Ä¿ÇÇÇâÀÌ ³ª´Â *NIX
Ä¿ÇǴнº
½Ã½ºÅÛ/³×Æ®¿÷/º¸¾ÈÀ» ´Ù·ç´Â °÷
*
HanIRCÀÇ #coffeenix ¹æ
[
Àåºñ ¹× ȸ¼± ÈÄ¿ø
]
> Forum <
IT ÀÏÁ¤
N
e
w
!
ÀÚµ¿È ÇÁ·ÎÁ§Æ®
HOME
>
³×Æ®¿öÅ©(network)
>
¸ÞÀÏ ¼¹ö(mail)
>
¸ÞÀÏ ÇÊÅ͸µ(½ºÆÔ¸ÞÀÏ) / procmail
µµ¿ò¸»
°Ë»ö :
»çÀÌÆ®
WHOIS
À¥¼¹ö Á¾·ù
½ºÆÔÇÊÅ͸µÀ» À§ÇÑ SPF ¼³Á¤°ú ¿î¿µ
ÀÛ¼ºÀÏ : 2006/07/27 19:15
±Û¾´ÀÌ : ÁÁÀºÁøÈ£ (
http://coffeenix.net/
)
Á¶È¸¼ö : 23456
[
ÀÌÀüȸé
/
¼öÁ¤
] ºñ¹Ð¹øÈ£ :
Á¦ ¸ñ : ½ºÆÔÇÊÅ͸µÀ» À§ÇÑ SPF ¼³Á¤°ú ¿î¿µ
ÀÛ¼ºÀÚ : ÁÁÀºÁøÈ£(truefeel,
http://coffeenix.net/
)
ÀÛ¼ºÀÏ : 2006.4.27(¸ñ)
Á¤¸®ÀÏ : 2006.5.30(È)
¼öÁ¤ÀÏ : 2006.12.9(Åä) whitelist IP ¸ñ·Ï Ãß°¡
½ºÆÔ¹æÁö±â¼úÀÎ SPF(Sender Policy Framework)°¡ ¹«¾ùÀÎÁö´Â '¸ÞÀÏÁÖ¼Ò º¯Á¶´Â no, SPF±â¼ú¿¡ ´ëÇØ'
(2005.8.3, ±Û ÁÁÀºÁøÈ£)
http://coffeenix.net/board_view.php?bd_code=1123
À» Àо±â ¹Ù¶õ´Ù.
SPF¸¦ ÀÌ¿ëÇϱâ À§Çؼ´Â 1) ¸ÞÀÏÁÖ¼Ò¸¦ ¼Ó¿´´ÂÁö ÆÇ´ÜÇÒ ¼ö ÀÖ´Â Á¤º¸¸¦ Á¦°øÇÏ´Â ¼Û½ÅÃø°ú 2) ÆÇ´ÜÁ¤º¸¿¡
µû¶ó ½ºÆÔÀ» ÇÊÅ͸µÇÏ´Â ¼ö½ÅÃø µî 2°¡Áö ºÎºÐÀ¸·Î ³ª´² »ý°¢Çغ¼ ¼ö ÀÖ´Ù.
ù°, ¼Û½ÅÃø¿¡¼´Â ÁöÁ¤ÇÑ IP¿¡¼ ¸ÞÀÏÀ» º¸³»´Â °æ¿ì´Â ¸ÞÀÏÁÖ¼Ò¸¦ ¼ÓÀÌÁö ¾Ê°í Á¤»óÀûÀ¸·Î ¹ß¼ÛÇÑ °ÍÀ¸·Î
ÆÇ´ÜÇϵµ·Ï DNSÀÇ SPF ·¹ÄÚµå(SPF record) ¼³Á¤À» ÅëÇØ Á¤º¸¸¦ Á¦°øÇÑ´Ù.
µÑ°, ¼ö½ÅÃø¿¡¼´Â From ¸ÞÀÏÁÖ¼Ò¿¡¼ µµ¸ÞÀÎ, IP¸¦ ¾Ë¾Æ³½ ÈÄ ¼Û½ÅÃøÀÌ Á¦°øÇÑ SPF ·¹ÄÚµå Á¤º¸¿Í ´ëÁ¶¸¦
Çؼ ÀÏÄ¡Çϸé Á¤»ó¸ÞÀÏ, ±×·¸Áö ¾ÊÀ¸¸é ¸ÞÀÏÁÖ¼Ò¸¦ À§º¯Á¶ÇÑ °ÍÀ¸·Î ÆÇ´ÜÇÏ°í ÇÊÅ͸µÀ» ÇÑ´Ù.
hanmail.net, naver.com, empas.com(empal.com), paran.com, nate.com, dreamwiz.net(dreamwiz.com) µîÀÇ
Æ÷ÅлçÀÌÆ®¿Í gmail.com, hotmail.com(msn.com) µîÀÇ ¸ÞÀϼºñ½º µî¿¡¼ ÀÌ¹Ì SPF ·¹ÄÚµå ¼³Á¤ÀÌ µÇ¾î ÀÖ´Ù.
ÀÌ°ÍÀº °¡Â¥ ID@hanmail.net ¸ÞÀÏÁÖ¼Ò¸¦ °®°í ½ÇÁ¦ hanmail¼¹ö¸¦ ÅëÇØ º¸³»ÁöÁö ¾ÊÀº ¸ÞÀÏ¿¡ ´ëÇؼ´Â ¼ö½Å
ÃøÀÇ SPF ÇÊÅ͸µ ¼³Á¤À» ÅëÇØ ½±°Ô °É·¯³¾ ¼ö ÀÖ´Ù´Â °ÍÀ» ÀǹÌÇÑ´Ù. »ó´ç¼öÀÇ ½ºÆÔ ¸ÞÀÏÀÌ ´ëÇü Æ÷Åп¡¼
º¸³½ °Íó·³ ÁÖ¼Ò¸¦ ¼ÓÀ̱⠶§¹®¿¡ Å« È¿°ú°¡ ÀÖÀ» °ÍÀÌ´Ù. µÚ¿¡¼ ÀÚ¼¼È÷ »ìÆ캸°ÚÁö¸¸ hanmail.netÀÇ °æ¿ì
´Â 211.43.197.0/24¿¡¼ ¸ÞÀÏÀ» ¹ß¼ÛÇϸé Á¤»óÀûÀÎ °ÍÀ¸·Î ÆÇ´ÜÇ϶ó°í ¼³Á¤µÇ¾î ÀÖ´Ù.
À̱ÛÀº ¼ö½ÅÃøÀÇ sendmail¿¡¼ spfmilter¸¦ ÀÌ¿ëÇؼ ½ºÆÔÇÊÅ͸µÇÏ´Â ¹æ¹ýÀ» ¼³¸íÇÑ´Ù.
1. libspf2 ¼³Ä¡
spfmilter´Â SPF libraryÀÎ libspf2¸¦ »ç¿ëÇÑ´Ù. libspf2 ¶óÀ̺귯¸®´Â sendmailÀ̳ª postfix µîÀÇ ¸ÞÀÏ
¼¹ö¿¡¼ SPF ·¹Äڵ带 °Ë»çÇÏ°í ÀÎÁõµÈ IP, µµ¸ÞÀÎÀ» ÅëÇؼ ¸ÞÀÏÀÌ º¸³»Áø °ÍÀÎÁö È®ÀÎÇÏ´Â ¶óÀ̺귯¸®
ÀÌ´Ù.
http://www.libspf2.org/
¿¡ ´Ù¿î¹ÞÀ» ¼ö ÀÖÀ¸¸ç RPM ÆÐÅ°Áöµµ Á¦°øÀ» ÇÑ´Ù.
# cd libspf2-1.x.y
# ./configure
# make
# make install
[ RPM ÆÐÅ°Áö ]
libspf2-1.0.4-10.i386.rpm
libspf2-devel-1.0.4-10.i386.rpm
2. spfmilter ¼³Ä¡
http://www.acme.com/software/spfmilter/
¿¡¼ C¾ð¾î·ÎµÈ spfmilter ¼Ò½º¸¦ ³»·Á¹Þ¾Æ ¼³Ä¡ÇÑ´Ù.
# cd spfmilter-x.y
# ./configure
# make
# make install
spfmilter¸¦ ºÎÆýà ÀÚµ¿½ÇÇàÇϱâ À§ÇÑ Gentoo, Redhat ¹èÆ÷ÆÇ°ú FreeBSD¿ë rc ½ºÅ©¸³Æ®¸¦ Á¦°øÇÑ´Ù.
·¹µåÇÞ ¹èÆ÷ÆÇÀÇ °æ¿ì¸¦ ¼³¸íÇϸé
- ¼Ò½º³» rc_scripts/redhat_sysconfig ¸¦ /etc/sysconfig/spfmilter ·Î º¹»çÇÑ´Ù.
- rc_scripts/redhat Àº /etc/rc.d/init.d/spfmilter ·Î º¹»çÇÑ´Ù.
init.d/spfmilter ÆÄÀÏ¿¡¼ spfmilter °æ·Î¸¦ ¼öÁ¤ÇÑ´Ù.
(±âº» Á¦°ø ½ºÅ©¸³Æ®¿¡´Â /usr/sbin/spfmilter·Î µÇ¾î ÀÖÀ¸³ª configure ½Ã ¿É¼Ç¾øÀÌ ½ÇÇàÇß´Ù¸é
/usr/local/sbin/ ¾Æ·¡¿¡ installµÉ °ÍÀÌ´Ù.)
ÀÌÁ¦ spfmilter ½ÇÇàÇÏ´Â spfmilt ID¸¦ »ý¼ºÇÏ°í socket ÆÄÀÏÀÌ À§Ä¡ÇÒ µð·ºÅ丮¸¦ »ý¼ºÇÑ´Ù.
# useradd -M spfmilt -s /sbin/nologin
# mkdir /var/run/spfmilter
# chown spfmilt:spfmilt /var/run/spfmilter
3. sendmail.cf ¼³Á¤°ú spfmilter ¿î¿µ
sendmail MilterAPI¸¦ ÅëÇؼ spfmilterÀ» »ç¿ëÇϵµ·Ï ¼³Á¤Çغ¸ÀÚ.
/etc/mail/sendmail.mc¿¡
INPUT_MAIL_FILTER(`spfmilter',`S=unix:/var/run/spfmilter.sock, T=S:8m;R:8m')
À» ÀúÀåÇÑ ÈÄ¿¡ ´ÙÀ½¸í·ÉÀ» ½ÇÇàÇÑ´Ù.
#
m4 sendmail.mc > sendmail.cf
¶Ç´Â sendmail.cf ¿¡ Á÷Á¢ ´ÙÀ½ ÁÙÀ» ³Ö¾îÁ൵ µÈ´Ù. ±âÁ¸¿¡ ÀÌ¹Ì ClamAV³ª SpamAssassin °ú °°Àº ´Ù¸¥
Filter¸¦ »ç¿ëÁßÀ̶ó¸é O InputMailFilters=clamav, spfmilter ó·³ ±âÁ¸ ¼³Á¤¿¡ ÄÞ¸¶(,)·Î ±¸ºÐÇؼ Ãß°¡
ÇÏ¸é µÈ´Ù.
O InputMailFilters=spfmilter
O Milter.macros.connect=j, _, {daemon_name}, {if_name}, {if_addr}
O Milter.macros.helo={tls_version}, {cipher}, {cipher_bits}, {cert_subject}, {cert_issuer}
O Milter.macros.envfrom=i, {auth_type}, {auth_authen}, {auth_ssf}, {auth_author}, {mail_mailer}, {mail_host}, {mail_addr}
O Milter.macros.envrcpt={rcpt_mailer}, {rcpt_host}, {rcpt_addr}
Xspfmilter, S=unix:/var/run/spfmilter/spfmilter.sock, T=S:8m;R:8m
SPF ·¹ÄÚµå °Ë»ç¾øÀÌ Çã¿ëÇÒ IPµéÀº /etc/mail/spfmilter-whitelist ¿¡ Àû¾îÁÖ¸é µÈ´Ù.
¼¹öÀÇ IP¸ñ·ÏÀ̳ª »ç¹«½ÇÀÇ IP ¸ñ·Ï µîÀ» Àû¾îÁÖ¸é µÉ °ÍÀÌ´Ù.
127.0.0.1
192.168.123.0/24
211.123.123.0/24
¼ö½ÅµÈ ¸ÞÀÏ Áß Á¤»ó ¸ÞÀÏÀε¥, ½ºÆÔÀ¸·Î 󸮵Ǵ °æ¿ì°¡ ÀÖ´Ù. ´ëÇ¥ÀûÀÎ ¿¹°¡ jobkorea´Ù. ±¸Á÷ÀÚ°¡
ÀÔ»ç Èñ¸Á ¾÷ü¸¦ ¼±ÅÃÇÏ°í ±¸Á÷½ÅûÇÒ ¶§ ±¸Àξ÷ü¿¡ ¸ÞÀÏÀÌ ¹ß¼ÛµÇ´Âµ¥, From ÁÖ¼Ò°¡ jobkorea ¸ÞÀÏÁÖ¼Ò
°¡ ¾Æ´Ñ ±¸Á÷ÀÚÀÇ ¸ÞÀÏÁÖ¼Ò¸¦ »ç¿ëÇÑ´Ù. ±¸Á÷ÀÚ´Â ÁÖ·Î @hanmail.net, @naver.com, @gmail.com µîÀÇ ¸ÞÀÏ
ÁÖ¼Ò¸¦ »ç¿ëÇÏ°í, jobkorea ¸ÞÀÏ ¼¹ö IP¿¡¼ Àú ¸ÞÀÏÁÖ¼Ò¸¦ FromÀ¸·Î ÇÏ¿© ¹ß¼ÛÇÏ´Ï ¸ÞÀÏÁÖ¼Ò¸¦ À§Á¶ÇÑ
°ÍÀ¸·Î ÆÇ´ÜÇÏ¿© ÇÊÅ͸µÇÏ°Ô µÇ´Â °ÍÀÌ´Ù. ÀÌ¿Ü incruit.com, kr.ibm.com µîµµ ±×·± °æ¿ì°¡ ÀÖ¾ú´Ù.
[ Á¤»ó¸ÞÀÏÀÌ ÇÊÅ͸µµÇ´Â °úÁ¤ ¿¹ ]
1) jobkorea¸ÞÀϼ¹ö (FromÁÖ¼Ò ...@hanmail.net) -> 2) ±¸Àξ÷ü ¸ÞÀϼ¹ö·Î ¹ß¼Û ->
3) ¸ÞÀϼ¹ö¿¡ SPF·Î ÇÊÅ͸µ Áß -> 4) @hanmail.net ÁÖ¼Ò¸¦ ´Ù¸¥ ¼¹ö¿¡¼ º¸³Â³×? ->
5) ¸ÞÀÏÁÖ¼Ò À§Á¶·Î ÆÇ´ÜÇÏ¿© ÇÊÅ͸µ
µû¶ó¼ jobkorea ¼¹ö IP¸¦ Æ÷ÇÔÇÑ ´ÙÀ½ ¸ñ·ÏÀ» spfmilter-whitelist¿¡ Ãß°¡ÇØÁÖ¸é Á¤»ó¸ÞÀÏÀÌ ÇÊÅ͸µµÇ´Â
°æ¿ì¸¦ ¸·À» ¼ö ÀÖ´Ù. (°æÇè¿¡ ÀÇÇØ Çϳª¾¿ Ãß°¡ÇÑ °ÍÀÌ´Ù. À̿ܵµ ¹ß»ýÇÏ°Ô µÇ¸é Ãß°¡ÇØÁÖ¸é µÈ´Ù.)
60.196.0.63
61.100.189.146
61.106.4.130
61.250.87.0/25
66.35.192.195
203.233.124.109
203.236.1.106
203.236.20.93
203.236.33.195
203.238.135.241
210.99.210.56
211.174.185.16
211.196.150.53
211.218.146.2
211.234.104.184
211.234.104.185
211.239.121.203
218.145.47.199
220.85.13.6
222.106.59.246
ÀÌÁ¦ ¼³Á¤Àº ´Ù µÇ¾úÀ¸´Ï spfmilter¸¦ ½ÇÇàÇÏÀÚ. spfmilter°°ÀÌ MilterAPI¸¦ ÅëÇØ ¿î¿µµÇ´Â ÇÁ·Î±×·¥Àº
sendmailº¸´Ù ¸ÕÀú ½ÇÇàÀÌ µÇ¾î¾ß ÇÑ´Ù. ¿©±â¿¡´Â ¾ð±ÞÇÏÁö ¾ÊÀº clamav, antivir Milter °°Àº ¾ÈƼ¹ÙÀÌ·¯½º
Åøµµ ¸¶Âù°¡Áö´Ù. ÀÌ¹Ì sendmailÀÌ µ¿ÀÛÁßÀ̸é Àç½ÇÇàÇØÁÖ¸é µÈ´Ù. °Ë»ç °á°ú¿¡ µû¶ó Received-SPF: ¸ÞÀÏ
Çì´õ°¡ ºÙ°Ô µÈ´Ù. rc ½ºÅ©¸³Æ®·Î spfmilter ½ÇÇàÇÏÁö ¾Ê°í ¼öµ¿À¸·Î ½ÇÇàÇÏ´Â ¿¹´Â ´ÙÀ½°ú °°´Ù.
#
./spfmilter --user spfmilt --whitelist /etc/mail/spfmilter-whitelist unix:/var/run/spfmilter/spfmilter.sock
¸¸¾à Á¤»ó¸ÞÀÏÀε¥, spfmilter°¡ softfail(¶Ç´Â fail. ÀÌ »óÅ¿¡ ´ëÇؼ´Â µÚ¿¡¼ ¼³¸íÇÑ´Ù.)·Î ÆÇ´ÜÇß´Ù¸é
/etc/mail/spfmilter_whitelist¿¡ ¹ß¼ÛÁö IP¸¦ Ãß°¡ÇØÁÖ°í spfmilter Àç½ÇÇàÇØÁÖ¸é µÈ´Ù. ¹°·Ð sendmailµµ
Àç½ÇÇàÇØ¾ß ÇÑ´Ù.
4. ÁÖ¿ä »çÀÌÆ®ÀÇ SPF ·¹ÄÚµåÀÇ ¼³Á¤ È®ÀÎ
SPF ·¹ÄÚµå ¼³Á¤ÀÌ µÇ¾îÀÖ´ÂÁö È®ÀÎÇÏ´Â ¹æ¹ýÀº DNS lookupÅøÀÎ dig ¸í·ÉÀ» ÀÌ¿ëÇؼ È®ÀÎÇÒ ¼ö ÀÖ´Ù.
hanmail.net ÀÇ SPF ·¹ÄÚµå ¼³Á¤À» È®ÀÎÇÑ ¿¹ÀÌ´Ù. ³×ÀÓ¼¹öÀÇ TXT·¹Äڵ忡 ¼³Á¤µÇ¾î ÀÖ´Â °ÍÀÌ È®ÀεƴÙ.
$
dig hanmail.net txt
... »ý·« ...
;; ANSWER SECTION:
hanmail.net. 18315 IN TXT
"v=spf1 ip4:211.43.197.0/24 ptr ~all"
;; AUTHORITY SECTION:
hanmail.net. 18315 IN NS ns4.daum.net.
hanmail.net. 18315 IN NS ns5.daum.net.
hanmail.net. 18315 IN NS ns.daum.net.
hanmail.net. 18315 IN NS ns2.daum.net.
hanmail.net. 18315 IN NS ns3.daum.net.
... »ý·« ...
¾Æ·¡ ¸ñ·ÏÀº ÇÊÅ͸µµÈ ¸ÞÀϷα׸¦ Åä´ë·Î ÇØ´çÁÖ¼Ò¸¦ dig ¸í·ÉÀ¸·Î È®ÀÎÇؼ ÀÛ¼ºÇÑ °ÍÀÌ´Ù.
°¢ ¼³Á¤ÀÇ Àǹ̴ 'SPF ±â¼ú¿¡ ´ëÇØ (±Û ÁÁÀºÁøÈ£)'
http://coffeenix.net/board_view.php?bd_code=1123
¸¦ Àо±â ¹Ù¶õ´Ù.
1)
hanmail.net(daum.net)
v=spf1 ip4:211.43.197.0/24 ptr ~all
2)
naver.com
v=spf1 ip4:220.95.234.208 ip4:61.74.70.0/23 ip4:222.122.16.0/24
ip4:220.73.156.0/24 ip4:211.218.150.0/24 ip4:211.218.151.0/24
ip4:211.218.152.0/24 ip4:218.145.30.0/24 ~all
3)
empas.com(empal.com)
v=spf1 ip4:220.95.223.0/24 ip4:220.90.209.0/24 ip4:220.90.208.0/24 ptr -all
4)
paran.com
v=spf1 ip4:211.41.82.0/24 a mx ptr ~all
5)
nate.com
v=spf1 ip4:203.226.253.0/24 ip4:203.226.255.0/24 ~all
6)
dreamwiz.net(dreamwiz.com)
v=spf1 ip4:211.39.128.0/24 ip4:211.39.129.0/24 ip4:222.122.42.0/25 ~all
7)
gmail.com
v=spf1 redirect=_spf.google.com
8)
hotmail.com(msn.com)
v=spf1 include:spf-a.hotmail.com include:spf-b.hotmail.com
include:spf-c.hotmail.com include:spf-d.hotmail.com ~all
9)
hanmir.com
v=spf1 ip4:211.41.82.0/24 a mx ptr ~all
10)
chol.com
v=spf1 ip4:203.252.1.0/24 ip4:203.252.3.0/24 ip4:164.124.191.0/24 ip4:210.120.128.23 ~all
11)
korea.com
v=spf1 mx ip4:211.49.224.0/24 ip4:211.109.1.0/24 ip4:211.49.227.32 ip4:211.49.227.33 ~all
12)
freechal.com
v=spf1 a:mail101.freechal.com a:mail102.freechal.com a:mail103.freechal.com
a:mail104.freechal.com a:mail105.freechal.com a:mail106.freechal.com mx:mx01.freechal.com ~all
13)
sayclub.com(sayclub.co.kr)
v=spf1 ip4:211.234.215.240/32 ip4:211.233.85.225/32 ~all
14)
lycos.co.kr
v=spf1 ip4:203.226.253.0/24 ip4:203.226.255.0/24 ~all
15)
nownuri.net
v=spf1 a:mail.nownuri.net a:nowmail01.nownuri.net a:lion4.nownuri.net ~all
16)
nhncorp.com
v=spf1 ip4:220.95.234.208 ip4:220.73.156.0/24 ip4:211.218.150.0/24
ip4:220.73.146.0/24 ip4:220.73.158.0/24 ip4:220.73.159.0/24
ip4:220.95.235.0/24 ip4:220.95.234.0/24 ip4:220.95.236.0/24
ip4:211.218.152.0/24 ip4:218.145.30.0/24 ~all
17)
hankooki.com
v=spf1 ip4:211.40.221.201 ip4:211.40.221.202 ip4:211.40.221.203
ip4:211.40.221.198 ip4:211.40.221.250 ip4:211.233.68.69 ip4:211.40.221.200 ptr
a:mailling.hankooki.com a:smtp.hankooki.com mx:211.40.221.200 ~all
18)
hani.co.kr
v=spf1 mx a:mail2.hani.co.kr a:news.hani.co.kr mx:mail2.hani.co.kr
mx:news.hani.co.kr ~all
19)
interpark.com
v=spf1 ip4:218.144.89.0/24 ip4:211.233.74.0/24 ~all
20)
auction.co.kr
v=spf1 ip4:211.233.17.0/24 ip4:211.115.78.0/24 ip4:222.231.5.55
ip4:210.182.155.153 ip4:210.182.155.154 ip4:210.182.155.155 ~all
21)
jobkorea.co.kr
v=spf1 ip4:61.250.87.0/24 a mx -all
22)
hostway.co.kr
v=spf1 ip4:66.232.144.48 ip4:66.232.139.0/24 ip4:211.239.150.30 ip4:211.115.223.215 ~all
23)
microsoft.com
v=spf1 mx include:_spf-a.microsoft.com include:_spf-b.microsoft.com
include:_spf-c.microsoft.com ~all
24)
aol.com
spf2.0/pra ip4:152.163.225.0/24 ip4:205.188.139.0/24 ip4:205.188.144.0/24 ip4:205.188.156.0/23
ip4:205.188.159.0/24 ip4:64.12.136.0/23 ip4:64.12.138.0/24 ptr:mx.aol.com ?all
v=spf1 ip4:152.163.225.0/24 ip4:205.188.139.0/24 ip4:205.188.144.0/24 ip4:205.188.156.0/23
ip4:205.188.159.0/24 ip4:64.12.136.0/23 ip4:64.12.138.0/24 ptr:mx.aol.com ?all
25)
paypal.com
spf2.0/pra mx include:s._sid.ebay.com include:m._sid.ebay.com
include:p._sid.ebay.com include:c._sid.ebay.com ~all
v=spf1 mx include:s._spf.ebay.com include:m._spf.ebay.com
include:p._spf.ebay.com include:c._spf.ebay.com ~all
26)
sohu.com
v=spf1 ip4:61.135.130.0/23 ip4:61.135.132.0/23 ip4:61.135.134.0/23
ip4:61.135.145.0/23 ip4:61.135.150.0/23 ip4:220.181.26.0/24
ip4:222.28.152.128/25 ip4:218.206.87.0/25 ip4:221.236.12.128
ip4:203.184.141.0/24 ip4:61.152.234.0/24 ~all
27)
163.com
v=spf1 ip4:220.181.12.0/22 ip4:202.108.5.0/24 -all
5. spfmilter°¡ ³²±â´Â ¸ÞÀÏÇì´õ¿Í procmailrc ¼³Á¤
maillog¿¡ ³²Àº spfmilter°ü·Ã ¸Þ½ÃÁöÀÇ ÀϺκÐÀÌ´Ù. (¡Ø ÀϺΠIP¿Í µµ¸ÞÀÎ, ¸ÞÀÏÁÖ¼Ò´Â ¼öÁ¤)
Received-SPF: pass (coffeenix.net: domain of xxxxx@hanmail.net designates 211.43.197.24 as permitted sender) receiver=coffeenix.net; client-ip=211.43.197.24; helo=smail-102.hanmail.net; envelope-from=xxxxx@hanmail.net;
Received-SPF: pass (coffeenix.net: 192.168.123.20 is whitelisted) receiver=coffeenix.net; client-ip=192.168.123.20; helo=xxx.coffeenix.net; envelope-from=xxxxx@xxx.coffeenix.net;
Received-SPF: none (coffeenix.net: master@smtp.ahnlab.com does not designate permitted sender hosts) receiver=coffeenix.net; client-ip=211.233.80.33; helo=imas.ahnlab.com; envelope-from=master@smtp.ahnlab.com;
Received-SPF: neutral (coffeenix.net: 220.82.22.156 is neither permitted nor denied by domain of xxxxx@aol.com) receiver=coffeenix.net; client-ip=220.82.22.156; helo=coffeenix.net; envelope-from=xxxxx@aol.com;
Received-SPF: softfail (coffeenix.net: domain of transitioning xxxxx@chol.com does not designate 60.10.55.152 as permitted sender) receiver=coffeenix.net; client-ip=60.10.55.152; helo=60.10.55.152; envelope-from=xxxxx@chol.com;
Received-SPF: fail (coffeenix.net: domain of xxxxx@126.com does not designate 203.100.177.221 as permitted sender) receiver=coffeenix.net; client-ip=203.100.177.221; helo=coffeenix.net; envelope-from=xxxxx@126.com;
Received-SPF: unknown (coffeenix.net: unknown result during lookup of xxxxx@hanm...) receiver=coffeenix.net; client-ip=58.140.30.15; helo=coffeenix.net; envelope-from=xxxxx@hanm...;
Received-SPF: error (coffeenix.net: error in processing during lookup of xxxxx@hanmail.net) receiver=coffeenix.net; client-ip=211.43.87.2; helo=127.0.0.1; envelope-from=xxxxx@hanmail.net;
pass, fail, softfail, neutral, none, unknown, error µîÀÇ °á°ú¸¦ È®ÀÎÇÒ ¼ö ÀÖÀ» °ÍÀÌ´Ù.
- pass : 100% È®½ÇÇÑ ¸ÞÀÏ·Î ÆÇ´ÜÇÑ °æ¿ìÀÌ´Ù. SPF ·¹Äڵ峪 whitelist¿¡ Æ÷ÇÔµÈ IPÀÌ´Ù.
- fail : ¸ÞÀÏÁÖ¼Ò¸¦ À§º¯Á¶ÇÑ °ÍÀ¸·Î ÆÇ´ÜÇÑ °æ¿ì. ÇØ´ç ¸ÞÀÏÀº ÇÊÅ͸µÃ³¸®ÇÏ¸é µÈ´Ù.
SPF ·¹Äڵ忡 -all ·Î ¼³Á¤ÇÑ °æ¿ìÀÓ
- softfail : 100%´Â ¾Æ´ÏÁö¸¸ failÂÊ¿¡ °¡±õ°í, fail°ú neutralÀÇ Áß°£Á¤µµ¿¡ ÇØ´çÇÑ´Ù.
SPF ·¹Äڵ忡 ~all ·Î ¼³Á¤ÇÑ °æ¿ìÀÓ
À§ »çÀÌÆ®¿¡¼ empas.com, jobkorea.co.kr, 163.comÀ» Á¦¿ÜÇÑ ´ëºÎºÐÀÌ ~all·Î ¼³Á¤µÇ¾î
ÀÖÀ¸´Ï ÀÌ ÆÇÁ¤ »óÅ¿¡ ´ëÇؼµµ ÇÊÅ͸µÇØ¾ß SPF »ç¿ë¿¡ È¿°ú°¡ ÀÖ´Ù.
- neutral : ¸ÞÀÏÁÖ¼ÒÀÇ À§º¯Á¶ ÆÇ´ÜÇÏ´Â °ÍÀ» ¿øÄ¡ ¾ÊÀ½À» ³ªÅ¸³½´Ù. µû¶ó¼ none°ú °°Àº ÇüÅ·Î
ó¸®ÇØÁÖ¸é µÈ´Ù. SPF ·¹Äڵ忡 ?all ·Î ¼³Á¤ÇÑ °æ¿ìÀÓ
- none : SPF ·¹Äڵ带 Á¦°øÇÏÁö ¾Ê´Â °æ¿ì
- unknown : lookupÇÑ °á°ú¸¦ ¾Ë ¼ö ¾øÀ»(¿Ïº®ÇÏ°Ô Ã³¸®µÇÁö ¸øÇÑ) °æ¿ì
- error : lookupÇÒ ¶§ ¿¡·¯°¡ ¹ß»ýÇÑ °æ¿ì
¸ÞÀÏÁÖ¼Ò À§º¯Á¶°¡ ³ôÀº ¼ø¼·Î ³ª¿Çϸé fail > softfail > neutral > none > pass ¼øÀ¸·Î º¼ ¼ö ÀÖ´Ù.
SPFÀÇ ÆÇÁ¤ »óŸ¦ ¾Ë¾ÒÀ¸´Ï ÀÌÁ¦ procmailÀ» ÅëÇÏ¿© ÇÊÅ͸µ Àû¿ëÀ» Çغ¸ÀÚ.
- 'Received-SPF: fail'À϶§¿Í 'Received-SPF: softfail' ÀÎ °æ¿ì¿¡´Â procmail¿¡ ·Î±×¸¦ ³²±â°í
- ¼ö½ÅµÈ ¸ÞÀÏÀ» ½ºÆÔ¸ÞÀÏÇÔ(var/log/SPAM_SPF.log, ¸ÞÀÏÀ» ¹ö¸®·Á¸é /dev/null ÁöÁ¤)À¸·Î º¸³»±â À§ÇÑ
procmailrc ¼³Á¤ ¿¹´Â ´ÙÀ½°ú °°´Ù.
- ¾Æ·¡ ¼³Á¤¿¡¼ LOG= ´ÙÀ½ÁÙ¿¡ Å«µû¿ÈÇ¥(")´Â ÁٹٲÞÀ» À§Çؼ Ç¥½ÃÇÑ °ÍÀ¸·Î, Àß ¸ø Ç¥±âÇÑ°Ô ¾Æ´Ï´Ù.
[ /etc/procmailrc ]
LOGFILE=/var/log/procmail
VERBOSE=no
PATH=/usr/bin:/usr/local/bin:/bin
SHELL=/bin/sh
SPAM_SPF_LOG = "/var/log/SPAM_SPF.log"
:0 :
* ^Received-SPF: \/(fail|softfail)
{
¡¡¡¡¡¡STAT = "$MATCH"
¡¡¡¡¡¡# From
¡¡¡¡¡¡:0
¡¡¡¡¡¡* ^From: \/.*
¡¡¡¡¡¡{
¡¡¡¡¡¡¡¡¡¡¡¡FROM = "$MATCH"
¡¡¡¡¡¡}
¡¡¡¡¡¡
¡¡¡¡¡¡# Subject
¡¡¡¡¡¡:0
¡¡¡¡¡¡* ^Subject: \/.*
¡¡¡¡¡¡{
¡¡¡¡¡¡¡¡¡¡¡¡SUBJECT = "$MATCH"
¡¡¡¡¡¡}
¡¡¡¡¡¡
¡¡¡¡¡¡# Log¸¦ ³²±è
¡¡¡¡¡¡LOG="=====SPF_filter($STAT) F=$FROM, S=$SUBJECT
"
¡¡¡¡¡¡# ¸ÞÀÏ º°µµ ÀúÀå ¶Ç´Â null
¡¡¡¡¡¡:0
¡¡¡¡¡¡$SPAM_SPF_LOG
}
* ´Ù¿î·Îµå :
http://coffeenix.net/truefeel/files/spf_procmailrc.txt
/var/log/procmail ¿¡´Â ´ÙÀ½°ú °°ÀÌ ±âº» ·Î±× ¿Ü¿¡ '==='·Î ½ÃÀÛÇÏ´Â ÇÑÁÙÂ¥¸® ·Î±×°¡ Ãß°¡·Î ³²°ÔµÈ´ô.
(¸ÞÀÏÁÖ¼Ò xxxxx·Î º¯°æ)
=====SPF_filter(fail) F=xxxxx
, S=À£ºùÀÚ°ÝÁõ==³ó»ê¹°...
From xxxxx@empal.com Tue May 30 18:13:50 2006
Subject: À£ºùÀÚ°ÝÁõ==³ó»ê¹°...
Folder: /var/log/SPAM_SPF.log 1981
DomainKeys¸¦ »ç¿ëÇÏ´Â ¾ßÈĸ¦ Á¦¿ÜÇÑ ´ëºÎºÐÀÇ Æ÷Åп¡¼´Â SPF ·¹ÄÚµå ¼³Á¤ÀÌ µÇ¾î ÀÖÀ¸¹Ç·Î º¸´Ù ±ú²ýÇØÁø
¸ÞÀÏÇÔÀ¸·Î »óÅÇÑ ¾ÆħÀ» ¸ÂÀÌÇÏ°Ô µÉ °ÍÀÌ´Ù.
6. Âü°íÀÚ·á(°ü·ÃÀÚ·á)
* ½ºÆÔÇÊÅ͸µ ±â¼ú SPF¿¡ ´ëÇÑ SPF ·¹ÄÚµåÀÇ ¼³Ä¡¿Í ¿î¿µ
http://coffeenix.net/doc/security/SPF¼³Ä¡¹×¿î¿µÁöħ¼.pdf
Ãâó : ºÒ¹ý½ºÆÔ´ëÀÀ¼¾ÅÍ(
http://www.spamcop.or.kr/
)
* spfmilter Installation
http://www.acme.com/software/spfmilter/
* Received-SPF: a new header
http://www.openspf.org/newheader.html
* Sender Policy Framework (SPF) for Authorizing Use of Domains in E-MAIL, version 1
http://www.schlitt.net/spf/spf_classic/draft-schlitt-spf-classic-02.html
* SPF Softfail
http://www.micheldonais.com/archives/17
* SPF Configuration (±Û ±èÁ¤±Õ)
http://oops.org/?t=lecture&sb=sendmail&n=9
Ä¿ÇǴнº Ä«Æä ÃÖ±Ù ±Û
[04/25]
±¹°¡
[04/24]
º¸Çè
[04/22]
Re: OpenSSL Ãë¾àÁ¡ Á¤¸®, Logjam(·Î±×Àë)¿¡¼ Heartbleed±îÁö
[04/21]
LET¡¯S START WITH ON
[04/21]
º¸Çè
[04/20]
Á¦ÁÖ
[04/20]
±¹³»
[04/19]
Á¦ÁÖ
[04/18]
??? ?????
[04/17]
???? onion ?????? -
[04/11]
±¹°¡
[04/10]
Stride Into Dream:
[03/20]
Re: ¿Â¶óÀΰÔÀÓÀÇ Á¾ÁÖ±¹ ´ëÇѹα¹
[10/20]
Cross Compiler ±ò
[07/14]
SSL ¬¡¬°
N
e
w
! ÃÖ±Ù¿¡ µî·ÏÇÑ ÆäÀÌÁö
KiCad EDA Suite project (Free/Libre/Open-Source EDA Suite) (CAD)
¿ÀÇÂij½ºÄÉÀ̵å ijµå (OpenCASCADE CAD)
QCad for Windows --- GNU GPL (Free Software)
The Hello World Collection
IPMI¸¦ È°¿ëÇÑ ¸®´ª½º ¼¹ö°ü¸®
DNS ¼³Á¤ °Ë»ç
nagiosgraph ¼³Ä¡ ¹æ¹ý
Slony-I ¼³Ä¡ ¹æ¹ý (postgresql replication tool)
Qmail±â¹ÝÀÇ Anti spam ½Ã½ºÅÛ ±¸ÃàÇϱâ
clusterssh
[ ÇÔ²²ÇÏ´Â »çÀÌÆ® ]
¿î¿µÁø :
ÁÁÀºÁøÈ£(truefeel)
, ¾ß¼ö(yasu), ¹ü³ÃÀÌ, sCag
2003³â 8¿ù 4ÀÏ~