Relaying

rlValencePB: Failed Relay Attempt Score, default=10 - For IP scoring in PenaltyBox default: 10

acceptAllMail: Accept All Mail - Relaying is allowed for these IPs. They contribute also to the whitelist. This can take either a directly entered list of IP's separated by pipes or a file 'file:files/acceptall.txt'.For example: 127.0.0.1|172.16.

localDomains: Local Domains - Check local domains against these addresses. Wildcards are supported. For example: example.com|.example.com|example.org . "Local Domains" are the domain names that your mailsystem considers local. A MX record will usually point to ASSP for these domains. Messages to "Local Domains" are also called "Incoming". Messages to domains not in "Local Domains" are also called "Outgoing". Messages from "Local Domains" are called "local" provided they come from IP's in "Accept All Mail", "Relay Port" or are authenticated, otherwise they are called "external" or "remote". That a mail claims to be from one of your local domains does not allow it to be relayed - this is easily spoofed and not useful as a security measure. If your clients dialup or are dynamically assigned from an untrustedpool, then the only reliable way to allow relaying is through AUTHENTICATED smtp, and your mail handler must support this type of authentication, and you must enable it in your clients. ASSP recognizes authenticated connections and allows them to relay. Not all ISPs will allow their customers to connect to your SMTPport. Many block connections to port 25 (except to their own mailserver) to prevent spam. ASSP therefore provides a "Second SMTP Listen Port" .

Use the syntax: mydomain.com=>smtp.mydomain.com|other.com=>mx.other.com:port to verify the recipient addresses with the SMTP-VRFY (if VRFY is not supported 'MAIL FROM:' and 'RCPT TO:' will be used) command on other SMTP servers. The entry behind => must be the hostname:port or ip-address:port of the MTA which is used to verify 'RCPT TO' addresses with a VRFY command! If :port is not defined, port :25 will be used. You have to enable the SMTP 'VRFY' command on your MTA - the 'EXPN' command should be enabled! This requires an installed module in PERL. If you have configured LDAP and enabled and ASSP finds a VRFY entry for a domain, LDAP search will be done first and if this fails, the VRFY will be used. So VRFY could be used for LDAP backup/fallback/failover!If you have configured ) if the VRFY is successful.

DoLocalSenderDomain: Do Local Domain Check for Local Sender - If activated, each local sender address must have a valid Local Domain in .

DoLocalSenderAddress: Do Local Address Check for Local Sender - If activated, each local sender must have a valid Local Address.

LocalSender2NULL: Move Local Connection with wrong Sender Address to NULL - If set, ASSP will move all Local connections where the sender failed to a NULL-connection. The sender will receive "250 OK". default: 1

nolocalDomains: Skip Local Domain Check - Do not check relaying based on . Let the mailserver do it. NOT RECOMMENDED.

ldLDAP: Do LDAP Lookup for Local Domains - Check local domains against an LDAP database. Note: Checking this requires filling in LDAP DomainFilter in The LDAP section.This requires an installed module in Perl.

ispip: ISP/Secondary MX Servers - Enter any addresses that are your ISP or backup MX servers, separated by pipes (|). These addresses will (necessarily) bypass Griplist, IP Limiting, Delaying, PenaltyBox, SPF, DNSBL & SRS checks unless the IP can be determined by (ISP Connecting IP). For example: 145.145.145.145|145.145.145.146.

contentOnlyRe: Regular Expression to Identify Forwarded Messages - Put anything here to identify messages which should bypass PB, Sender Validation, Griplist, IP Limiting, Delaying, SPF, DNSBL & SRS checks. For example: email addresses of people who are forwarding from other accounts to their mailbox on your server.

ispHostnames: ISP/Secondary Hostnames - Hostname(s) to lookup IP(s) connecting to the ISP/Secondary server.If found, the connecting IP is used to perform IP checks on routed messages. This makes it possible to do DNSBL and Helo checks, even if ASSP is behind another server .For example: mx1.yourisp.com or mx1.yourisp.net|mx2.yoursecondary.com. This hostnames are found in the 'Received:' header, like 'Received: from ...123.123.123.123... by mx1.yourisp.com'. Leave this blank to disable the feature.

send250OKISP: Send 250 OK To ISP/Secondary MX Servers - Set this checkbox if you want ASSP to reply to IP's in with '250 OK' instead of SMTP error code '554 5.7.1'. Recommended=On default: 1

ispgreyvalue: ISP/Secondary MX Grey Value - It is recommended to set it to 0.5 (Completely GReyIP) for ISP & Secondary MX servers. If left blank the Griplist X value is used (percentage of spam messages in relation to total). Note: value should be greater than 0 and less than 1, where 0 = never spam & 1 = always spam default: 0.5

BounceSenders: Bounce Senders - Envelope sender addresses treated as bounce origins. Null sender (<>) is always included.Accepts specific addresses (postmaster@example.com), usernames (mailer-daemon), or entire domains (@bounces.domain.com)Separate entries with pipes: |. For example: postmaster|mailer-daemon default: postmaster|mailer-daemon

PopB4SMTPFile: Pop Before SMTP DB File - Enter the DB database filename of your POP before SMTP implementation with records stored for dotted-quad IP addresses.For example: /etc/mail/popip.db

PopB4SMTPMerak: Pop Before SMTP Merak Style - If set Merak 7.5.2 is supported.

relayHost: Relay Host - Your isp's mail relayhost (smarthost). For example: mail.isp.com:25f you run Exchange/Notes and you want assp to update the nonspam database and the whitelist, then enter your isp's smtp relay host here. Blank means no relayhost. Only required if clients don't deliver through SMTP.

relayPort: Relay Port - Tell your mail server to connect to this port as its smarthost / relayhost. For example: 225 Note that you'll want to keep the protected from external access by your firewall.You can supply an interface:port to limit connections.

NoRelaying: No Relaying Error - SMTP error message to deny relaying. default: 530 Relaying not allowed

defaultLocalHost: Default Local Host - If you want to be able to send mail to local users without a domain name then put the default local domain here. Blank disables this feature. For example: example.com

[ASSP_1.5.x_configuration_settings] [Category:ASSP]