PSCS Wiki

User Tools

Site Tools

Trace: Configure SRS

Sidebar

how_to:configure_srs

This is an old revision of the document!

Table of Contents

Configure SRS

In VPOP3 8.8 and later, you can use Lua scripting to implement 'SRS' (Sender Rewriting Scheme') in VPOP3

This involves adding a couple of functions to rewrite outgoing return paths in 'relayout.lua' or 'mxout.lua' as appropriate and a couple of functions to redirect rewritten bounce message recipients in 'smtpsvr.lua'

In earlier versions of VPOP3 (or if you don't want the bounce-redirection function of SRS), you can use basic Sender Rewriting using the 'Return path Settings' tab of the Mail Sender in the VPOP3 settings. Set 'SMTP Return Path:' to 'If the original address is not local, set to', and enter a local email address which won't have forwarding or autoresponders set - eg postmaster@yourdomain.com

The below is a basic implementation based on https://www.libsrs2.net/srs/srs.pdf

relayout.lua or mxout.lua

Use relayout.lua if VPOP3 is sending through a smart host, or mxout.lua if VPOP3 is sending using SMTP Direct

Edit 'mydomain' to be your domain, and 'mykey' to be a secret code for security hashing 

  1. mydomain = "example.com";
  2. mykey = "bobble";
  3.  
  4. function ModifyReturnPath(mailfrom, origmailfrom)
  5.  
  6.     local srch = "@" .. string.gsub(mydomain, "%.", "%%.") .. "$";
  7.  
  8.     if not string.find(origmailfrom, srch) then        
  9.         local lastAt = origmailfrom:find("[^%@]+$")
  10.         local localPart = origmailfrom:sub(1, (lastAt - 2)) -- Returns the substring before '@' symbol
  11.         local domainPart = origmailfrom:sub(lastAt, #origmailfrom)
  12.  
  13.         local timestamp = math.floor((os.time()/ (60 * 60 * 24)) % 1024);
  14.         local timestampMod32 = Mod32(math.floor(timestamp / 32)) .. Mod32(timestamp % 32);
  15.  
  16.         local hash = VPOP3.Base64(VPOP3.SHA1(origmailfrom .. timestampMod32 .. mykey)):sub(1,4);
  17.  
  18.         return "SRS0=" .. hash .. "=" .. timestampMod32 .. "=" .. domainPart .. "=" .. localPart .. "@" .. mydomain;
  19.     end
  20.             print("nosub " .. origmailfrom);
  21. end
  22.  
  23. function Mod32(x)
  24.     return string.sub("ABCDEFGHIJKLMNOPQRSTUVWXYZ234567", x + 1, x + 1);
  25. end

smtpsvr.lua

Edit 'mydomain' to be your domain, and 'mykey' to be a secret code for security hashing. These should be the same values as in the other script 

  1. mydomain = "example.com";
  2. mykey = "bobble";
  3.  
  4. function MapRecipient(rcpt, rcptlist, mailfrom)
  5.     if mailfrom == "" then
  6.         local srch = "^SRS[01]=([^=]+)=([^=]+)=([^=]+)=(.-)@" .. string.gsub(mydomain, "%.", "%%.") .. "$";
  7.         local hash, ts, domainPart, localPart;
  8.  
  9.         _, _, hash, ts, domainPart, localPart = rcpt:find(srch);
  10.  
  11.         if hash then
  12.             local calcHash = VPOP3.Base64(VPOP3.SHA1(localPart .. "@" .. domainPart .. ts .. mykey)):sub(1,4);
  13.             if calcHash == hash then
  14.  
  15.                 local rcptTimestamp = UnMod32(ts:sub(1,1)) * 32 + UnMod32(ts:sub(2,2));
  16.                 local timestamp = math.floor((os.time()/ (60 * 60 * 24)) % 1024);
  17.  
  18.                 if timestamp < rcptTimestamp then
  19.                     timestamp = timestamp + 1024;
  20.                 end
  21.  
  22.                 if timestamp - rcptTimestamp > 5 then
  23.                     return rcpt, "500 SRS Timestamp expired";
  24.                 end
  25.  
  26.                 return localPart .. "@" .. domainPart;
  27.  
  28.             else 
  29.                 return rcpt, "500 SRS Hash invalid";
  30.             end
  31.         end
  32.  
  33.     end
  34. end
  35.  
  36. function UnMod32(x)
  37.     return string.find("ABCDEFGHIJKLMNOPQRSTUVWXYZ234567", x) - 1;
  38. end
how_to/configure_srs.1755530800.txt.gz · Last modified: 2025/08/18 16:26 by paul

Page Tools

Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki