From 0401ffbc6da8e32bb5ab04c9186aa13fd56de7c4 Mon Sep 17 00:00:00 2001
From: Ingo Ebel <ebeli@hdm-stuttgart.de>
Date: Fri, 8 Jan 2016 22:21:10 +0100
Subject: [PATCH] mail part: greylisting and blacklisting

---
 Doc/Sdi/mail.xml | 66 +++++++++++++++++++++++++++++++++++++++++++-----
 1 file changed, 59 insertions(+), 7 deletions(-)

diff --git a/Doc/Sdi/mail.xml b/Doc/Sdi/mail.xml
index d3729cb91..de48db109 100644
--- a/Doc/Sdi/mail.xml
+++ b/Doc/Sdi/mail.xml
@@ -118,14 +118,15 @@
 
           <itemizedlist>
             <listitem>
-              <para>emails will be stored in /var/mail/username</para>
+              <para>emails will be stored in
+              <filename>/var/mail/username</filename></para>
             </listitem>
           </itemizedlist>
         </listitem>
 
         <listitem>
-          <para>add an alias to /etc/aliases and try to send an email to the
-          new aliase</para>
+          <para>add an alias to <filename>/etc/aliases</filename> and try to
+          send an email to the new aliase</para>
         </listitem>
 
         <listitem>
@@ -241,9 +242,62 @@
       <section>
         <title>blacklisting and greylisting</title>
 
-        <para/>
+        <itemizedlist>
+          <listitem>
+            <para>install postgrey and add it to
+            smtpd_recipient_restrictions</para>
+
+            <itemizedlist>
+              <listitem>
+                <para>test with sending emails eg. with an telnet or an MUA to
+                your virtual emailadresse </para>
+              </listitem>
+
+              <listitem>
+                <tip>
+                  <para>this needs to be done without authentication</para>
+                </tip>
+              </listitem>
+
+              <listitem>
+                <para>see how messages get blocked</para>
+              </listitem>
+
+              <listitem>
+                <para>try again in 10 min</para>
+              </listitem>
+
+              <listitem>
+                <para>send an email via your second mailserver to a email
+                account on the firsh and watch the logs. your mailserver will
+                try again until the mail is send to the mailaccount</para>
+              </listitem>
+
+              <listitem>
+                <para>or use <filename>postfix restart</filename> oder
+                <filename>postfix flush</filename> oder <filename>postsuper -r
+                QUEUEID</filename> to force resend</para>
+              </listitem>
+            </itemizedlist>
+          </listitem>
 
-        <para/>
+          <listitem>
+            <para>add some blacklists to your
+            smtpd_recipient_restrictions</para>
+
+            <itemizedlist>
+              <listitem>
+                <para>this can't be tested very well expect building your own
+                blacklist server but (out of scope)</para>
+              </listitem>
+
+              <listitem>
+                <para>use add some common blacklist and belive the will work
+                :)</para>
+              </listitem>
+            </itemizedlist>
+          </listitem>
+        </itemizedlist>
       </section>
 
       <section>
@@ -259,8 +313,6 @@
           </listitem>
         </itemizedlist>
 
-        <para/>
-
         <itemizedlist>
           <listitem>
             <para/>
-- 
GitLab