From nobody Thu Sep 19 22:32:48 2024 X-Original-To: stable@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X8qzH09cXz5XdNL for ; Thu, 19 Sep 2024 22:32:59 +0000 (UTC) (envelope-from steffen@sdaoden.eu) Received: from sdaoden.eu (sdaoden.eu [217.144.132.164]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4X8qzG4Ykdz4wLK for ; Thu, 19 Sep 2024 22:32:58 +0000 (UTC) (envelope-from steffen@sdaoden.eu) Authentication-Results: mx1.freebsd.org; none DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=sdaoden.eu; s=citron; t=1726785170; x=1727451836; h=date:author:from:to:cc:subject: message-id:in-reply-to:references:openpgp:blahblahblah:author:from: subject:date:to:cc:resent-author:resent-date:resent-from:resent-sender: resent-to:resent-cc:resent-reply-to:resent-message-id:in-reply-to: references:mime-version:content-type:content-transfer-encoding: content-disposition:content-id:content-description:message-id: mail-followup-to:openpgp:blahblahblah; bh=VVGQ0XEptLM8uxGgm5HA6Uj/ZfNS96DhJMAqDXMyZJY=; b=Tj/VjabJHqdVhymosunUBdECUyS0X6nejrMGxtiwtG9XrEKQJpuPt+8Aa6fvV8ACDNbZWyx8 PHnpcgTWXRdZ497gC7s4ZVWPi2zXVbhUnu+NM3WOJd0JL9Qw+rOA85o8OiBzrpbc63ONY7xCj6 pX4MYBXvEZ7vHprj7Oss/rDVg0Lnlnx6uzYDHN3/5KPxgevEW8pifVnne4ztejsvuIE3PxN+2l D5ZPF113ZtRbCf3qDPz2JwUGCPx/CKH/7paMHEqwiJyMCuuEoxmQMrTHmSydiK3PHFa3qS2RRL ANUnIurW8XEL2ATHsaPSx3FmlFPXLiHV6oU+R3+eKKZBCAmw== DKIM-Signature: v=1; a=ed25519-sha256; c=relaxed/relaxed; d=sdaoden.eu; s=orange; t=1726785170; x=1727451836; h=date:author:from:to:cc:subject: message-id:in-reply-to:references:openpgp:blahblahblah:author:from: subject:date:to:cc:resent-author:resent-date:resent-from:resent-sender: resent-to:resent-cc:resent-reply-to:resent-message-id:in-reply-to: references:mime-version:content-type:content-transfer-encoding: content-disposition:content-id:content-description:message-id: mail-followup-to:openpgp:blahblahblah; bh=VVGQ0XEptLM8uxGgm5HA6Uj/ZfNS96DhJMAqDXMyZJY=; b=g91WWwO/il/fVHr8Q3gY8v+twBMdyrpA31hD9UmSKAx4j6/Sf2GNnmkbLI7Igvw2FFU60Iwo 7vWYSxTJRIJAAg== Date: Fri, 20 Sep 2024 00:32:48 +0200 Author: Steffen Nurpmeso From: Steffen Nurpmeso To: Joachim Durchholz Cc: stable@freebsd.org Subject: Re: issues with syslogd include redirecting wg0 output to custom location Message-ID: <20240919223248.Hr-N0jar@steffen%sdaoden.eu> In-Reply-To: <627f0b4f-6d55-4872-9435-07109a9a6aa0@durchholz.org> References: <4250c967-61c7-419a-b542-455a8f655dd1@osfux.nl> <0019d1f0-0b84-448d-8ecd-5b1619103139@osfux.nl> <20240918225906.Npft_PNY@steffen%sdaoden.eu> <20240918230901.P2V-MyI6@steffen%sdaoden.eu> <627f0b4f-6d55-4872-9435-07109a9a6aa0@durchholz.org> User-Agent: s-nail v14.9.25-608-ge479530e8d OpenPGP: id=EE19E1C1F2F7054F8D3954D8308964B51883A0DD; url=https://ftp.sdaoden.eu/steffen.asc; preference=signencrypt BlahBlahBlah: Any stupid boy can crush a beetle. But all the professors in the world can make no bugs. X-Spamd-Result: default: False [-4.00 / 15.00]; REPLY(-4.00)[]; ASN(0.00)[asn:15987, ipnet:217.144.128.0/20, country:DE] X-Rspamd-Queue-Id: 4X8qzG4Ykdz4wLK X-Spamd-Bar: ---- X-Rspamd-Pre-Result: action=no action; module=replies; Message is reply to one we originated List-Id: Production branch of FreeBSD source code List-Archive: https://lists.freebsd.org/archives/freebsd-stable List-Help: List-Post: List-Subscribe: List-Unsubscribe: X-BeenThere: freebsd-stable@freebsd.org Sender: owner-freebsd-stable@FreeBSD.org Joachim Durchholz wrote in <627f0b4f-6d55-4872-9435-07109a9a6aa0@durchholz.org>: |On 19.09.24 01:09, Steffen Nurpmeso wrote: |> Ha. |> |> Steffen Nurpmeso wrote in |> <20240918225906.Npft_PNY@steffen%sdaoden.eu>: |> |> I got back |> |> : host vm1982.osfux.nl[79.99.187.212] said: 554 \ |> 5.7.1 Service |> unavailable; Client host [217.144.132.164] blocked using sbl.spamh\ |> aus.org; |> Error: open resolver; https://check.spamhaus.org/returnc/pub/141.1\ |> 01.75.8/ |> (in reply to RCPT TO command) | |Oh, that's a problem on vm1982.osfux.nl, who rely on Spamhaus to |identify IP addresses that have sent spam in the past. |Spamhaus is pretty well-known for being unreliable; the spam filters in Ooh? For my postfix i use smtpd_client_restrictions = # permit_inet_interfaces, OR permit_mynetworks, permit_tls_clientcerts, #[RELAY] permit_sasl_authenticated, check_client_access lmdb:$meta_directory/client_restrict, reject_unknown_client_hostname, # in case you want reject DNS blacklists rather than greylist them, # exchange sleep (maybe) and uncomment the lines below sleep 1, #reject_rbl_client cbl.abuseat.org, #reject_rbl_client sbl.spamhaus.org, reject_rbl_client zen.spamhaus.org, zen. since 2015 and it never caused problems, as far as i know? (It does, however, not find that many positives .. i have none in my logs, which however go back two days only (rotated logs go out via email, and rotate keeps five).) Maybe i should simply stop using that. #reject_rbl_client bl.spamcop.net, #reject_rbl_client list.dsbl.org, reject_unauth_pipelining, #reject permit |your mail client work much better, and if they misclassify a mail you |can easily find it in the spam folder instead of rejecting the mail and |making life difficult for the admin on the sending side. Maybe i really should do this, too. |Regards, |Jo Ciao Jo, --steffen | |Der Kragenbaer, The moon bear, |der holt sich munter he cheerfully and one by one |einen nach dem anderen runter wa.ks himself off |(By Robert Gernhardt)