Support

Support for business applications

Kaspersky Security 8.0 for Linux Mail Server

Managing the application through the command line interface using the klms-control utility

Configuring global black and white lists of addresses

Kaspersky Security 8.0 for Linux Mail Server
Knowledge Base Online Help
Advice & Solutions FAQ Download Forum Contact support Recovery tools Product videos

Configuring global black and white lists of addresses

August 21, 2023

ID 60661

The settings of global black and white lists of addresses are contained in the preset BlackList (ID=2) and WhiteList (ID=3) message processing rules.

In addition, when creating a new rule, you can specify one of the rule modes: reject messages without scanning (in which case the application processes messages according to this rule in the same way as it does according to the BlackList rule) or skip messages without scanning (in which case the application processes messages according to this rule in the same way as it does according to the WhiteList rule).

To configure a global black or white list of addresses:

  1. Export rule settings to an XML file using the following command:

    # /opt/kaspersky/klms/bin/klms-control \

    --get-rule-settings <rule ID> -f <rule settings file name> or

    --get-rule-settings <rule name> -n -f <rule settings file name>

    The <rule name> should be enclosed in double quotes if it contains blanks.

    To export the settings of the BlackList rule, execute the command

    # /opt/kaspersky/klms/bin/klms-control \

    --get-rule-settings BlackList -n -f <name of the rule settings file>

    To export the settings of the WhiteList rule, execute the command

    --get-rule-settings WhiteList -n -f <name of the rule settings file>

  2. Open the rule settings XML file for editing.
  3. Make the required changes in the <belongingCriteria> section, specifying the addresses of the sender and recipient in the <sender> and <recipient> settings, respectively.

    If you need to add several sender and recipient email addresses, each new email address must be in a separate <item> section, typed in a new string of the settings file.

    Example:

    <belongingCriteria>

    <sender>

    <item>

    <type>EMailMask</type>

    <value>*</value>

    </item>

    <item>

    <type>CIDR</type>

    <value>172.16.10.145</value>

    </item>

    </sender>

    <recipient>

    <item>

    <type>ExternalAccount</type>

    <value>CN=test10,OU=SBSUsers,OU=Users,OU=MyBusiness,DC=sbs2k8,DC=local</value>

    </item>

    </recipient>

    </belongingCriteria>

    You can use the symbols "*" and "?" to create an address mask, and regular expressions beginning with the prefix "re:".

    Regular expressions are not case-sensitive.

  4. In the <ScanSettings> section, specify 1 as the value of the <active> setting to activate the rule.
  5. Save the changes made.
  6. To import rule settings from an XML file, use the following command:

    # /opt/kaspersky/klms/bin/klms-control \

    --set-rule-settings <rule ID> -f <rule settings file name> or

    --set-rule-settings <rule name> -n -f <rule settings file name>

    The <rule name> should be enclosed in double quotes if it contains blanks.

Kaspersky Endpoint Security for Business Advanced: Adaptive security of your company
Web and device controls. Data encryption. Centralized and convenient management from a single console.
Kaspersky Premium Support (MSA): High‑priority incident processing
Telephone and web ticket support. Fast response, monitoring and health check. Submit a request and activate the contract (MSA).
Did you find this article helpful?
What can we do better?
Thank you for your feedback! You're helping us improve.
Thank you for your feedback! You're helping us improve.