Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in

  FAQ | Search | Memberlist | Usergroups | Statistics | Profile | Log in to check your private messages | Log in | Register

Using tarpit with postfix
 View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Networking & Security
View previous topic :: View next topic  
Author Message
Griffon26
Retired Dev
Retired Dev


Joined: 12 Nov 2002
Posts: 51
Location: The Netherlands
PostPosted: Sun Jan 25, 2004 12:55 am    Post subject: Using tarpit with postfix Reply with quote
I'm trying to set up a tarpit in front of postfix.
The job of this tarpit is to slow down the SMTP conversation if the IP of the connecting machine is in a blacklist.

The code that I am using was made by somebody else for use with sendmail. It sorta works if I have postfix running and then start the tarpit on another port. The tarpit uses the sendmail compatibility interface of postfix.

If I do not start postfix first, the sendmail interface doesn't work
Quote:

postfix/smtpd[7900]: warning: connect #1 to subsystem private/proxymap: Connection refused


Is there any way I can get this to work without having to run postfix on some port other than 25?
Back to top
View user's profile Send private message
Griffon26
Retired Dev
Retired Dev


Joined: 12 Nov 2002
Posts: 51
Location: The Netherlands
PostPosted: Tue Jan 27, 2004 5:47 pm    Post subject: Re: Using tarpit with postfix Reply with quote
Griffon26 wrote:

Is there any way I can get this to work without having to run postfix on some port other than 25?

Yes there is. All I had to do was comment out the first (non-comment) line in /etc/postfix/master.cf:
Code:
smtp      inet  n       -       n       -       -       smtpd

That will prevent smtpd from starting, while still starting the rest that is needed by the sendmail compatibility interface.

But that is not my only problem... I noticed that I started getting messages multiple times when using this tarpit. The only thing I have to go on currently is this message generated by another mail server:

Code:
lost connection with   GRIFFON26.domain.com[12.34.56.78] while sending end of data -- message   may be sent more than once


However, when I telnet to the tarpit and manually send a message, I cannot see anything out of the ordinary. As far as I know there are no programs to verify RFC compliancy when it comes to SMTP. I was really hoping such a program could indicate what exactly it is the tarpit is doing wrong.

If anyone has any idea what to do next, please let me know.
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Networking & Security All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



 Links: forums.gentoo.org | www.gentoo.org | bugs.gentoo.org | wiki.gentoo.org | forum-mods@gentoo.org

Copyright 2001-2025 Gentoo Foundation, Inc. Designed by Kyle Manna © 2003; Style derived from original subSilver theme. | Hosting by Gossamer Threads Inc. © | Powered by phpBB 2.0.23-gentoo-p11 © 2001, 2002 phpBB Group
Privacy Policy