sid-milter has the ability to reject SMTP connections based on whether they pass SPF tests on the originating address's domain. However, if the connection is authenticated using SMTP AUTH, it still rejects the connection, even though this shouldn't be its behavior. This problem and its solution is also detailed here: http://www.webservertalk.com/archive58-2006-2-1408060.html Reproducible: Always Steps to Reproduce: 1. install sid-milter 2. add "-r 2" to SID_FILTER_OPTS in /etc/conf.d/sid-filter 3. try to send mail from outside SPF definition with an smtp-authed connection. Actual Results: Connection is denied. Expected Results: Connection should be allowed with an authed connection.
Created attachment 117163 [details, diff] sid-milter-0.2.13-smtpauth.patch This patch fixes the problem, to be used after adding an epatch line the ebuild as follows: --- sid-milter-0.2.13.ebuild.orig 2006-07-17 19:06:48.000000000 -0600 +++ sid-milter-0.2.13.ebuild 2007-04-10 00:40:54.000000000 -0600 @@ -35,6 +35,7 @@ # Postfix queue ID patch. See MILTER_README.html#workarounds epatch "${FILESDIR}/"${P}-queueID.patch + epatch "${FILESDIR}/"${P}-smtpauth.patch confCCOPTS="${CFLAGS}" conf_libmilter_INCDIRS="-I/usr/include/libmilter"
There is a more extensive patch already provided upstream, but whoever is maintaining sid-milter is taking his sweet time in getting a new release out: http://sourceforge.net/tracker/index.php?func=detail&aid=1608743&group_id=112121&atid=661330 In my opinion, this should be patched for current gentoo sid-milter users for now, until upstream fixes things and releases another version.
fixed in sid-milter-0.2.14.