On Tue, 13 Dec 2022 23:54:17 -0500 Scott Kitterman <deb...@kitterman.com>
wrote:
> On Tue, 13 Dec 2022 13:36:29 +0100 Pascal Volk <v...@demos-deutschland.de>
> wrote:
> > Package: pyspf-milter
> > Version: 3.0.1-1
> > Severity: important
> > X-Debbugs-Cc: v...@demos-deutschland.de
> >
> >
> >
> > Hi Scott,
> >
> > my `pyspf-milter.conf` has the following three lines:
> >
> > skip_addresses = 127.0.0.0/8,::ffff:127.0.0.0/104,::1
> > InternalHosts = 127.0.0.1,::1
> > Hide_Receiver = No
> >
> > It looks looks like as pyspf-milter would ignore at least the
> > parameters `InternalHosts' and `Hide_Receiver'. Thus the log
> > contains lines like:
> >
> > pyspf-milter[43325]: connect from localhost at ('::1', 39792, 0,
0)
> EXTERNAL
> > pyspf-milter[43325]: prepend Authentication-Results: $HOST; none
> (SPF check N/A for local connections - client-ip=::1; helo=localhost;
> envelope-from=root@$HOST.example.com; receiver=<UNKNOWN>
> >
> > Please let me know if you need further details.
>
> Thanks. That should be enough for me to investigate.
>
> So far it looks like a combination of things.There are two problems. One is architectural and the other is a bug. I have confirmed that the configuration file is being read correctly. The architectural issue is that the milter does the SPF check right after rcpt to in the SMTP session, so the receiver is unknown. As a result, the receiver will be unknown regardless of the Hide_Receiver setting. This should be addressed in the documentation so it's clear. InternalHosts is not working correctly, so that's an actual bug. Scott K
signature.asc
Description: This is a digitally signed message part.
