Comments (9)
you can assign this to me
Original comment by [email protected]
on 5 Jan 2007 at 5:20
- Added labels: ****
- Removed labels: ****
from gross.
Original comment by [email protected]
on 5 Jan 2007 at 5:38
- Added labels: Component-Logic, Type-Enhancement
- Removed labels: Type-Defect
from gross.
Maybe it would be best to redesign ip checking part of gross. I think that we
should have a separate policer
thread which would handle dnsbl and sophos blocker and possibly other checks as
well. May be spf checks, too.
A check plugin API of some sort. Policer then would make a decision if the ip
address should be passed through
or handled normally, or possibly to have gross to send a permanent error
response. I think that some people
would like to have a possibility to configure gross deny sending permanently,
if e.g. three blacklists matched.
Original comment by [email protected]
on 6 Jan 2007 at 10:06
- Added labels: ****
- Removed labels: ****
from gross.
I think a check plugin API is a good idea. We've already tripled the number of
check
types that we want to build in, we can only assume that there will be more.
Perhaps we could assign each check a certain weight (e.g. spamcop=1, spamhaus=2,
sophos=3, spf_fail=5. etc), and then have configurable thresholds for each
action
(e.g., grey=2 and block=5). Would it be beneficial to pass in the thresholds
as part
of the mapping callout so that different policies could be applied to different
IP
ranges, domains or channels?
Original comment by [email protected]
on 8 Jan 2007 at 2:29
- Added labels: ****
- Removed labels: ****
from gross.
Did the 0.7.0 release include the proposed API redesign? Is it appropriate for
me to
start implementing the sophos capabilities, or do more changes need to be made
before
that can happen?
Original comment by [email protected]
on 10 Jan 2007 at 2:32
- Added labels: ****
- Removed labels: ****
from gross.
Not yet. I have to implement policer thread pools and change worker processes
to send work to them. The
protocol for querying policer threads is still a work in progress. There will
be a pool per policer type, e.g.
dnsbl-pool, spf-pool and pmxblocker-pool. I think that the basic functionality
should be as simple as
possible, and the more complicated things can be enabled as configure options
at compile time. These
features would be weights and thresholds.
After all, Gross stands for greylisting of suspicious sources, and I'd like to
keep the default as so. So, default
behaviour would be that test_tuple() send the query to each policer pool and
starts to wait for a response via a
message queue. Policers then process the queries and send responses to the
message queue. If test_tuple()
sees a message stating the triplet to be greylisted, it short cuts and returns
STATUS_GRAY right away.
Then, one can implement more complicated systems, and alter the way how those
responses from policers are
treated. I have to think about the design a little bit further, as how to make
these configurable features as
easy as possible to implement.
Original comment by [email protected]
on 10 Jan 2007 at 3:28
- Added labels: ****
- Removed labels: ****
from gross.
Grossd now has preliminary sophos blocker compatibility. Relevant config
options are:
check = blocker
blocker_host = pmxhost
blocker_port = 4466
Needs testing, and perhaps code for reusing the connections, if pmx allows it.
Waiting for feedback.
Original comment by [email protected]
on 17 Jan 2007 at 9:19
- Changed state: Started
- Added labels: ****
- Removed labels: ****
from gross.
Original comment by [email protected]
on 23 Jan 2007 at 11:02
- Changed state: Verified
- Added labels: ****
- Removed labels: ****
from gross.
Original comment by [email protected]
on 11 Apr 2008 at 8:20
- Changed state: Fixed
- Added labels: ****
- Removed labels: ****
from gross.
Related Issues (20)
- grossd dies under Linux HOT 1
- freebsd port broken HOT 2
- Old linux needed additional #include's to compile HOT 1
- lock_t conficts on some platforms HOT 1
- accept(): Too many open files HOT 2
- Separate policy servers and greylisting engine HOT 3
- grossd does not call initgroups() prior setgid() HOT 3
- grossd dies when filter_bit > 24 HOT 6
- [deleted issue]
- could you push a new version with the current commits made? HOT 1
- gross can not be compiled under glibc >= 2.10.1 HOT 1
- Implement {auth_authen}, {verify} and {cert_subject} Milter macros
- SPF check Whitelisting HOT 1
- grossd with postfix crash HOT 1
- Add a recipient based whitelist HOT 9
- flexible gerylisting delay based on dnsbl score
- Grossd won't start if statefile enabled in Ubuntu 10.10 and Gross 1.0.2-2 HOT 5
- include/utils.h getline naming issues HOT 3
- Support listening on unix sockets HOT 1
- Add header line for clients in RBL
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from gross.