Apply policy_bank for valid DKIM senders

[Marius Gologan]

Hi Konstantin,

 

It worked perfectly. 

 

Thank you very much.

 

Marius.

 

From: Konstantin [mailto:myownletters at gmail.com] 
Sent: Friday, July 24, 2015 6:56 PM
To: Marius Gologan
Cc: Patrick Ben Koetter; amavis-users at amavis.org
Subject: Re: Apply policy_bank for valid DKIM senders

 

Try following content:
mailbox at domain.com   POLICY_BANK

 

amavisd reload required after change /path-to/file.

 

On Fri, Jul 24, 2015 at 1:29 PM, Marius Gologan <marius.gologan at gmail.com> wrote:

Hi,

Do you have any advice for me regarding my issue with read_hash described below?

Thank you.

Regards,
Marius.


-----Original Message-----
From: Marius Gologan [mailto:marius.gologan at gmail.com]
Sent: Thursday, July 23, 2015 10:41 AM
To: 'Patrick Ben Koetter'; amavis-users at amavis.org
Subject: RE: Apply policy_bank for valid DKIM senders

Is not working with read_hash. I tried this:
@author_to_policy_bank_maps = (read_hash('/path-to/file'));

File content:
'mailbox at domain.com'      => 'POLICY_BANK',

Domain is DKIM signed and works when I place the value without read_hash.
I changed file permission to root and amavis. No difference.

I'm using amavisd-new-2.7.1 on Debian Wheezy.

Any thoughts?

Thank you.

Marius.

-----Original Message-----
From: amavis-users [mailto:amavis-users-bounces+marius.gologan <mailto:amavis-users-bounces%2Bmarius.gologan> =gmail.com at amavis.org] On Behalf Of Patrick Ben Koetter
Sent: Wednesday, July 22, 2015 10:26 PM
To: amavis-users at amavis.org
Subject: Re: Apply policy_bank for valid DKIM senders

* Marius Gologan <marius.gologan at gmail.com>:
> Hi,
>
> Does anyone know a trick to apply a custom policy_bank for Senders
> signed with valid DKIM only?

Use @author_to_policy_bank_maps and map valid DKIM sender(domains) to policy banks like this:

@author_to_policy_bank_maps = ( {
    'sys4.de'          => 'WHITELIST,NOBANNEDCHECK',
    '.paypal.de'       => 'WHITELIST',
    '.paypal.com'      => 'WHITELIST',
    'amazon.de'        => 'WHITELIST',
} );


p at rick


>
>
>
> I want to ensure the whitelisted Senders are not spoofed and set
> policy exceptions such as this below only for signed senders:
>
>
>
> $policy_bank{'NO_BANNED_ATTACHMENTS'} = {  # those configured to send
> mail to port 10027
>
>    bypass_spam_checks_maps                   => [0],  # don't spam-check
> this mail
>
>    bypass_virus_checks_maps                     => [0],  # don't virus-check
> this mail
>
>    bypass_banned_checks_maps               => [1],  # don't banned-check
> this mail
>
>    bypass_header_checks_maps                => [1],  # don't header-check
> this mail
>
> };
>
>
>
> Thank you.
>
>
>
> Marius.
>

--
[*] sys4 AG

https://sys4.de, +49 (89) 30 90 46 64 <tel:%2B49%20%2889%29%2030%2090%2046%2064> 
Franziskanerstraße 15, 81669 München

Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263
Vorstand: Patrick Ben Koetter, Marc Schiffbauer
Aufsichtsratsvorsitzender: Florian Kirstein







-- 

This message was delivered using 100% recycled electrons.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.amavis.org/pipermail/amavis-users/attachments/20150724/35e91e76/attachment.html>