[QMAIL] Recipient Verification to avoid spamming

[MRatWork]

Read http://wiki.qmailtoaster.com/index.php/Tcp.smtp

[Kloxo-DR]

Hellio Mustafa,

I found that I need to recompile the CHKUSER binary and have /var/qmail/doc/chkuser_settings.h to be turned on before compiling the toaster. If these settings were not turned on before compiling, then they remains deactivated.

This is the problem. Currently these parameters are deactivated.

[MRatWork]

Before you talking again, read http://wiki.qmailtoaster.com/index.php/Patches_included_with_QmailToaster.

Qmail-toaster already as the same as netqmail 1.0.5 because implementing the same patch.

[MRatWork]

In latest qmail-toaster, by default, spamdyke/rblsmtpd/softlimit is inactive. Create their files with content as description in run file.

[Kloxo-DR]

Hi Mustafa,

I have an attack before the update and after the update. So the problem remained when softlimit was in there before, and I doubt that this could be the cause.

The problem I face is that the spammer found a weak point in combination of Qmailtoaster + Spamdyke. Now we have spamdyke 5.0.0 and correct integration of vpopmail, the checking of valid recipient muss be able to stop emails coming to non-existent recipients.

[chrisf]

Please PM me the maillog during this bounce/spam problem.  I can't understand how a denial of service is possible from an external source with CSF watching the port.

Could this be a client on the box?

I would suggest enabling recordio so we can get a snapshot of these emails with headers.  I have not been able to DOS spamdyke.

[Kloxo-DR]

Hi Chris,

The problem lies in Qmailtoaster configuration that an administrator should do somewhere, and most likely and goes beyond, I suspect.

Earlier, the Qmailtoaster was wrongly configured, which Mustafa did not believe. You found that out. Because of this, I could not come close to certain trouble-shooting areas. Now this possibility is ruled out

Most likely it is no longer a problem in compilation or wrongly configured Qmailtoaster during compilation.

[chrisf]

Copy and paste your maillog, where an incoming transaction occurs then it is bounced back.

Set spamdyke log-level to debug and enable recordio in qmailtoaster.  I am not wasting anymore time.  I want to see the logs after you do both, and spammer again attacks.

We are guessing.  I can not reproduce ANY of your problems.  You can send whatever mail you like to 'cc-server.us' watch what happens.

[Kloxo-DR]

Hi Chris,

Everything is described in this thread sufficiently. I am not going to describe them with different dates.

If there are problems, then they should remain and I should find my way with that.