Domain: untroubled.org
Stories and comments across the archive that link to untroubled.org.
Comments · 7
-
Nullmailer
Why not use nullmailer? If it's just for local mail, it's much slicker than Postfix.
-
Sobig? use QMAILQUEUE + qmail-qfilters
You should definitely build qmail with the QMAILQUEUE patch - this opens up a world of possibilities for customizing what happens to mail on the way in to your machine.
Combine this with qmail-qfilters, which allows you to daisy-chain simple filter scripts you can whip up yourself to examine messages and decide what to do with them. The site has some examples.
Sobig.* and other viruses with predictable patterns (like one of eight or so standard subjects and a body with other clues) can be blocked very easily with this. -
MTAs for desktop/client installationsFor running an MTA on a desktop/client PC, I strongly recommend solutions like Nullmailer or, for computers with permanent Internet connectivity, ssmtp. Both work as just local gateways/bouncers to a remote SMTP server; they don't open any network ports and thus prevent remote exploits/attacks/spam relaying by design. Nullmailer offers local spooling (important for dialup connections) while ssmtp bounces everything immediately to the smarthost. Both are very small (ssmtp: 22k, nullmailer-send: 25k), ridiculously simple to configure even for people with low administration skills, both provide sendmail-compatibility to work with MUAs like mutt.
(Offtopic: A similarly nice, elegant solution for desktop/clients PC printing is pdq, which unlike lpd and cups runs only as a local spooler without opening a network port, and is lean (65k), dead-simple and functional. With nullmailer/ssmtp & pdq, I managed to close all ports (except of course SSH) on my two desktop PCs under Debian GNU/Linux without any firewalling. AFAIK, Debian is the only OS offering all the aforementioned pieces of software as part of its main distribution.)
-
Same idea, different approach.
I'm thinking that using spamassassin along with qmail-qfilter and a small perl script to tie it together that envokes a sleep() loop for every spam-like message, that it could easily be used to do the same thing because spamassassin kicks back a score for the message's likehood of being spam...
cheers.. -
The same strategy in a ftp daemon
This sounds a lot like twoftpd, which seems like a great idea.
-
Re:I see his point though...You can set many mail servers up to only allow smtp relaying after auser has been authorised by checking POP3. Pretty much every email client supports this by default.
A quick google found this for qmail, but there are plenty of similar solutions for other mail servers.
-
Re:I've changed my mind
And if you're looking for a secure non-anonymous ftp, I'd recommend twoftpd ny Bruce Guenter.
Try it out, it's neat :-)