2012-04-29 10:35:59 +02:00
|
|
|
#!perl -w
|
2012-05-23 22:12:21 +02:00
|
|
|
|
|
|
|
|
=head1 NAME
|
|
|
|
|
|
|
|
|
|
resolvable_fromhost
|
|
|
|
|
|
|
|
|
|
=head1 SYNOPSIS
|
|
|
|
|
|
|
|
|
|
Determine if the from host resolves to a valid MX or host.
|
|
|
|
|
|
|
|
|
|
=head1 DESCRIPTION
|
|
|
|
|
|
|
|
|
|
The fromhost is the part of the email address after the @ symbol, provided by
|
|
|
|
|
the sending server during the SMTP conversation. This is usually, but not
|
|
|
|
|
always, the same as the hostname in the From: header.
|
|
|
|
|
|
|
|
|
|
B<resolvable_fromhost> tests to see if the fromhost resolves. It saves the
|
|
|
|
|
results in the transaction note I<resolvable_fromhost> where other plugins can
|
|
|
|
|
use that information. Typical results are:
|
|
|
|
|
|
|
|
|
|
a - fromhost resolved as an A record
|
|
|
|
|
mx - fromhost has valid MX record(s)
|
|
|
|
|
ip - fromhost was an IP
|
|
|
|
|
whitelist - skipped checks due to whitelisting
|
|
|
|
|
null - null sender
|
|
|
|
|
config - fromhost not resolvable, but I<reject 0> was set.
|
|
|
|
|
|
|
|
|
|
Any other result is an error message with details of the failure.
|
|
|
|
|
|
|
|
|
|
If B<resolvable_fromhost> is enabled, the from hostname is also stored in
|
|
|
|
|
I<resolvable_fromhost_host>, making it accessible when $sender is not.
|
|
|
|
|
|
|
|
|
|
=head1 CONFIGURATION
|
|
|
|
|
|
|
|
|
|
=head2 reject <bool>
|
|
|
|
|
|
|
|
|
|
If I<reject 1> is set, the old require_resolvable_fromhost plugin behavior of
|
|
|
|
|
temporary rejection is the default.
|
|
|
|
|
|
|
|
|
|
resolvable_fromhost reject [ 0 | 1 ]
|
|
|
|
|
|
|
|
|
|
Default: 1
|
|
|
|
|
|
|
|
|
|
=head2 reject_type
|
|
|
|
|
|
|
|
|
|
reject_type [ perm | temp ]
|
|
|
|
|
|
|
|
|
|
Set I<reject_type perm> to reject mail instead of deferring it.
|
|
|
|
|
|
|
|
|
|
Default: temp (temporary, aka soft, aka 4xx).
|
|
|
|
|
|
|
|
|
|
=head1 EXAMPLE LOG ENTRIES
|
|
|
|
|
|
|
|
|
|
80072 (mail) resolvable_fromhost: googlegroups.com has valid MX at gmr-smtp-in.l.google.com
|
|
|
|
|
80108 (mail) resolvable_fromhost: zerobarriers.net has valid MX at zerobarriers.net
|
|
|
|
|
80148 (mail) resolvable_fromhost: uhin.com has valid MX at filter.itsafemail.com
|
|
|
|
|
86627 (mail) resolvable_fromhost: no MX records for palmalar.com
|
|
|
|
|
86627 (mail) resolvable_fromhost: fail: palmalar.com (SERVFAIL)
|
|
|
|
|
|
|
|
|
|
=head1 AUTHORS
|
|
|
|
|
|
|
|
|
|
2012 - Matt Simerson - refactored, added: POD, tests, reject, reject_type
|
|
|
|
|
|
|
|
|
|
2002 - Ask Bjørn Hansen - intial plugin
|
|
|
|
|
|
|
|
|
|
=cut
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
use strict;
|
|
|
|
|
use warnings;
|
|
|
|
|
|
|
|
|
|
use Qpsmtpd::Constants;
|
2006-01-25 03:59:31 +01:00
|
|
|
use Qpsmtpd::DSN;
|
2012-05-23 22:12:21 +02:00
|
|
|
use Qpsmtpd::TcpServer;
|
|
|
|
|
|
2005-07-28 22:25:54 +02:00
|
|
|
use Socket;
|
2012-05-23 22:12:21 +02:00
|
|
|
use Net::DNS qw(mx);
|
2007-05-18 00:16:27 +02:00
|
|
|
use Net::IP qw(:PROC);
|
2005-07-28 22:25:54 +02:00
|
|
|
|
2012-05-23 22:12:21 +02:00
|
|
|
my %invalid = ();
|
2007-05-18 05:07:53 +02:00
|
|
|
my $has_ipv6 = Qpsmtpd::TcpServer::has_ipv6();
|
2002-07-08 04:30:11 +02:00
|
|
|
|
2012-05-23 22:12:21 +02:00
|
|
|
sub register {
|
|
|
|
|
my ($self, $qp, %args) = @_;
|
|
|
|
|
|
|
|
|
|
foreach (keys %args) {
|
|
|
|
|
$self->{_args}->{$_} = $args{$_};
|
|
|
|
|
}
|
|
|
|
|
if ( ! defined $self->{_args}{reject} ) {
|
|
|
|
|
$self->{_args}{reject} = 1;
|
|
|
|
|
};
|
|
|
|
|
$self->{_args}{reject_type} ||= 'soft';
|
|
|
|
|
}
|
|
|
|
|
|
2005-07-07 06:17:39 +02:00
|
|
|
sub hook_mail {
|
2012-05-23 22:12:21 +02:00
|
|
|
my ($self, $transaction, $sender, %param) = @_;
|
2004-11-27 08:08:46 +01:00
|
|
|
|
2012-05-23 22:12:21 +02:00
|
|
|
$self->populate_invalid_networks();
|
Changes by jpeacock@cpan.org (John Peacock)
o plugins/check_badmailfromto
- New plugin in the style of check_badmailfrom, which matches a pair
of FROM/TO and makes it seem like the recipient's address no longer
exists (but only from the matching sender's point of view). Useful
for stalkers and other harassment cases.
o plugins/dns_whitelist_soft
- New plugin to provide a DNS-based whitelist (good for distributed
sites).
o various files
- Replaced tab character with 8 spaces and adjusted line breaks for
better readability.
Changes by mct@toren.net (Michael C. Toren)
o lib/Qpsmtpd/SMTP.pm
- Assumes a MAIL FROM value of "<#@[]>" (utilized by qmail to
indicate a null sender when generating a doublebounce message)
is equivalent to "<>". Previously qpsmtpd complained that the
value could not be parsed.
- Adds LOGIN to the default list of supported auth mechanisms.
The documentation in Auth.pm indicated that auth-login was not
currently supported due to lack of functionality, however I can
confirm that LOGIN appears to work fine as tested by using msmtp
(http://msmtp.sourceforge.net/). Are there any indications that
LOGIN support is actually broken in the current implementation?
- Removes the "X-Qpsmtpd-Auth: True" header appended when a message
has been sent by an authenticated user. One problem with such a
header is that it's impossible to say which SMTP hop added it,
and it provides no information which could be used to backtrack
the transaction. I grepped through my mail archives a bit
looking for how other MTAs handled the problem, and decided it
would be best to place this information in the Received: header:
Received: from remotehost (HELO remotehost) (192.168.42.42)
(smtp-auth username foo, mechanism cram-md5)
by mail.netisland.net (qpsmtpd/0.28) with ESMTP; <date>
o lib/Qpsmtpd/Auth.pm:
- Documentation update for the arguments passed to an auth
handler; previously the $mechanism argument was not mentioned,
which threw off the argument offsets.
- Documentation update for auth-login removing the warning
that auth-login is not currently supported due to lack of
functionality.
- Fix to execute a generic auth hook when a more specific
auth-$mechanism hook does not exist. (Previously posted
to the list last week.)
- Upon authentication, sets $session->{_auth_user} and
$session->{_auth_mechanism} so that SMTP.pm can include them
in the Received: header.
o plugins/queue/qmail-queue
- Added a timestamp and the qmail-queue qp identifier to the
"Queued!" 250 message, for compatibility with qmail-smtpd, which
can be very useful for tracking message delivery from machine to
machine. For example, the new 250 message might be:
250 Queued! 1105927468 qp 3210 <1105927457@netisland.net>
qmail-smtpd returns:
250 ok 1106546213 qp 7129
Additionally, for consistency angle brackets are placed around
the Message-ID displayed in the 250 if they were missing in the
message header.
o plugins/check_badmailfrom:
- Changed the error message from "Mail from $bad not accepted
here" to "sorry, your envelope sender is in my badmailfrom
list", for compatibility with qmail-smtpd. I didn't see any
reason to share with the sender the value of $bad, especially
for situations where the sender was rejected resulting from a
wildcard.
o plugins/check_earlytalker:
o plugins/require_resolvable_fromhost:
- No longer checks for earlytalkers or resolvable senders if the
connection note "whitelistclient" is set, which is nice for
helping backup MX hosts empty their queue faster.
o plugins/count_unrecognized_commands:
- Return code changed from DENY_DISCONNECT, which isn't valid in
an unrecognized_command hook, to DENY, which in this context
drops the connection anyway. (Previously posted to the list
last week.)
git-svn-id: https://svn.perl.org/qpsmtpd/trunk@356 958fd67b-6ff1-0310-b445-bb7760255be9
2005-01-28 04:30:50 +01:00
|
|
|
|
2012-05-23 22:12:21 +02:00
|
|
|
# check first, so results are noted for other plugins
|
|
|
|
|
my $resolved = $self->check_dns($sender->host, $transaction);
|
|
|
|
|
|
|
|
|
|
return DECLINED if $resolved; # success, no need to continue
|
|
|
|
|
return DECLINED if $self->is_immune( $sender, $transaction );
|
|
|
|
|
return DECLINED if ! $self->{_args}{reject};
|
2002-07-08 04:30:11 +02:00
|
|
|
|
2012-05-23 22:12:21 +02:00
|
|
|
return DECLINED if $sender->host; # reject later
|
|
|
|
|
|
|
|
|
|
$self->log(LOGWARN, "FQDN required in envelope sender");
|
|
|
|
|
return Qpsmtpd::DSN->addr_bad_from_system( $self->get_reject_type(),
|
|
|
|
|
"FQDN required in the envelope sender");
|
2002-07-08 04:30:11 +02:00
|
|
|
}
|
|
|
|
|
|
2010-02-14 00:29:56 +01:00
|
|
|
sub hook_rcpt {
|
2012-05-23 22:12:21 +02:00
|
|
|
my ($self, $transaction, $recipient, %args) = @_;
|
2010-02-14 00:29:56 +01:00
|
|
|
|
2012-05-23 22:12:21 +02:00
|
|
|
my $result = $transaction->notes('resolvable_fromhost');
|
|
|
|
|
return DECLINED if ! $self->{_args}{reject}; # no reject policy
|
|
|
|
|
return DECLINED if $result =~ /^(a|ip|mx)$/; # success
|
|
|
|
|
return DECLINED if $result =~ /^(whitelist|null|config)$/; # immunity
|
2010-02-14 00:29:56 +01:00
|
|
|
|
2012-05-23 22:12:21 +02:00
|
|
|
$self->log(LOGINFO, $result ); # log error
|
|
|
|
|
return Qpsmtpd::DSN->temp_resolver_failed( $self->get_reject_type(), $result );
|
2010-02-14 00:29:56 +01:00
|
|
|
}
|
|
|
|
|
|
2002-07-08 04:30:11 +02:00
|
|
|
sub check_dns {
|
2012-05-23 22:12:21 +02:00
|
|
|
my ($self, $host, $transaction) = @_;
|
|
|
|
|
|
|
|
|
|
# we can't even parse a hostname out of the address
|
|
|
|
|
if ( ! $host ) {
|
|
|
|
|
$transaction->notes('resolvable_fromhost', 'unparsable host');
|
|
|
|
|
return;
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
$transaction->notes('resolvable_fromhost_host', $host);
|
|
|
|
|
|
|
|
|
|
if ( $host =~ m/^\[(\d{1,3}\.){3}\d{1,3}\]$/ ) {
|
|
|
|
|
$self->log(LOGINFO, "skip: $host is an IP");
|
|
|
|
|
$transaction->notes('resolvable_fromhost', 'ip');
|
|
|
|
|
return 1;
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
my $res = new Net::DNS::Resolver(dnsrch => 0);
|
|
|
|
|
$res->tcp_timeout(30);
|
|
|
|
|
$res->udp_timeout(30);
|
|
|
|
|
|
|
|
|
|
my $has_mx = $self->get_and_validate_mx( $res, $host, $transaction );
|
|
|
|
|
return 1 if $has_mx == 1; # success!
|
|
|
|
|
return if $has_mx == -1; # has invalid MX records
|
|
|
|
|
|
|
|
|
|
my @host_answers = $self->get_host_records( $res, $host, $transaction );
|
2006-08-28 01:17:33 +02:00
|
|
|
foreach my $rr (@host_answers) {
|
2012-05-23 22:12:21 +02:00
|
|
|
if ( $rr->type eq 'A' || $rr->type eq 'AAAA' ) {
|
|
|
|
|
$self->log(LOGINFO, "pass: found valid A for $host");
|
|
|
|
|
$transaction->notes('resolvable_fromhost', 'a');
|
|
|
|
|
return $self->ip_is_valid($rr->address);
|
|
|
|
|
};
|
|
|
|
|
if ( $rr->type eq 'MX' ) {
|
|
|
|
|
$self->log(LOGINFO, "pass: found valid MX for $host");
|
|
|
|
|
$transaction->notes('resolvable_fromhost', 'mx');
|
|
|
|
|
return $self->mx_address_resolves($rr->exchange, $host);
|
|
|
|
|
};
|
2006-08-28 01:17:33 +02:00
|
|
|
}
|
2012-05-23 22:12:21 +02:00
|
|
|
return;
|
2005-07-28 22:25:54 +02:00
|
|
|
}
|
|
|
|
|
|
2012-05-23 22:12:21 +02:00
|
|
|
sub ip_is_valid {
|
|
|
|
|
my ($self, $ip) = @_;
|
|
|
|
|
my ($net, $mask);
|
|
|
|
|
### while (($net,$mask) = each %invalid) {
|
|
|
|
|
### ... does NOT reset to beginning, will start on
|
|
|
|
|
### 2nd invocation after where it denied the first time..., so
|
|
|
|
|
### 2nd time the same "MAIL FROM" would be accepted!
|
|
|
|
|
foreach $net (keys %invalid) {
|
|
|
|
|
$mask = $invalid{$net};
|
|
|
|
|
$mask = pack "B32", "1" x ($mask) . "0" x (32 - $mask);
|
|
|
|
|
return if $net eq join('.', unpack("C4", inet_aton($ip) & $mask));
|
|
|
|
|
}
|
|
|
|
|
return 1;
|
2005-07-28 22:25:54 +02:00
|
|
|
}
|
|
|
|
|
|
2012-05-23 22:12:21 +02:00
|
|
|
sub get_and_validate_mx {
|
|
|
|
|
my ($self, $res, $host, $transaction ) = @_;
|
|
|
|
|
|
|
|
|
|
my @mx = mx($res, $host);
|
|
|
|
|
if ( ! scalar @mx ) { # no mx records
|
|
|
|
|
$self->log(LOGINFO, "no MX records for $host");
|
|
|
|
|
return 0;
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
foreach my $mx (@mx) {
|
|
|
|
|
# if any MX is valid, then we consider the domain resolvable
|
|
|
|
|
if ( $self->mx_address_resolves($mx->exchange, $host) ) {
|
|
|
|
|
$self->log(LOGINFO, "pass: $host has valid MX at " . $mx->exchange);
|
|
|
|
|
$transaction->notes('resolvable_fromhost', 'mx');
|
|
|
|
|
return 1;
|
|
|
|
|
};
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
# if there are MX records, and we got here, none are valid
|
|
|
|
|
$self->log(LOGINFO, "fail: invalid MX for $host");
|
|
|
|
|
$transaction->notes('resolvable_fromhost', "invalid MX for $host");
|
|
|
|
|
return -1;
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
sub get_host_records {
|
|
|
|
|
my ($self, $res, $host, $transaction ) = @_;
|
|
|
|
|
|
|
|
|
|
my @answers;
|
|
|
|
|
my $query = $res->search($host);
|
|
|
|
|
|
|
|
|
|
if ($query) {
|
|
|
|
|
foreach my $rrA ($query->answer) {
|
|
|
|
|
push(@answers, $rrA);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if ($has_ipv6) {
|
|
|
|
|
$query = $res->search($host, 'AAAA');
|
|
|
|
|
if ($query) {
|
|
|
|
|
foreach my $rrAAAA ($query->answer) {
|
|
|
|
|
push(@answers, $rrAAAA);
|
|
|
|
|
}
|
|
|
|
|
}
|
2006-08-28 01:17:33 +02:00
|
|
|
}
|
2012-05-23 22:12:21 +02:00
|
|
|
|
|
|
|
|
if ( ! scalar @answers) {
|
|
|
|
|
if ( $res->errorstring ne 'NXDOMAIN' ) {
|
|
|
|
|
$self->log(LOGWARN, "$$ query for $host failed: ", $res->errorstring);
|
|
|
|
|
};
|
|
|
|
|
return;
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
return @answers;
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
sub mx_address_resolves {
|
|
|
|
|
my ($self, $name, $fromhost) = @_;
|
|
|
|
|
|
|
|
|
|
# IP in MX
|
|
|
|
|
return $self->ip_is_valid($name) if ip_is_ipv4($name) || ip_is_ipv6($name);
|
|
|
|
|
|
|
|
|
|
my $res = new Net::DNS::Resolver(dnsrch => 0);
|
|
|
|
|
my @mx_answers;
|
|
|
|
|
my $query = $res->search($name, 'A');
|
2006-08-28 01:17:33 +02:00
|
|
|
if ($query) {
|
2012-05-23 22:12:21 +02:00
|
|
|
foreach my $rrA ($query->answer) {
|
|
|
|
|
push(@mx_answers, $rrA);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if ($has_ipv6) {
|
|
|
|
|
my $query = $res->search($name, 'AAAA');
|
|
|
|
|
if ($query) {
|
|
|
|
|
foreach my $rrAAAA ($query->answer) {
|
|
|
|
|
push(@mx_answers, $rrAAAA);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if (! @mx_answers) {
|
|
|
|
|
$self->log(LOGWARN, "query for $fromhost failed: ", $res->errorstring)
|
|
|
|
|
unless $res->errorstring eq "NXDOMAIN";
|
|
|
|
|
return;
|
2006-08-28 01:17:33 +02:00
|
|
|
}
|
2012-05-23 22:12:21 +02:00
|
|
|
|
2006-08-28 01:17:33 +02:00
|
|
|
foreach my $rr (@mx_answers) {
|
2012-05-23 22:12:21 +02:00
|
|
|
next if ( $rr->type ne 'A' && $rr->type ne 'AAAA' );
|
|
|
|
|
return $self->ip_is_valid($rr->address);
|
2002-07-08 04:30:11 +02:00
|
|
|
}
|
2012-05-23 22:12:21 +02:00
|
|
|
|
|
|
|
|
return;
|
2002-07-08 04:30:11 +02:00
|
|
|
}
|
2012-05-23 22:12:21 +02:00
|
|
|
|
|
|
|
|
sub populate_invalid_networks {
|
|
|
|
|
my $self = shift;
|
|
|
|
|
|
|
|
|
|
foreach my $i ($self->qp->config("invalid_resolvable_fromhost")) {
|
|
|
|
|
$i =~ s/^\s*//; # trim leading spaces
|
|
|
|
|
$i =~ s/\s*$//; # trim trailing spaces
|
|
|
|
|
if ($i =~ m#^((\d{1,3}\.){3}\d{1,3})/(\d\d?)#) {
|
|
|
|
|
$invalid{$1} = $3;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
sub is_immune {
|
|
|
|
|
my ($self, $sender, $transaction) = @_;
|
|
|
|
|
|
|
|
|
|
if ( $self->qp->connection->notes('whitelisthost') ) {
|
|
|
|
|
$transaction->notes('resolvable_fromhost', 'whitelist');
|
|
|
|
|
$self->log(LOGINFO, "pass: whitelisted");
|
|
|
|
|
return 1;
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
if ( $sender eq '<>' ) {
|
|
|
|
|
$transaction->notes('resolvable_fromhost', 'null');
|
|
|
|
|
$self->log(LOGINFO, "pass: null sender");
|
|
|
|
|
return 1;
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
if ( ! $self->{_args}{reject} ) {
|
|
|
|
|
$transaction->notes('resolvable_fromhost', 'config');
|
|
|
|
|
$self->log(LOGINFO, "skip: reject not enabled in config.");
|
|
|
|
|
return;
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
return;
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
sub get_reject_type {
|
|
|
|
|
my $self = shift;
|
|
|
|
|
my $default = shift || DENYSOFT;
|
|
|
|
|
my $deny = $self->{_args}{reject_type} or return $default;
|
|
|
|
|
|
|
|
|
|
return $deny =~ /^(temp|soft)$/i ? DENYSOFT
|
|
|
|
|
: $deny =~ /^(perm|hard)$/i ? DENY
|
|
|
|
|
: $deny eq 'disconnect' ? DENY_DISCONNECT
|
|
|
|
|
: $default;
|
|
|
|
|
};
|
