logs archiveIRC Archive / Freenode / #exim / 2015 / July / 19 / 1
R3turn
I want to setup a new system that would be acting as a smtp 'proxy' for filtering spam. So I want exim+spamassassing+greylistd+spf check+dkim checks.... Is there any distro/script or anything to set that up? I'm not familiar with the config files so it would be hard to figure everything out...
henk
Probably, but nothing that does it well & Most people who have tried to figure all of that out are not able to do it well either, as its a _VERY_ (and its hard to stress that enough; underlined and caps isnt even enough, if I could, I would make it blink in red in addition) complex topic.
rjek
Debian basically allows for all of those out of the box if you install exim4-daemon-heavy and spamassassin
Apart from the greylisting, which is a simple defer rule tied to yor favourite greylister
Martin Brookes has a nice HOWTO on his wiki somewhere
http://hinterlands.org/wiki/index.php/DebianEximDovecotSquirrelmailSieve
And here is his very simple file system-bsaed greylister http://hinterlands.org/wiki/index.php/EximFilesystemGreylist
R3turn
rjek: so if I install debian and the exim4-daemon-heavy package + spamassassin package it already has everything except greylisting? So I just need to change config files and add greylisting to it?
rjek
Ish; once you get that far you should be able to work out the rest for yourself :)
henk
lol
jgh_
... and bear in mind that SPF breaks forwarding and DKIM breaks mailinglists
R3turn
rjek: I just installed that package and grepping in the config files does indeed say it's doing spf and dkim checks and a whoe lot of other things.. like you said.. and enabling greylisting is as easy as apt-get install greylistd && greylistd-setup-exim4 add I think
jgh_: we never use any mailing list or anything so that's fine :)
jgh_
tsk! You should be using the exim-users list!
         

R3turn
jgh_: if I decide to do that I can probably whitelist it somehow :)
jgh_
aye
R3turn
just some guy told me it's a complex topic and now it turns out it's already almost done with a couple of apt-get commands... I have to dig in these config files myself I guess.
Nobody here knows of any disro/script or anything that has even more features ?
jgh_
have a read around the exim wiki; people have written down some good stuff. Lena especially
https://github.com/Exim/exim/wiki
henk
R3turn: "almost" is the keyword here, I guess & And with these couple of commands you get a simple setup that works and has some basic anti-spam measures. If thats good enough for you, thats fine, but its not what I understand when I read "smtp proxy for filtering spam" & Thatd be a lot more involved.
(well, "simple" compared with what is possible; its still quite powerful and extensive compared to a real simple setup &)
jgh_
spamfighting is a continuous job, against a moving target
R3turn
okay, it's probably a little 'basic' compared to what else is possible. But I can't imagine there isn't some kind of system available already that implements a more soffisticated systems. I just can't seem to find any :)
s/systels/solution/
jgh_
Exim makes it easy to roll your own; this may be a factor
henk
R3turn: There are a few vendors that sell appliances; there are projects like mailscanner (does that still live?); there are email service providers that specialize on anti-spam; &
R3turn
henk: We tried SpamExperts.com recently but we received more spam with it compared to a solution we already were using (postfix+spamassassing+rbls:spamhaus+spamcop). We got our money back because they were unable to filter spam as promised
henk
hrhr, I have no experience with such services, but apparently they are exactly whom I was referring to in my first response when I said Ā»Most people who have tried to figure all of that out are not able to do it well eitherĀ« d-:
jgh_
there's no 100% solution. And your users will complain simultaneously that you're not blocking enough and that you're blocking too much. Mine do
R3turn
henk: so SpamExperts is known to do things the wrong way? .. Strange that big companies over here are using it and are proud too :) Our experience wasn't any good after all :p
henk
R3turn: Not to me, as I said: I have no experience with such services, neither first- nor secondhand &
rjek
(Action) runs such a service, but has been tweaking his Exim, SA, own stuff, for years
R3turn
I have installed ubuntu and it's exim4-daemon-heavy package, spamassassin,greylistd and now I want this server to accept mail and forward it to a different smtp server; this server is supposed to be a spam-filter. But How can I tell exim to accept mail and forward it ? I can't find any config file for that and it's probably easy but I don't see it right now
notkoos
R3turn: you probably want manualroute: http://www.exim.org/exim-html-current/doc/html/spec_html/ch-the_manualroute_router.html (and to configure ACLs appropriately: http://www.exim.org/exim-html-current/doc/html/spec_html/ch-access_control_lists.html)
R3turn
i think so, thank notkoos. Reading it now.. But I'm new to exim so the configuration thing is a little confusing right now. Especially with debian having the config file split up in multiple parts
notkoos
R3turn: you could copy /var/lib/exim4/config.autogenerated
R3turn: .. to /etc/exim4/exim4.conf if you want a flattened config :)
R3turn: something like the default config from exim tarball would be a better starting point imo
R3turn
I actually think I don't even need to change the config file. I think I need to create a file /etc/exim4/hubbed_hosts and add domain.com:1.2.3.4; in order to forward email for domain.com to smtp server at 1.2.3.4
if I understand the ubuntu exim config correctly :)
         

notkoos
possibly so :) I don't know about the debian way of doing things ;) but they surely have their ways ...
R3turn
okay :)
I think I'm alsmost done doing the initial configuration and start testing it... One thing I need to figure out is: can I somehow make exim not block any spam at all but just move it to some sort of quarantine ? So I don't loose email while testing
henk
R3turn: checkout https://github.com/Exim/exim/wiki/DebianExim4 and /usr/share/doc/exim4-base/README.Debian.gz
R3turn: yes, of course you can
R3turn
thanks henk
I'm not even getting spamassassin to work. I installed sa-exim and changed and set SAEximRunCond:1 in sa-exim.conf (like all pages only tell me to do). restarted exim and spamassassin but no messages are getting scanned.. strange
maxb
Isn't sa-exim considered very obsolete these days?
henk
it is
notkoos
R3turn: ^^ don't use sa-exim
R3turn: https://github.com/Exim/exim/wiki/ExiscanExamples
R3turn: ... http://www.exim.org/exim-html-current/doc/html/spec_html/ch-content_scanning_at_acl_time.html ...
« prev next »