Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

UBE filter test?

Status
Not open for further replies.
pixboy

pixboy

MIS
Nov 21, 2001
153
US
We use Netscape Messaging Server 3.6 for our primary e-mail server. We make extensive use of the UBE filtering to filter out unwanted relay attempts, some viruses, spam and many other things. Out filter file is somewhere near 500 lines long, and trying to figure out why some stuff got caught is difficult. (Some things caught by the filters are rejected. But since rejecting to an invalid e-mail address results in more work for the postmaster, we drop much of it into a single account for analysis -- and usually much laughter. But I digress ...)

While working on another project using TCP Wrappers, I found the tcpdmatch application quite useful for testing the hosts.allow and hosts.deny files. For those unfamiliar, tcpdmatch allows you to feed in a particular service, such as in.ftpd, and a hostname or IP address and see if that IP would be permitted to access the service. For example:

Code: 
tcpdmatch -d in.ftpd 10.11.12.13

might return this:

Code: 
client:   address  10.11.12.13
server:   process  in.ftpd
matched:  /etc/hosts.deny line 1
access:   denied

Pretty cool. That got me thinking about the possibility of creating such a testing app for the NMS filters. My thought would be to feed in the area of the header in question (such as To, From, Subject, sending IP, etc.) and the text of that field, and the app would look through the filters and tell you where, if anywhere, it matched. That way, we could look at an e-mail that's in our dumping account and figure out why it got there if it weren't already obvious. This would certainly help refine the filters where needed.

Does anyone know of a way to make this work? I was just starting to look through the original C code for tcpdmatch, but I'm not a C programmer, and I didn't want to mess around with too much before knowing if it were possible.

Thanks!!!!

 
Sort by date Sort by votes
Sorry I'm not familiar with 3.6, but in the newer versions you can do for example:

Code: 
imsimta test -rewrite friend@public.com

and that would test if your rule block that address was working. --
Andy
 
Upvote 0 Downvote
I'd seen that utility mentioned somewhere yesterday. Unfortunately, the newer version of NMS I have installed elsewhere is 4.15, and I don't find imsimta anywhere. Must be a version 5+ utility.

I'll keep looking to see if I can find that utility somewhere and hopefully put it to use on 3.6.

Thanks!
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

deejay33
  • Locked
  • Question
Groupwise Search/Filter
Replies
1
Views
42
deejay33
deejay33
ataylor44
  • Locked
  • Question
Restoring Novell Groupwise to a test windows server
Replies
5
Views
65
NeilOrangePeel
NeilOrangePeel
smoppett
  • Locked
  • Question
View/Filter/(Filter List) Menu
Replies
1
Views
31
smoppett
smoppett
Guest_imported
  • Locked
  • Question
Content Filter for Footer
Replies
0
Views
20
Guest_imported
Guest_imported
deankn
  • Locked
  • Question
Filter Outgoing Spam
Replies
0
Views
36
deankn
deankn

Part and Inventory Search

Sponsor

Back
Top