I appreciate all the feedback I've received from Postfix users on my Postscreen whitelist creation script. I've now moved the project to GitHub, and completely reworked it as a Thanksgiving project:
https://github.com/stevejenkins/postwhite Postwhite now creates a single Postscreen whitelist, and allows you to toggle the various mailers within the script, and is much smarter about recursively querying senders' SPF records. It also fixes the problem of invalid IPv4 CIDR addresses (like Microsoft is still publishing) by running them through a validator (ipcalc) and gives you the option to strip them out, fix them (using the same CIDR that Postfix recommends in its warning), or keep them in the whitelist (the only useful purpose for that would be curiosity to see who's being naughty). I don't have any mechanism for validating IPv6 CIDRs (yet). Please feel free to give Postwhite a try, and post any issues/suggestions on the GitHub repo. Thanks again to all of you who've helped nudge it along. :) SteveJ
