opendmarc alternative?

DaLynX

DaLynX

Hi,

I am running opendmarc with my postfix mailserver. It's okay but the mysql80-client dependency is bugging me, especially because it pops up in the security reports.

Would you know an alternative?

A simple pkg search dmarc doesn't really give me anything more.
I also looked at the port to see if I could build it without mysql but that doesn't seem to be an option.

An SQL db only seems to be needed for the reports generation and sending too, which I do not use.
 
It's done via plugin: Mail::SpamAssassin::Plugin::DMARC during the scan with spamassasin.

It doesn't send reports to other rua/ruf mail addresses. It only check against DNS dmarc record and set scores which then are checked by amavisd and put in quarantine or zap.
 
Oh ok so it requires SpamAssassin too. I was hoping to avoid that because I heard it's heavy. But maybe if it can replace everything for SPF/DKIM/DMARC in my setup that would be a lesser evil. What does amavisd bring in that case? Versus SpamAssassin only?

Also I see DMARC support is not enabled on the package build https://www.freshports.org/mail/spamassassin/. So I have to build it from ports, right?
 
amavisd provides a single mail filter that do spam scanning via spamassassin and antivirus scan via clamav.

Yes you need to have your own repository. I'm using synth for that and build my pkgs on separate server.
 
Interesting. The Opendmarc project does not list MySQL as a dependency, but the Freshports page shows a dependency on p5-DBD-mysql. Maybe it's an autoconf option that is not exposed as a ports config option.

Rspamd has a DMARC module, FWIW:

DMARC module

Rspamd is an advanced spam filtering system and email processing framework that allows evaluation of messages by a number of rules including regular expressions, statistical analysis and custom services such as URL black lists.
rspamd.com rspamd.com

I have not used it.
 
pkg info -dx opendmarc
opendmarc-1.4.2_3:
p5-HTTP-Message-6.46
libspf2-1.2.11_2
perl5-5.36.3_2
p5-Switch-2.17_1
p5-DBI-1.643
p5-DBD-mysql4-4.052
mariadb114-client-11.4.2
 
Jose said:
Interesting. The Opendmarc project does not list MySQL as a dependency, but the Freshports page shows a dependency on p5-DBD-mysql. Maybe it's an autoconf option that is not exposed as a ports config option.

Rspamd has a DMARC module, FWIW:

DMARC module

Rspamd is an advanced spam filtering system and email processing framework that allows evaluation of messages by a number of rules including regular expressions, statistical analysis and custom services such as URL black lists.
rspamd.com rspamd.com

I have not used it.
Click to expand...
It would be nice to have separate packages for opendmarc and opendmarc-reports, for instance, since only the reports needs a SQL client.

diizzy said:
github.com

GitHub - foxcpp/maddy: ✉️ Composable all-in-one mail server.

✉️ Composable all-in-one mail server. Contribute to foxcpp/maddy development by creating an account on GitHub.
github.com github.com
github.com

GitHub - stalwartlabs/mail-server: Secure & Modern All-in-One Mail Server (IMAP, JMAP, POP3, SMTP)

Secure & Modern All-in-One Mail Server (IMAP, JMAP, POP3, SMTP) - stalwartlabs/mail-server
github.com github.com
Might be worth looking at?
Click to expand...
Thanks I'll have a look. I'm a bit timid, though, when it comes to something that might result in not receiving emails properly. Do you have experience with running those in production?
 
You must log in or register to reply here.
Back
Top