'Re: rblsmtpd -r -a'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       qmail
Subject:    Re: rblsmtpd -r -a
From:       ve2cii () canasoft ! net
Date:       2010-05-19 14:54:03
Message-ID: 44781.66.159.32.31.1274280843.squirrel () mail1 ! cronomagic ! biz
[Download RAW message or body]

   Hi Markus, thanks,

   Ok it is now working.  I replaced the rblsmtpd with the one that comes
with ucspi-tcp-0.88 on the machine I was working on. Now I have to replace
it on all the rest of the machines.

> *ARGL*
>
> On Wed, May 19, 2010 at 09:17:19AM -0400, ve2cii@canasoft.net wrote:
>> Here is the link where you can get the code:
>> http://www.tjsi.com/rblsmtpd/
>
> Ok, he did only add some syslog code the braindead way:
>     char rbl_name[256];
>     char syslog_buf[256];
> and then *traraaa*:
>     strcat(rbl_name,base);
>     [ ... ]
>     strcat(syslog_buf,rbl_name);
>     strcat(syslog_buf," blocked ");
>     strcat(syslog_buf,ip_env);
>     strcat(syslog_buf," ");
>     strcat(syslog_buf,remotehost_env);
>     strcat(syslog_buf," ");
>     strcat(syslog_buf,remoteinfo_env);
>
> Nice potential for buffer overflows ...
> just how can some idiots still write such totally fucked up and shitty
> code ...
>
> I'd get rid of it immediately and install a rblsmtpd frsh from the
> sources at http://cr.yp.to/ucspi-tcp/install.html
>
> So now to your problem.
> I was wrong, and my look at the code was too quick :-(
> Missed the
>     if (decision) return;
> statements at the beginning of the rbl() and antirbl() functions.
>
> The order of the options IS indeed important, but all the -a options have
> to
> precede the -r options. Sorry for that.
>
> A freshly compiled rblsmtpd from the sources gives:
>     $ TCPREMOTEIP=66.159.32.31 ./rblsmtpd -a allow.canasoft.net -r
> block.canasoft.net echo noblock
>     noblock
>
>     $ TCPREMOTEIP=66.159.32.31 ./rblsmtpd -r block.canasoft.net -a
> allow.canasoft.net
>     220 rblsmtpd.local
>
> So your ordering was correct initially, but I guess you had the wrong
> record type for the allow.canasoft.net
>
> As I can see from my end it should work now.
>
> Sorry again for the confusion :-(
>
> 	\Maex
>
>


-
sysadm  cronomagic.com
e-mail  ve2cii@canasoft.net

POWERED BY LINUX

[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic