Help with setting up the graylist or deactivating it

arobase13 · February 5, 2023, 7:59am

Good morning,
I’ve had my mail server for almost 8 years now.
I discovered it almost 6 years ago miab.
I immediately appreciated, but I often chanherg but to come back.
Because my only concern was the impossible reception of certain emails.
I understand that this is due to the graylist, is there a way to configure it differently or even deactivate it?

I have an intermediate antispam (Mailinblack) which is positioned to receive emails before they arrive on my server and obliges new senders to identify themselves by responding to an email from my antispam via a captcha.

Can you guide me to configure the graylist or deactivate it?

Thanks in advance

andrew · February 5, 2023, 9:21am

If you know which servers you want to accept email from, add them to the whitelist file /etc/postgrey/whitelist_clients.local then then restart the postgrey service by sudo systemctl reload postgrey

The whitelist_clients.local file will persist between updates (like all the .local config files). whitelist_clients.local is a text file (edit it using nano or similar) with one domain or IP address range per line. So it you want to skip greylisting for emails from example.com and from all computers 1.2.3.0 - 1.2.3.255 you could put the following into whitelist_clients.local

example.com
1.2.3.0/24

latinhypercube · February 5, 2023, 10:46am

Just as andrew says above. I used to use MXGuardDog as a front end filter. My
/etc/postgrey/whitelist_clients.local was set up like this:

## MX GUARD DOG
servers.ik2.com
122.103.250.12
85.195.83.79
64.38.239.80/29
## MX GUARD DOG /END ##

arobase13 · February 5, 2023, 12:46pm

Good morning,
thank you already for your answers.
So if I understood correctly, you just have to fill in the whitelisted domains?
So in my case, the mailinblack server and for example the domain dotolib.fr

So my file would look like this

antispam.mailinblack.fr
doctolib.fr

Is that right?

latinhypercube · February 5, 2023, 3:43pm

Mailinblack provides the filtering I assume.
You need only the name of the server which they use to forward filtered email.
Unfortunately that is not listed on their website. My French is not good enough to search for the relevant details either.

Is the doctolib domain the one for which you use/would use MIAB? Or is it another filtering provider?

arobase13 · February 5, 2023, 4:01pm

Sorry, I explained poorly.
Doctolib is a site for making an appointment with a doctor.
On this site there is a double factor authentication with the sending of a code by email.
It’s from one of the domains I never get emails from.
My domain is pkmia.fr on my domain there are two MX records, the first to the antispam.mailinblack.fr server and the second MX record points to mail.pkmia.fr

In the mailinblack interface there is a redirect to mail.pkmia.fr

Mailinblack receives the emails first, then requests authentication from the person who sent the email, once the authentication is done, the email is transferred to my mail server, and its address added to a whitelist.

Then there is a web interface, to authorize or block a sender or a domain.

the mailinblack server I am spending on is antispam.mailinblack.fr

I will try to add the address in /etc/postgrey/whitelist_clients.local

latinhypercube · February 5, 2023, 4:06pm

OK thank you I think I understand.

I believe you need only the forwarding server name from mailinblack to be listed in whitelist_clients.local

The email domain you are protecting should not need to be listed.

arobase13 · February 11, 2023, 2:33pm

Sorry, couldn’t test yet, can’t install miab, PPA errors.
FAILED: add-apt-repository -y ppa:duplicity-team/duplicity-release-git

system · March 23, 2023, 2:34pm

This topic was automatically closed 40 days after the last reply. New replies are no longer allowed.