You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@spamassassin.apache.org by ha...@t-online.de on 2005/12/11 13:37:14 UTC

Re: trusted_networks 

Hi,

I had a look at the relevant code - qmail is just receiving the info via
env vars.
So it might be possible to get the effect by calling
qmail-smtpd from inetd rather than from the tcpserver program, or a broken implementation
of setting env vars, or by adding an rblsmtpd type process that unsets the environment

Wolfgang Hamann

>> At 12:28 PM 12/10/2005, you wrote:
>> 
>> 
>> > >> >
>> > >> >         You've obviously never seen what kind of mess an 
>> > "out-of-the-box"
>> > >> >qmail can do to *destroy* mail headers:
>> > >> >
>> > >> >Received: from unknown (HELO lh) (unknown)
>> > >> >   by unknown with SMTP; 4 Dec 2005 04:01:40 -0000
>> > >> >...
>> > >>
>> > >>
>> > >> That really makes me wonder if DJB is intentionally trying to make plain
>> > >> qmail an unusable POS so that nobody will be able to use it without
>> > >> patching. Or is it a purely accidental side effect?
>> > >>
>> > >> Any MTA that can ever fail to report the local hostname in the "by" 
>> > clause
>> > >> scares me. Ditto for the source IP delivering mail (in the case of SMTP).
>> > >>
>> > >> It should at least be really hard to misconfigure an MTA to the point it
>> > >> does that. Like hacking the source code hard, or at least mucking around
>> > >> with several options the manpage or conf file warn you not to touch.
>> > >>
>> > >>
>> >Hi,
>> >
>> >DJB provides an installation procedure ... and some of thosewho package up 
>> >qmail
>> >binary packages provide different ones.
>> >The DJB procedure wants to - eeither - autodetect the hostname - or - 
>> >receive one on the
>> >commandline.
>> >Further, qmail definitely consults DNS even if /etc/hosts entries are present.
>> >
>> >I have never seen a "received by unknown" on any machine that runs qmail 
>> >fior me.
>> >Although I an running patched versions, I dont think that adding, e.g., 
>> >tlsor qmail-scanner would have "fixed"
>> >the problem you mention
>> 
>> 
>> Well, you might not have it. But a little googling shows the problem is 
>> fairly common.
>> 
>> http://www.google.com/search?q=received+%22by+unknown%22+qmail
>> 
>> That said I can find no reference as to what kind of misconfiguration 
>> causes this. I can just find a lot of instances of it.
>> 
>> 
>>