{"id":2856,"date":"2012-07-26T17:20:41","date_gmt":"2012-07-26T14:20:41","guid":{"rendered":"http:\/\/skeletor.org.ua\/?p=2856"},"modified":"2015-01-08T09:23:18","modified_gmt":"2015-01-08T07:23:18","slug":"exim-%d0%b7%d0%b0%d1%89%d0%b8%d1%82%d0%b0-%d0%be%d1%82-%d1%81%d0%bf%d0%b0%d0%bc%d0%b0","status":"publish","type":"post","link":"https:\/\/skeletor.org.ua\/?p=2856","title":{"rendered":"[exim] \u0417\u0430\u0449\u0438\u0442\u0430 \u043e\u0442 \u0441\u043f\u0430\u043c\u0430"},"content":{"rendered":"<p>\u0414\u0430\u043d\u043d\u044b\u0435 <strong>acl&#8217;\u044b<\/strong> \u044f \u043d\u0430\u0441\u043e\u0431\u0438\u0440\u0430\u043b \u043d\u0430 \u043f\u0440\u043e\u0441\u0442\u043e\u0440\u0430\u0445 \u0438\u043d\u0442\u0435\u0440\u043d\u0435\u0442\u0430. \u0417\u0430\u043c\u0435\u0442\u043a\u0430 \u0431\u0443\u0434\u0435\u0442 \u043f\u043e\u043f\u043e\u043b\u043d\u044f\u0442\u044c\u0441\u044f.<\/p>\n<p>\u041f\u0440\u0435\u0434\u0432\u0430\u0440\u0438\u0442\u0435\u043b\u044c\u043d\u0430\u044f \u043f\u043e\u0434\u0433\u043e\u0442\u043e\u0432\u043a\u0430<\/p>\n<p><code>acl_smtp_rcpt = acl_check_rcpt<br \/>\nacl_smtp_data = acl_check_content<br \/>\nacl_smtp_helo = acl_check_helo<\/code><\/p>\n<p><!--more--><\/p>\n<p>\u0410 \u0432\u043e\u0442 \u0441\u043e\u0431\u0441\u0442\u0432\u0435\u043d\u043d\u043e \u0438 \u0441\u0430\u043c\u0438 <strong>acl&#8217;\u044b<\/strong>. \u0417\u0430\u043c\u0435\u0447\u0443, \u0447\u0442\u043e \u0437\u0434\u0435\u0441\u044c \u0442\u043e\u043b\u044c\u043a\u043e \u0437\u0430\u043f\u0440\u0435\u0449\u0430\u044e\u0449\u0438\u0435 <strong>acl&#8217;\u044b<\/strong>.<\/p>\n<pre>acl_check_helo:\r\n\r\n  accept hosts = +relay_from_hosts\r\n\r\n  drop condition = ${if match{$sender_helo_name}{MY_IP}{yes}{no} }\r\n       message   = \"Dropped spammer pretending to be us\"\r\n\r\n  drop condition = ${if match{$sender_helo_name}{^[0-9]\\.[0-9]\\.[0-9]\\.[0-9]}{yes}{no} }\r\n       message   = \"Dropped IP-only or IP-starting helo\"\r\n\r\n  deny    message         = \"Broken HELO\/EHLO\"\r\n          condition       = ${if eq{$sender_helo_name}{}{yes}{no}}<\/pre>\n<pre>acl_check_rcpt:\r\n\r\n  deny    local_parts   = ^.*[@%!\/|] : ^\\\\.\r\n          message       = \"incorrect symbol in address\"\r\n\r\n  deny    message       = \"incorrect symbol in address\"\r\n          domains       = !+local_domains\r\n          local_parts   = ^[.\/|] : ^.*[@%!] : ^.*\/\\\\.\\\\.\/\r\n\r\n  accept  domains       = +local_domains : +relay_from_domains : +relay_to_domains\r\n          endpass\r\n          verify        = recipient\r\n\r\n  deny    message         = You are not allow send email becouse you &lt;$sender_address&gt; has authenticated as $authenticated_id\r\n          authenticated   = *\r\n          condition       = ${if eq {$authenticated_id}{$sender_address} {no}{yes}}\r\n\r\n  deny message        = Only one recipient accepted for NULL sender\r\n          senders        = :\r\n          condition      = ${if &gt;{$rcpt_count}{1} {1}}\r\n\r\n  deny    condition       = ${if match_domain{$sender_helo_name}{$primary_hostname:+local_domains:+relay_to_domains}{true}{false}}\r\n          hosts           = !127.0.0.1:!localhost:!*\r\n          message         = Message was delivered by ratware - own\r\n          log_message     = remote host used our name in HELO\/EHLO.\r\n          delay           = 30s\r\n\r\n  deny    message       = \"HELO\/EHLO require by SMTP RFC\"\r\n          condition     = ${if eq{$sender_helo_name}{}{yes}{no}}\r\n\r\n  deny    message        = \"IP in HELO!\"\r\n          hosts          =  *:!+relay_from_hosts:!+relay_from_domains\r\n          condition      = ${if eq{$sender_helo_name}{$sender_host_address}{true}{false}}\r\n\r\n  deny    condition       = ${if eq{$sender_helo_name}{$interface_address}{yes}{no}}\r\n          hosts           = !127.0.0.1 : !localhost : *\r\n          message         = \"Wy my IP in your HELO\"\r\n\r\n  deny    condition       = ${if match{$sender_helo_name}{\\N^\\d+$\\N}{yes}{no}}\r\n          hosts           = !127.0.0.1:!localhost:*\r\n\r\n  deny    message       = DNSBL listed at $dnslist_domain\\n$dnslist_text\r\n          hosts           = !127.0.0.1 : !+relay_from_hosts : $sender_host_address\r\n          domains         = !+local_domains : !+relay_from_domains\r\n          dnslists      = bl.spamcop.net : dnsbl.sorbs.net : sbl.spamhaus.org : pbl.spamhaus.org : xbl.spamhaus.org : db.wpbl.info : virbl.dnsbl.bit.nl : ix.dnsbl.manitu.net : dnsbl.njabl.org : cbl.abuseat.org\r\n\r\n  deny    message =       Invalid address\r\n          senders =       \\N^\\.|\\.@\\N<\/pre>\n<pre>acl_check_content:\r\n# Include Vexim specific rcpt ACLs\r\n.include \/etc\/exim\/vexim-acl-check-content.conf<\/pre>\n<p>\u0421\u043e\u0434\u0435\u0440\u0436\u0438\u043c\u043e\u0435\u00a0<strong>\/etc\/exim\/vexim-acl-check-content.conf<\/strong><\/p>\n<pre>  deny  message         = This message contains a MIME error ($demime_reason)\r\n        demime          = *\r\n        condition       = ${if &gt;{$demime_errorlevel}{2}{1}{0}}\r\n\r\n  # Reject typically wormish file extensions. There is almost no\r\n  # sense in sending such files by email.\r\n  deny  message         = This message contains an unwanted file extension ($found_extension)\r\n        demime          = scr:vbs:bat:lnk:pif:bz2\r\n\r\n  deny  message = Possible CMD file attack ($found_extension)\r\n        demime = cmd\r\n\r\n  deny  message = Possible COM file attack ($found_extension)\r\n        demime = com\r\n\r\n  deny  message = Possible Microsoft JScript attack ($found_extension)\r\n        demime = js\r\n\r\n  deny  message = Possible Windows registry attack ($found_extension)\r\n        demime = reg\r\n\r\n  deny  message = Possible compiled Help file-base virus ($found_extension)\r\n        demime = chm\r\n\r\n  deny  message = Possible SpeedDial attack ($found_extension)\r\n        demime = cnf\r\n\r\n  deny  message = Possible Micrsoft HTML archive attack ($found_extension)\r\n        demime = hta\r\n\r\n  deny  message = Possible Microsoft Internet Settings attack ($found_extension)\r\n        demime = ins\r\n\r\n  deny  message = Possible Windows Explorer Command attack ($found_extension)\r\n        demime = scf\r\n\r\n  deny  message = Possible Microsoft Windows Script attack ($found_extension)\r\n        demime = sct\r\n\r\n  deny  message = Possible Microsoft VBScript attack ($found_extension)\r\n        demime = vbs:vbe\r\n\r\n  deny  message = Possible Microsoft Script Host attack ($found_extension)\r\n        demime = wsc:wsf:wsh\r\n\r\n  deny  message = Possible Exchange Shortcut attack ($found_extension)\r\n        demime = xnk\r\n\r\n  deny  message = Possible Microsoft Access Shortcut attack ($found_extension)\r\n        demime = mad:maf:mag:mam:maq:mar:mas:mat:mav:maw\r\n\r\n  # Reject virus infested messages.\r\n  warn  message         = This message contains malware ($malware_name)\r\n        malware         = *\r\n        log_message     = This message contains malware ($malware_name)<\/pre>\n","protected":false},"excerpt":{"rendered":"<p>\u0414\u0430\u043d\u043d\u044b\u0435 acl&#8217;\u044b \u044f \u043d\u0430\u0441\u043e\u0431\u0438\u0440\u0430\u043b \u043d\u0430 \u043f\u0440\u043e\u0441\u0442\u043e\u0440\u0430\u0445 \u0438\u043d\u0442\u0435\u0440\u043d\u0435\u0442\u0430. \u0417\u0430\u043c\u0435\u0442\u043a\u0430 \u0431\u0443\u0434\u0435\u0442 \u043f\u043e\u043f\u043e\u043b\u043d\u044f\u0442\u044c\u0441\u044f. \u041f\u0440\u0435\u0434\u0432\u0430\u0440\u0438\u0442\u0435\u043b\u044c\u043d\u0430\u044f \u043f\u043e\u0434\u0433\u043e\u0442\u043e\u0432\u043a\u0430 acl_smtp_rcpt = acl_check_rcpt acl_smtp_data = acl_check_content acl_smtp_helo = acl_check_helo<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[11],"tags":[],"class_list":["post-2856","post","type-post","status-publish","format-standard","hentry","category-mail"],"_links":{"self":[{"href":"https:\/\/skeletor.org.ua\/index.php?rest_route=\/wp\/v2\/posts\/2856","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/skeletor.org.ua\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/skeletor.org.ua\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/skeletor.org.ua\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/skeletor.org.ua\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=2856"}],"version-history":[{"count":5,"href":"https:\/\/skeletor.org.ua\/index.php?rest_route=\/wp\/v2\/posts\/2856\/revisions"}],"predecessor-version":[{"id":4615,"href":"https:\/\/skeletor.org.ua\/index.php?rest_route=\/wp\/v2\/posts\/2856\/revisions\/4615"}],"wp:attachment":[{"href":"https:\/\/skeletor.org.ua\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=2856"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/skeletor.org.ua\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=2856"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/skeletor.org.ua\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=2856"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}