d_d_r_e_s_s
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	246 is a host name, IPv4 or IPv6 address, or a block of IP
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	247 addresses in the standard xxx/mm from with mm limited for
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	248 server whitelists to 16 for IPv4 or 112 for IPv6. There
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	249 can be at most 64 CIDR blocks in a client _w_h_i_t_e_c_l_n_t file.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	250 A host name is converted to IP addresses with DNS,
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	251 _/_e_t_c_/_h_o_s_t_s or other mechanisms and one checksum for each
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	252 addresses added to the whitelist.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	253
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	254 _o_p_t_i_o_n _s_e_t_t_i_n_g
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	255 can only be in a DCC client _w_h_i_t_e_c_l_n_t file used by dccifd(8),
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	256 dccm(8) or dccproc(8). Settings in per-user whiteclnt files
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	257 override settings in the global file. _S_e_t_t_i_n_g can be any of the
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	258 following:
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	259 _o_p_t_i_o_n _l_o_g_-_a_l_l
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	260 to log all mail messages.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	261 _o_p_t_i_o_n _l_o_g_-_n_o_r_m_a_l
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	262 to log only messages that meet the logging thresholds.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	263 _o_p_t_i_o_n _l_o_g_-_s_u_b_d_i_r_e_c_t_o_r_y_-_d_a_y
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	264 _o_p_t_i_o_n _l_o_g_-_s_u_b_d_i_r_e_c_t_o_r_y_-_h_o_u_r
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	265 _o_p_t_i_o_n _l_o_g_-_s_u_b_d_i_r_e_c_t_o_r_y_-_m_i_n_u_t_e
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	266 creates log files containing mail messages in subdirecto-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	267 ries of the form _J_J_J, _J_J_J_/_H_H, or _J_J_J_/_H_H_/_M_M where _J_J_J is the
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	268 current julian day, _H_H is the current hour, and _M_M is the
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	269 current minute. See also the --ll _l_o_g_d_i_r option for dccm(8),
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	270 dccifd(8), and dccproc(8).
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	271 _o_p_t_i_o_n _d_c_c_-_o_n
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	272 _o_p_t_i_o_n _d_c_c_-_o_f_f
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	273 Control DCC filtering. See the discussion of --WW for
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	274 dccm(8) and dccifd(8).
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	275 _o_p_t_i_o_n _g_r_e_y_l_i_s_t_-_o_n
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	276 _o_p_t_i_o_n _g_r_e_y_l_i_s_t_-_o_f_f
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	277 to control greylisting. Greylisting for other recipients
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	278 in the same SMTP transaction can still cause greylist tem-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	279 porary rejections. _g_r_e_y_l_i_s_t_-_o_f_f in the main whiteclnt
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	280 file.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	281 _o_p_t_i_o_n _g_r_e_y_l_i_s_t_-_l_o_g_-_o_n
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	282 _o_p_t_i_o_n _g_r_e_y_l_i_s_t_-_l_o_g_-_o_f_f
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	283 to control logging of greylisted mail messages.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	284 _o_p_t_i_o_n _D_C_C_-_r_e_p_-_o_f_f
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	285 _o_p_t_i_o_n _D_C_C_-_r_e_p_-_o_n
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	286 to honor or ignore DCC Reputations computed by the DCC
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	287 server.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	288 _o_p_t_i_o_n _D_N_S_B_L_1_-_o_f_f
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	289 _o_p_t_i_o_n _D_N_S_B_L_1_-_o_n
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	290 _o_p_t_i_o_n _D_N_S_B_L_2_-_o_f_f
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	291 _o_p_t_i_o_n _D_N_S_B_L_2_-_o_n
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	292 _o_p_t_i_o_n _D_N_S_B_L_3_-_o_f_f
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	293 _o_p_t_i_o_n _D_N_S_B_L_3_-_o_n
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	294 honor or ignore results of DNS blacklist checks configured
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	295 with --BB for dccm(8), dccifd(8), and dccproc(8).
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	296 _o_p_t_i_o_n _M_T_A_-_f_i_r_s_t
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	297 _o_p_t_i_o_n _M_T_A_-_l_a_s_t
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	298 consider MTA determinations of spam or not-spam first so
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	299 they can be overridden by _w_h_i_t_e_c_l_n_t files, or last so that
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	300 they can override _w_h_i_t_e_c_l_n_t _f_i_l_e_s_.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	301 _o_p_t_i_o_n _f_o_r_c_e_d_-_d_i_s_c_a_r_d_-_o_k
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	302 _o_p_t_i_o_n _n_o_-_f_o_r_c_e_d_-_d_i_s_c_a_r_d
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	303 control whether dccm(8) and dccifd(8) are allowed to dis-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	304 card a message for one mailbox for which it is spam when it
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	305 is not spam and must be delivered to another mailbox. This
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	306 can happen if a mail message is addressed to two or more
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	307 mailboxes with differing whitelists. Discarding can be
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	308 undesirable because false positives are not communicated to
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	309 mail senders. To avoid discarding, dccm(8) and dccifd(8)
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	310 running in proxy mode temporarily reject SMTP envelope _R_c_p_t
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	311 _T_o values that involve differing _w_h_i_t_e_c_l_n_t files.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	312 _o_p_t_i_o_n _t_h_r_e_s_h_o_l_d _t_y_p_e_,_r_e_j_-_t_h_o_l_d
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	313 has the same effects as --cc _t_y_p_e_,_r_e_j_-_t_h_o_l_d for dccproc(8) or
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	314 --tt _t_y_p_e_,_r_e_j_-_t_h_o_l_d for dccm(8) and dccifd(8). It is useful
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	315 only in per-user whiteclnt files to override the global DCC
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	316 checksum thresholds.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	317 _o_p_t_i_o_n _s_p_a_m_-_t_r_a_p_-_a_c_c_e_p_t
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	318 _o_p_t_i_o_n _s_p_a_m_-_t_r_a_p_-_r_e_j_e_c_t
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	319 say that mail should be reported to the DCC server as
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	320 extremely bulk or with target counts of _M_A_N_Y. Greylisting,
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	321 DNS blacklist (DNSBL), and other checks are turned off.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	322 _S_p_a_m_-_t_r_a_p_-_a_c_c_e_p_t tells the MTA to accept the message while
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	323 _s_p_a_m_-_t_r_a_p_-_r_e_j_e_c_t tells the MTA to reject the message. Use
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	324 _S_p_a_m_-_t_r_a_p_-_a_c_c_e_p_t for spam traps that should not be dis-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	325 closed. _S_p_a_m_-_t_r_a_p_-_r_e_j_e_c_t can be used on _c_a_t_c_h_-_a_l_l mail-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	326 boxes that might receive legitimate mail by typographical
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	327 errors and that senders should be told about.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	328
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	329 In the absence of explicit settings, the default in the main
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	330 whiteclnt file is equivalent to
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	331 _o_p_t_i_o_n _l_o_g_-_n_o_r_m_a_l
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	332 _o_p_t_i_o_n _d_c_c_-_o_n
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	333 _o_p_t_i_o_n _g_r_e_y_l_i_s_t_-_o_n
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	334 _o_p_t_i_o_n _g_r_e_y_l_i_s_t_-_l_o_g_-_o_n
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	335 _o_p_t_i_o_n _D_C_C_-_r_e_p_-_o_f_f
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	336 _o_p_t_i_o_n _D_N_S_B_L_1_-_o_f_f
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	337 _o_p_t_i_o_n _D_N_S_B_L_2_-_o_f_f
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	338 _o_p_t_i_o_n _D_N_S_B_L_3_-_o_f_f
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	339 _M_T_A_-_l_a_s_t
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	340 _o_p_t_i_o_n _n_o_-_f_o_r_c_e_d_-_d_i_s_c_a_r_d
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	341 The defaults for individual recipient _w_h_i_t_e_c_l_n_t files are the
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	342 same except as change by explicit settings in the main file.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	343
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	344 Checksums of the IP address of the SMTP client sending a mail message are
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	345 practically unforgeable, because it is impractical for an SMTP client to
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	346 "spoof" its address or pretend to use some other IP address. That would
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	347 make the IP address of the sender useful for whitelisting, except that
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	348 the IP address of the SMTP client is often not available to users of
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	349 dccproc(8). In addition, legitimate mail relays make whitelist entries
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	350 for IP addresses of little use. For example, the IP address from which a
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	351 message arrived might be that of a local relay instead of the home
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	352 address of a whitelisted mailing list.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	353
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	354 Envelope and header _F_r_o_m values can be forged, so whitelist entries for
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	355 their checksums are not entirely reliable.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	356
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	357 Checksums of _e_n_v___T_o values are never sent to DCC servers. They are valid
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	358 in only _w_h_i_t_e_c_l_n_t files and used only by dccm(8), dccifd(8), and
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	359 dccproc(8) when the envelope _R_c_p_t _T_o value is known.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	360
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	361 GGrreeyylliissttss
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	362 The DCC server, dccd(8), can be used to maintain a greylist database for
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	363 some DCC clients including dccm(8) and dccifd(8). Greylisting involves
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	364 temporarily refusing mail from unfamiliar SMTP clients and is unrelated
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	365 to filtering with a Distributed Checksum Clearinghouse.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	366 See http://projects.puremagic.com/greylisting/
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	367
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	368 PPrriivvaaccyy
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	369 Because sending mail is a less private act than receiving it, and because
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	370 sending bulk mail is usually not private at all and cannot be very pri-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	371 vate, the DCC tries first to protect the privacy of mail recipients, and
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	372 second the privacy of senders of mail that is not bulk.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	373
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	374 DCC clients necessarily disclose some information about mail they have
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	375 received. The DCC database contains checksums of mail bodies, header
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	376 lines, and source addresses. While it contains significantly less infor-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	377 mation than is available by "snooping" on Internet links, it is important
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	378 that the DCC database be treated as containing sensitive information and
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	379 to not put the most private information in the DCC database. Given the
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	380 contents of a message, one might determine whether that message has been
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	381 received by a system that subscribes to the DCC. Guesses about the
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	382 sender and addressee of a message can also be validated if the checksums
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	383 of the message have been sent to a DCC server.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	384
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	385 Because the DCC is distributed, organizations can operate their own DCC
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	386 servers, and configure them to share or "flood" only the checksums of
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	387 bulk mail that is not in local whitelists.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	388
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	389 DCC clients should not report the checksums of messages known to be pri-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	390 vate to a DCC server. For example, checksums of messages local to a sys-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	391 tem or that are otherwise known a priori to not be unsolicited bulk
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	392 should not be sent to a remote DCC server. This can accomplished by
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	393 adding entries for the sender to the client's local whitelist file.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	394 Client whitelist files can also include entries for email recipients
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	395 whose mail should not be reported to a DCC server.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	396
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	397 SSeeccuurriittyy
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	398 Whenever considering security, one must first consider the risks. The
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	399 worst DCC security problems are unauthorized commands to a DCC service,
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	400 denial of the DCC service, and corruption of DCC data. The worst that
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	401 can be done with remote commands to a DCC server is to turn it off or
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	402 otherwise cause it to stop responding. The DCC is designed to fail
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	403 gracefully, so that a denial of service attack would at worst allow
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	404 delivery of mail that would otherwise be rejected. Corruption of DCC
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	405 data might at worst cause mail that is already somewhat "bulk" by virtue
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	406 of being received by two or more people to appear have higher recipient
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	407 numbers. Since DCC users _m_u_s_t whitelist all sources of legitimate bulk
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	408 mail, this is also not a concern. Such security risks should be
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	409 addressed, but only with defenses that don't cost more than the possible
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	410 damage from an attack.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	411
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	412 The DCC must contend with senders of unsolicited bulk mail who resort to
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	413 unlawful actions to express their displeasure at having their advertising
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	414 blocked. Because the DCC protocol is based on UDP, an unhappy advertiser
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	415 could try to flood a DCC server with packets supposedly from subscribers
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	416 or non-subscribers. DCC servers defend against that attack by rate-lim-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	417 iting requests from anonymous users.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	418
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	419 Also because of the use of UDP, clients must be protected against forged
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	420 answers to their queries. Otherwise an unsolicited bulk mail advertiser
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	421 could send a stream of "not spam" answers to an SMTP client while simul-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	422 taneously sending mail that would otherwise be rejected. This is not a
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	423 problem for authenticated clients of the DCC because they share a secret
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	424 with the DCC. Unauthenticated, anonymous DCC clients do not share any
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	425 secrets with the DCC, except for unique and unpredictable bits in each
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	426 query or report sent to the DCC. Therefore, DCC servers cryptographi-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	427 cally sign answers to unauthenticated clients with bits from the corre-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	428 sponding queries. This protects against attackers that do not have
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	429 access to the stream of packets from the DCC client.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	430
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	431 The passwords or shared secrets used in the DCC client and server pro-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	432 grams are "cleartext" for several reasons. In any shared secret authen-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	433 tication system, at least one party must know the secret or keep the
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	434 secret in cleartext. You could encrypt the secrets in a file, but
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	435 because they are used by programs, you would need a cleartext copy of the
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	436 key to decrypt the file somewhere in the system, making such a scheme
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	437 more expensive but no more secure than a file of cleartext passwords.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	438 Asymmetric systems such as that used in UNIX allow one party to not know
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	439 the secrets, but they must be and are designed to be computationally
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	440 expensive when used in applications like the DCC that involve thousands
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	441 or more authentication checks per second. Moreover, because of "dictio-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	442 nary attacks," asymmetric systems are now little more secure than keeping
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	443 passwords in cleartext. An adversary can compare the hash values of com-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	444 binations of common words with /etc/passwd hash values to look for bad
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	445 passwords. Worse, by the nature of a client/server protocol like that
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	446 used in the DCC, clients must have the cleartext password. Since it is
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	447 among the more numerous and much less secure clients that adversaries
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	448 would seek files of DCC passwords, it would be a waste to complicate the
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	449 DCC server with an asymmetric system.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	450
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	451 The DCC protocol is vulnerable to dictionary attacks to recover pass-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	452 words. An adversary could capture some DCC packets, and then check to
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	453 see if any of the 100,000 to 1,000,000 passwords in so called "cracker
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	454 dictionaries" applied to a packet generated the same signature. This is
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	455 a concern only if DCC passwords are poorly chosen, such as any combina-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	456 tion of words in an English dictionary. There are ways to prevent this
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	457 vulnerability regardless of how badly passwords are chosen, but they are
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	458 computationally expensive and require additional network round trips.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	459 Since DCC passwords are created and typed into files once and do not need
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	460 to be remembered by people, it is cheaper and quite easy to simply choose
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	461 good passwords that are not in dictionaries.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	462
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	463 RReelliiaabbiilliittyy
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	464 It is better to fail to filter unsolicited bulk mail than to fail to
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	465 deliver legitimate mail, so DCC clients fail in the direction of assuming
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	466 that mail is legitimate or even whitelisted.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	467
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	468 A DCC client sends a report or other request and waits for an answer. If
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	469 no answer arrives within a reasonable time, the client retransmits.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	470 There are many things that might result in the client not receiving an
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	471 answer, but the most important is packet loss. If the client's request
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	472 does not reach the server, it is easy and harmless for the client to
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	473 retransmit. If the client's request reached the server but the server's
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	474 response was lost, a retransmission to the same server would be misunder-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	475 stood as a new report of another copy of the same message unless it is
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	476 detected as a retransmission by the server. The DCC protocol includes
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	477 transactions identifiers for this purpose. If the client retransmitted
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	478 to a second server, the retransmission would be misunderstood by the sec-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	479 ond server as a new report of the same message.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	480
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	481 Each request from a client includes a timestamp to aid the client in mea-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	482 suring the round trip time to the server and to let the client pick the
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	483 closest server. Clients monitor the speed of all of the servers they
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	484 know including those they are not currently using, and use the quickest.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	485
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	486 CClliieenntt aanndd SSeerrvveerr--IIDDss
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	487 Servers and clients use numbers or IDs to identify themselves. ID 1 is
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	488 reserved for anonymous, unauthenticated clients. All other IDs are asso-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	489 ciated with a pair of passwords in the _i_d_s file, the current and next or
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	490 previous and current passwords. Clients included their client IDs in
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	491 their messages. When they are not using the anonymous ID, they sign
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	492 their messages to servers with the first password associated with their
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	493 client-ID. Servers treat messages with signatures that match neither of
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	494 the passwords for the client-ID in their own _i_d_s file as if the client
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	495 had used the anonymous ID.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	496
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	497 Each server has a unique _s_e_r_v_e_r_-_I_D less than 32768. Servers use their
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	498 IDs to identify checksums that they _f_l_o_o_d to other servers. Each server
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	499 expects local clients sending administrative commands to use the server's
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	500 ID and sign administrative commands with the associated password.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	501
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	502 Server-IDs must be unique among all systems that share reports by "flood-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	503 ing." All servers must be told of the IDs all other servers whose
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	504 reports can be received in the local _/_v_a_r_/_d_c_c_/_f_l_o_d file described in
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	505 dccd(8). However, server-IDs can be mapped during flooding between inde-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	506 pendent DCC organizations.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	507
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	508 _P_a_s_s_w_d_-_I_D_s are server-IDs that should not be assigned to servers. They
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	509 appear in the often publicly readable _/_v_a_r_/_d_c_c_/_f_l_o_d and specify passwords
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	510 in the private _/_v_a_r_/_d_c_c_/_i_d_s file for the inter-server flooding protocol
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	511
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	512 The client identified by a _c_l_i_e_n_t_-_I_D might be a single computer with a
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	513 single IP address, a single but multi-homed computer, or many computers.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	514 Client-IDs are not used to identify checksum reports, but the organiza-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	515 tion operating the client. A client-ID need only be unique among clients
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	516 using a single server. A single client can use different client-IDs for
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	517 different servers, each client-ID authenticated with a separate password.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	518
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	519 An obscure but important part of all of this is that the inter-server
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	520 flooding algorithm depends on server-IDs and timestamps attached to
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	521 reports of checksums. The inter-server flooding mechanism requires coop-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	522 erating DCC servers to maintain reasonable clocks ticking in UTC.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	523 Clients include timestamps in their requests, but as long as their time-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	524 stamps are unlikely to be repeated, they need not be very accurate.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	525
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	526 IInnssttaallllaattiioonn CCoonnssiiddeerraattiioonnss
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	527 DCC clients on a computer share information about which servers are cur-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	528 rently working and their speeds in a shared memory segment. This segment
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	529 also contains server host names, IP addresses, and the passwords needed
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	530 to authenticate known clients to servers. That generally requires that
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	531 dccm(8), dccproc(8), dccifd(8), and cdcc(8) execute with an UID that can
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	532 write to the DCC home directory and its files. The sendmail interface,
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	533 dccm, is a daemon that can be started by an "rc" or other script already
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	534 running with the correct UID. The other two, dccproc and cdcc need to be
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	535 set-UID because they are used by end users. They relinquish set-UID
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	536 privileges when not needed.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	537
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	538 Files that contain cleartext passwords including the shared file used by
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	539 clients must be readable only by "owner."
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	540
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	541 The data files required by a DCC can be in a single "home" directory,
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	542 _/_v_a_r_/_d_c_c. Distinct DCC servers can run on a single computer, provided
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	543 they use distinct UDP port numbers and home directories. It is possible
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	544 and convenient for the DCC clients using a server on the same computer to
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	545 use the same home directory as the server.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	546
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	547 The DCC source distribution includes sample control files. They should
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	548 be modified appropriately and then copied to the DCC home directory.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	549 Files that contain cleartext passwords must not be publicly readable.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	550
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	551 The DCC source includes "feature" m4 files to configure sendmail to use
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	552 dccm(8) to check a DCC server about incoming mail.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	553
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	554 See also the INSTALL.html file.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	555
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	556 CClliieenntt IInnssttaallllaattiioonn
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	557 Installing a DCC client starts with obtaining or compiling program bina-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	558 ries for the client server data control tool, cdcc(8). Installing the
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	559 sendmail DCC interface, dccm(8), or dccproc(8), the general or
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	560 procmail(1) interface is the main part of the client installation. Con-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	561 necting the DCC to sendmail with dccm is most powerful, but requires
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	562 administrative control of the system running sendmail.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	563
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	564 As noted above, cdcc and dccproc should be set-UID to a suitable UID.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	565 Root or 0 is thought to be safe for both, because they are careful to
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	566 release privileges except when they need them to read or write files in
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	567 the DCC home directory. A DCC home directory, _/_v_a_r_/_d_c_c should be cre-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	568 ated. It must be owned and writable by the UID to which cdcc is set.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	569
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	570 After the DCC client programs have been obtained, contact the operator(s)
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	571 of the chosen DCC server(s) to obtain each server's hostname, port num-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	572 ber, and a _c_l_i_e_n_t_-_I_D and corresponding password. No client-IDs or pass-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	573 words are needed touse DCC servers that allow anonymous clients. Use the
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	574 _l_o_a_d or _a_d_d commands of cdcc to create a _m_a_p file in the DCC home direc-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	575 tory. It is usually necessary to create a client whitelist file of the
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	576 format described above. To accommodate users sharing a computer but not
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	577 ideas about what is solicited bulk mail, the client whitelist file can be
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	578 any valid path name and need not be in the DCC home directory.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	579
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	580 If dccm is chosen, arrange to start it with suitable arguments before
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	581 sendmail is started. See the _h_o_m_e_d_i_r_/_d_c_c___c_o_n_f file and the _m_i_s_c_/_r_c_D_C_C
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	582 script in the DCC source. The procmail DCCM interface, dccproc(8), can
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	583 be run manually or by a procmailrc(5) rule.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	584
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	585 SSeerrvveerr IInnssttaallllaattiioonn
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	586 The DCC server, dccd(8), also requires that the DCC home directory exist.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	587 It does not use the client shared or memory mapped file of server
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	588 addresses, but it requires other files. One is the _/_v_a_r_/_d_c_c_/_i_d_s file of
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	589 client-IDs, server-IDs, and corresponding passwords. Another is a _f_l_o_d
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	590 file of peers that send and receive floods of reports of checksums with
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	591 large counts. Both files are described in dccd(8).
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	592
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	593 The server daemon should be started when the system is rebooted, probably
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	594 before sendmail. See the _m_i_s_c_/_r_c_D_C_C and _m_i_s_c_/_s_t_a_r_t_-_d_c_c_d files in the DCC
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	595 source.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	596
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	597 The database should be cleaned regularly with dbclean(8) such as by run-
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	598 ning the crontab job that is in the misc directory.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	599
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	600 SSEEEE AALLSSOO
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	601 cdcc(8), dbclean(8), dcc(8), dccd(8), dccifd(8), dccm(8), dccproc(8),
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	602 dblist(8), dccsight(8), sendmail(8).
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	603
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	604 HHIISSTTOORRYY
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	605 Distributed Checksum Clearinghouses are based on an idea of Paul Vixie
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	606 with code designed and written at Rhyolite Software starting in 2000.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	607 This document describes version 1.3.103.
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	608
c7f6b056b673 First import of vendor version Peter Gervai <grin@grin.hu> parents: diff changeset	609 February 26, 2009

Mercurial > notdcc

annotate dcc.0 @ 3:b689077d4918