|
0
|
1 # sample whitelist for DCC clients |
|
|
2 |
|
|
3 # Changes in this file and the files it includes are noticed automatically |
|
|
4 # within a few minutes. |
|
|
5 |
|
|
6 |
|
|
7 # See the dcc man page for the format of DCC whitelists. |
|
|
8 # Each line must be in one of the forms: |
|
|
9 #count [hex] type value |
|
|
10 # [hex] type value |
|
|
11 |
|
|
12 # Hexadecimal checksum values can be obtained from dccm, dccifd, and |
|
|
13 # dccproc log files. |
|
|
14 |
|
|
15 |
|
|
16 #include pathname |
|
|
17 |
|
|
18 |
|
|
19 #option log-all |
|
|
20 #option log-normal |
|
|
21 #option option log-subdirectory-day |
|
|
22 #option option log-subdirectory-hour |
|
|
23 #option option log-subdirectory-minute |
|
|
24 #option dcc-on |
|
|
25 #option dcc-off |
|
|
26 #option greylist-on |
|
|
27 #option greylist-off |
|
|
28 #option greylist-log-on |
|
|
29 #option greylist-log-off |
|
|
30 #option DCC-reps-off |
|
|
31 #option DCC-reps-on |
|
|
32 #option DNSBL-off |
|
|
33 #option DNSBL-on |
|
|
34 #option MTA-first |
|
|
35 #option MTA-last |
|
|
36 #option forced-discard-ok |
|
|
37 #option no-forced-discard |
|
|
38 #option threshold cksum_type,targets |
|
|
39 #option spam-trap-accept |
|
|
40 #option spam-trap-reject |
|
|
41 |
|
|
42 |
|
|
43 # Do not tell the DCC servers about purely local mail. |
|
|
44 # If you don't delete this line, you should probably add lines listing |
|
|
45 # all of the host names of this system. |
|
|
46 ok ip 127.0.0.1 |
|
|
47 |
|
|
48 # List statically allocated IP addresses that you trust to never send |
|
|
49 # or forward unsolicited bulk email |
|
|
50 #ok ip 10.1.2.0/24 |
|
|
51 |
|
|
52 # List secondary MX relays or any MX relays that might forward spam to this |
|
|
53 # system. |
|
|
54 #mx ip 10.3.4.5 |
|
|
55 #mx ip 10.6.7.0/28 |
|
|
56 # Use mxdcc instead of mx if the relay does DCC checks |
|
|
57 #mxdcc ip 10.8.9.10 |
|
|
58 |
|
|
59 # List SMTP submission clients such as web browsers that cannot tolerate |
|
|
60 # 4yz temporary rejections but that cannot be trusted to never send spam |
|
|
61 #submit ip 10.4.5.0/24 |
|
|
62 |
|
|
63 |
|
|
64 # Do not filter postmaster to avoid rejecting reports of spam. |
|
|
65 # As with all header checksums, all valid forms of the address must |
|
|
66 # be listed. |
|
|
67 #ok env_to postmaster |
|
|
68 #ok env_to postmaster@example.com |
|
|
69 #ok env_to postmaster@host.example.com |
|
|
70 |
|
|
71 # See http://www.iecc.com/dcc-testmsg-whitelist.txt for list of checksums |
|
|
72 # of practically blank messages. Such checksums can be usefully whitelisted. |
|
|
73 # See /var/dcc/libexec/fetch-testmsg-whitelist for a cron script to |
|
|
74 # fetch them. |
|
|
75 #include testmsg-whitelist |
|
|
76 |
|
|
77 # If dccm or dccifd is run with "-S mail_host" by adding that to DCCM_ARGS |
|
|
78 # or DCCIFD_ARGS in /var/dcc/dcc_conf, then uncommenting the following |
|
|
79 # line would white-list all mail from the SMTP client at example.com. |
|
|
80 #ok substitute mail_host example.com |
|
|
81 |
|
|
82 # If dccm, dccifd, or dccproc is run with "-S Mailing-list", then this line |
|
|
83 # would white-list all mail with either of two Mailing-List header |
|
|
84 # values: |
|
|
85 #ok hex substitute Mailing-List e78e0f7f b0d5212c 8a1a433a 769ad0fd |
|
|
86 #ok substitute Mailing-List host.example.com |
|
|
87 |
|
|
88 # A lot of bulk mail lacks message-ID header lines. |
|
|
89 # If you receive much mail from lame mailing lists (often involving |
|
|
90 # qmail) or solicited bulk mail you probably do not want to use |
|
|
91 # this blacklist entry. |
|
|
92 # many message-id <> |
|
|
93 |
|
|
94 # This rejects messages with substantial text but few words. |
|
|
95 # If you receive binary or non-text email, you probably |
|
|
96 # do not want to use this blacklist entry |
|
|
97 #many hex FUZ2: 00000000 00000000 00000000 00000000 |
|
|
98 |
|
|
99 # Mail with SMTP HELO values commonly used seen in spam can be rejected |
|
|
100 # and reported to the DCC server as spam by running dccproc, dccifd, or dccm |
|
|
101 # with "-S HELO" and uncommenting the following lines: |
|
|
102 #many substitute helo localhost |
|
|
103 #many substitute helo EmailSender |
|
|
104 #many substitute helo Super |
|
|
105 #many substitute helo Testsmtp |
|
|
106 #many substitute helo laptop |
|
|
107 #many substitute helo localhost.com |
|
|
108 #many substitute helo localhost.localdomain |
|
|
109 #many substitute helo newsserver |
|
|
110 #many substitute helo oemcomputer |
|
|
111 #many substitute helo proxy |
|
|
112 #many substitute helo server |
|
|
113 #many substitute helo smtp.localhost.localdomain |
|
|
114 #many substitute helo test.com |
|
|
115 #many substitute helo unknown |
|
|
116 #many substitute helo webhome |
|
|
117 #many substitute helo webserver |
|
|
118 #many substitute helo whatever-your-domain-name-might-be.com |
|
|
119 #many substitute helo www |
|
|
120 #many substitute helo yourwebsite.com |
|
|
121 # |
|
|
122 #many substitute helo 10.0.0.1 |
|
|
123 #many substitute helo IP-addresses-of-your-DNS-HTTP-and-SMTP-servers |
|
|
124 |
|
|
125 # whitelist values common to the server and client |
|
|
126 include whitecommon |
