Zimbra

kevindods · #1 (**permalink**) 04-01-2009, 05:31 AM

I know this has been hashed about for ages and there are wiki entries on how to do whitelisting on a per user basis but they are by and large very heavy on backend admin.

We use a third party perimeter spam/malware system that intercepts all email in/out from our networks and it uses a system of whitelisting that is simple and automatic. It simply creates a per user whitelist for every email address sent to by a specific user address.

This can then be edited by admin if there are false entries or mistakes by users but it is far lighter than admin work to build one. Many users have heard of address books being used so as a whitelist and so start there, but I prefer the whitelisting by sending as it is using the process itself to create the list directly.

I also quite like the idea of a user being able to email an address to a per user blacklist but that does have some potential problems.

Any comments on using this to update amavis configs? Should be very simple to implement and transparent to users.

mmorse · #2 (**permalink**) 04-16-2009, 09:17 AM

Bug 16104 - whitelisting all contacts automatically
That title should really be renamed "automatically whitelisting addresses you've recently sent to".

Using Stop spam with the Anti-Spam-SMTP-Proxy (ASSP),

But say you wanted to whitelist anything in your address books (if you want tweak it to use a specific /Contacts folder or the auto /Emailed Contacts) here's crude periodic script method:

Code:

#!/bin/bash
ACC=`/opt/zimbra/bin/zmprov gaa`
for i in $ACC
do
/opt/zimbra/bin/zmmailbox -z -m $i gact | grep -u email: | sort | uniq | sed -e 's/email:/whitelist_from/g' >> /tmp/autowhitelistall.tmp
done
sed -i '/yourdomain1.com/d' /tmp/autowhitelistall.tmp
sed -i '/yourdomain2.com/d' /tmp/autowhitelistall.tmp
... Repeat for each of your domains, since already trusted - avoid bloat ...
cat /tmp/autowhitelistall.tmp | sort | uniq > /opt/zimbra/conf/spamassassin/autowhitelist.cf
rm -f /tmp/autowhitelistall.tmp
/opt/zimbra/bin/zmamavisdctl restart

The lines in autowhitelistall.tmp & autowhitelist.cf should appear like:
whitelist_from user@domain.com

Or instead feed that into zmprov ma user@domain.com +amavisWhiteListSender name@external.com so that users can manage it.

(Would have to set a higher zimbraMailWhitelistMaxNumEntries on the cos/account since default is 100.)

And as you already know from the other thread, exposed in GnR mail preferences tab:

kevindods · #3 (**permalink**) 04-20-2009, 06:13 AM

Just looking back over these options, can you wild card the white/blacklisting exposed in GnR (6 release) or in the per user eg:

zmprov ma user@domain.com +amavisBlacklistSender *@domain.name

Just thought I'd ask before I try ;-)

Oh and is it just a - instead of + to remove from a list?