[SA-exim] Whitelist - When sa-exim takes action?

[Marc MERLIN]

On Thu, Mar 06, 2008 at 04:17:41PM +0100, Jonathan GF wrote:
> Hi,
> 
> i have a working implementation of exim4 and sa-exim but i feel i'm unable
> to whitelist. Don't know why. I think the clue is the moment where i have to
> whitelist but i can't get it.
 
You debug those things with
 exim4 -d+acl -bd -oX 26
send your mail to post 26 (or 25 on an unused server), and look at what exim
does
 
> In my ACL RCPT i have this lines at the top:
> 
>   accept  hosts           = :
> 
>   accept  domains         = +local_domains
>           senders         =
> lsearch;/etc/exim4/list_whitelist.txt:*@lsearch;/etc/exim4/list_whitelist.txt

If you're whitelisted, it'll skip the RCPT ACL, it won't skip SA-Exim, just
to make sure we agree.

>   deny    message         = Connection denied for $sender_host_address -
> Blacklisted host.
>           hosts           = net-iplsearch;/etc/exim4/list_bl-iphost.txt
> 
>   warn    message         = X-SA-Do-Not-Rej: Yes
>           local_parts     = postmaster:abuse
> 
>   warn    message         = X-SA-Do-Not-Rej: Yes
>           senders         = +whitelist_senders
> 
> [...]
> 
> but the email addresses or domains in the files above and in the addreslist
> named "whitelist_senders" seems not to be read or no action is being taken.

SA-Exim should save the mails somewhere, or they should be accepted anyway.
Look if the X-SA-Do-Not-Rej: header is there.
If not, look with the exim4 command above, what happens and how the rcpt to
is parsed but not found in +whitelist_senders

Marc
-- 
"A mouse is a device used to point at the xterm you want to type in" - A.S.R.
Microsoft is to operating systems & security ....
                                      .... what McDonalds is to gourmet cooking
Home page: http://marc.merlins.org/