[Nottingham] logwatch and sendmail 8.12 dnsbl
James Beckett
jmb at hackery.net
Thu Feb 5 13:19:23 GMT 2004
It's just occurred to me that although logwatch tags a raft of
sendmail rejects, DNSBL rejects don't show up. This bugs me, as I'd
like metrics for the effectiveness of my various spam protection
systems.
In sendmail 8.12, lines in /var/log/maillog take the form:
Feb 3 12:46:17 xyzzy sendmail[26622]: ruleset=check_relay,
arg1=lsanca1-ar20-4-65-076-224.lsanca1.dsl-verizon.net,
arg2=4.65.76.224,
relay=lsanca1-ar20-4-65-076-224.lsanca1.dsl-verizon.net [4.65.76.224],
reject=550 5.7.1 Rejected: 4.65.76.224 listed at relays.visi.com
which doesn't seem to match any of the patterns in logwatch's sendmail
script, in either my version (4.3) or the current version on the
logwatch website. This is the standard format output by the m4 macro
invocation
FEATURE(`dnsbl',`relays.visi.com')dnl
There's some mention in the logwatch mailing list from Jun 2002 about
DNSBL handling but no followup. Does anyone here have this working,
before I bug the logwatch author?
--
James Beckett <jmb at hackery.net>
<www.hackery.net/jmb/>
More information about the Nottingham
mailing list