Per domain Enable/disable "verify sender", "callouts" and RBL lookups

Exempt a domain from RBL check on incoming mail.

I would also like to exempt one or more client domains from RBL checks. Were you able successfully implement that? If so, how?

 

Still unable to exempt a domain from rbl checks.

Am getting incredibly frustrated that nobody at cpanel seems to know how to exempt a domain from spam filtering or rbl checks. I tried the exim users list and got a recommendation for exim 4.67, but WHM 11x is running 4.66.

 

Testing code right now

I am testing some coding right now and will post the how-to if it is successful.

 

Success - exempt domain from incoming RBL checks

Tested with exim 4.66 on
WHM 11.2.0 cPanel 11.11.0-R16789

In the Exim Configuration Editor;

In the first box, add:
domainlist skip_rbl_domains = domain.com : domain.com


*Where domain.com = domain names of those that wish to bypass rbl checks on incoming mail

In the second ACL box of Exim Configuration Editor, make these changes:

Find this line
[% ACL_RBL_BLOCK %]

and comment it out to disable it. It should now look like this:
#[% ACL_RBL_BLOCK %]

and then also add these lines;


deny message= Rejected because $sender_host_address is in a blacklist at $dnslist_domain\n$dnslist_text
dnslists = zen.spamhaus.org:bl.spamcop.net
domains = ! +skip_rbl_domains

So now the full final edit in 2nd ACL BOX looks like this

#[% ACL_RBL_BLOCK %]
deny message= Rejected because $sender_host_address is in a blacklist at $dnslist_domain\n$dnslist_text
dnslists = zen.spamhaus.org:bl.spamcop.net
domains = ! +skip_rbl_domains


Since implementing this for 3 domains, none of them have had any spamhaus or spamcop mails rejected. Their choosing! Not mine.

Special thanks to Darton on the exim-users mailing list for pointing me in the right direction.

 

Definitely works for me!

Correct. It disabled the new rbl checks but then adds the code back manually.

Definitely is working for me by NOT doing RBL tests on those clients that don't want it, yet still doing RBL checking for all others as evidenced by reviewing exim_rejectlog

2007-09-07 15:18:12 H=(C82CA49FFECA433) [221.131.61.22] F=<rbefallen@purinmail.c om> rejected RCPT <xyz@domain.com>: Rejected because 221.131.61.22 is in a blacklist at bl.spamcop.net

 

So, an issue that is pervasive in the cpanel exim config is that the settings ignore the possibility an email could be send to multiple domains. I believe that the "domains =" condition is nonsensical in emails with multiple recipient domains.

A way I have fixed that in the past is by only accepting mail for one domain at a time when a remote mail server connects.

Here is how I have done that:

Code:

#!!# ACL that is used after the RCPT command
check_recipient:
  # Exim 3 had no checking on -bs messages, so for compatibility
  # we accept if the source is local SMTP (i.e. not over TCP/IP).
  # We do this by testing for an empty sending host field.
  defer message = Try this address again shortly
        condition = ${if and {{and \
                                {\
                                        {def:acl_m3} \
                                        {!eq {${acl_m3}} \
                                            {} \
                                        } \
                                } \
                              } \
                              {!eq {${domain}} \
                                   {${acl_m3}} \
                              }} \
                       {1}{0}}

What it does is check to see if the value of acl_m3 is set, if not it sets it to the recipient domain. If it is set, it compares the value of acl_m3 with the currently processed recipient domain. If there is a difference, the message gets deferred, and the sending mail server will retry just that recipient, thus ensuring that each recipient domain's spam settings are honored.

So, in concert with what innsites posted to take care of RBLs, you can do this:

Code:

require 
  domains = +skip_sender_verify_domains
  verify = sender

For my next trick, I want to enable per-domain settings of thresholds to flag spam and for rejecting spam.

 

Should that last line be domains = ! +skip_sender_verify_domains ?

 

Hi all

How can we do the same thing in exim-4.69-23.1_cpanel_maildir ??

Basically I want to skip some domains in my server from RBL check.

Thanks
Majoosh