[Mimedefang] "No Disassemble Johnny 5"
David F. Skoll
dfs at roaringpenguin.com
Mon Apr 29 10:44:18 EDT 2002
> Okay, so we won't disassemble, but how do you easily RE-assemble a
> quarantined message and send it through to the final recipient(s)? I
> realize all the pieces are in the spool/qdir-* folder, but if I just
> cat them together and mail the result, it'll come from the
> administrator, as opposed to the original sender...it'll just not look
> right. I don't think. So, how do we do that?
If you have foresight, you'll use action_quarantine_entire_message every
time you quarantine anything, so at least you have the whole message.
Then you send it something like this (from inside the quarantine directory)
# sendmail -f`cat SENDER` `cat RECIPIENTS` < ENTIRE_MESSAGE
> Hey, I wonder, has anyone thought of dumping the data in a MySQL
> database (or any sort of DB really) with some sort of mechanism where
> the administrator gets the notification of a quarantined message and
> if s/he sends that bounce notification back to the mailer, it will
> then release the message for delivery?
Releasing messages by e-mail is risky because you're using "in-band
signalling" and e-mail is absurdly easy to fake. I have an
authenticated web-based interface for releasing messages.
I do use a similar mechanism for my CanIt spam trap (except I don't
quarantine spam; I tempfail it.) See:
http://www.roaringpenguin.com/mimedefang/canit/
For fun, see the highest-scoring spam I've received to date at:
http://www.roaringpenguin.com/canit/showincident.php?id=358
(Login demo, password demo.)
CanIt is not a free product, btw. :-) Apologies if touting commercial
software is considered bad form.
Regards,
David.
More information about the MIMEDefang
mailing list