Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in
Need more RBL's for postfix
View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Networking & Security
View previous topic :: View next topic  
Author Message
audiodef
Watchman
Watchman


Joined: 06 Jul 2005
Posts: 6308
Location: /usr/lib64/lv2

PostPosted: Thu Aug 02, 2018 1:43 pm    Post subject: Need more RBL's for postfix Reply with quote

I made some changes to my mail server to reduce spam. Some spam is still getting through, so I'd like to add some more RBL's to my postfix conf. Any recommendations?
_________________
Gentoo Studio: A Gentoo-based, professional digital audio workstation OS.
Back to top
View user's profile Send private message
bunder
Bodhisattva
Bodhisattva


Joined: 10 Apr 2004
Posts: 5801

PostPosted: Thu Aug 02, 2018 3:28 pm    Post subject: Reply with quote

These ones work for me for the most part.

Code:
    reject_rbl_client cbl.abuseat.org,
    reject_rbl_client zen.spamhaus.org,
    reject_rbl_client bl.spamcop.net,
    reject_rbl_client dnsbl.sorbs.net

_________________
overlay | patches
Neddyseagoon wrote:
The problem with leaving is that you can only do it once and it reduces your influence.
Back to top
View user's profile Send private message
szatox
Veteran
Veteran


Joined: 27 Aug 2013
Posts: 1717

PostPosted: Thu Aug 02, 2018 8:17 pm    Post subject: Reply with quote

Neat trick for people running their own mail servers:
Use aliases. A lot of them.
Create another alias for every single purpose, website, preferably every man. This way you will know who leaked your address, and you can devnull it without losing all your valuable contacts :)
Back to top
View user's profile Send private message
audiodef
Watchman
Watchman


Joined: 06 Jul 2005
Posts: 6308
Location: /usr/lib64/lv2

PostPosted: Fri Aug 03, 2018 2:29 am    Post subject: Reply with quote

bunder wrote:
These ones work for me for the most part.

Code:
    reject_rbl_client cbl.abuseat.org,
    reject_rbl_client zen.spamhaus.org,
    reject_rbl_client bl.spamcop.net,
    reject_rbl_client dnsbl.sorbs.net


Thanks! I actually have those, except my logs kept saying zen.spamhaus.org couldn't be found, so I changed it to sbl.spamhaus.org. I also have dul.dnsbl.sorbs.net. Not sure what the difference is.
_________________
Gentoo Studio: A Gentoo-based, professional digital audio workstation OS.
Back to top
View user's profile Send private message
audiodef
Watchman
Watchman


Joined: 06 Jul 2005
Posts: 6308
Location: /usr/lib64/lv2

PostPosted: Fri Aug 03, 2018 2:32 am    Post subject: Reply with quote

szatox wrote:
Neat trick for people running their own mail servers:
Use aliases. A lot of them.
Create another alias for every single purpose, website, preferably every man. This way you will know who leaked your address, and you can devnull it without losing all your valuable contacts :)


It's all me, so unless I develop DID, I should be okay there. I do use different mailboxes for different purposes, which is why only two of my addresses get heavy spam. (These addresses get used online, filling in forms, etc., while others are never used in forms and other online transactions.)
_________________
Gentoo Studio: A Gentoo-based, professional digital audio workstation OS.
Back to top
View user's profile Send private message
bunder
Bodhisattva
Bodhisattva


Joined: 10 Apr 2004
Posts: 5801

PostPosted: Fri Aug 03, 2018 2:44 pm    Post subject: Reply with quote

audiodef wrote:
bunder wrote:
These ones work for me for the most part.

Code:
    reject_rbl_client cbl.abuseat.org,
    reject_rbl_client zen.spamhaus.org,
    reject_rbl_client bl.spamcop.net,
    reject_rbl_client dnsbl.sorbs.net


Thanks! I actually have those, except my logs kept saying zen.spamhaus.org couldn't be found, so I changed it to sbl.spamhaus.org. I also have dul.dnsbl.sorbs.net. Not sure what the difference is.


zen seems to be working... it's dns based, so you need to dig (ip.in.rev.erse).zen.spamhaus.org, if there is a answer section then its in their list.

Code:
$ dig 146.xxx.xx.84.zen.spamhaus.org

; <<>> DiG 9.11.2-P1 <<>> 146.xxx.xx.84.zen.spamhaus.org
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 15893
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 5, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
; COOKIE: f0461ffe6bbd63cc6611fc1f5b646c8e78def30b7747d88c (good)
;; QUESTION SECTION:
;146.xxx.xx.84.zen.spamhaus.org.        IN      A

;; ANSWER SECTION:
146.xxx.xx.84.zen.spamhaus.org. 232 IN  A       127.0.0.11 <---------- confirms this sender is spam

;; AUTHORITY SECTION:
zen.spamhaus.org.       2798    IN      NS      b.gns.spamhaus.org.
zen.spamhaus.org.       2798    IN      NS      c.gns.spamhaus.org.
zen.spamhaus.org.       2798    IN      NS      e.gns.spamhaus.org.
zen.spamhaus.org.       2798    IN      NS      d.gns.spamhaus.org.
zen.spamhaus.org.       2798    IN      NS      a.gns.spamhaus.org.

;; Query time: 0 msec
;; SERVER: 127.0.0.1#53(127.0.0.1)
;; WHEN: Fri Aug 03 10:54:06 EDT 2018
;; MSG SIZE  rcvd: 187

_________________
overlay | patches
Neddyseagoon wrote:
The problem with leaving is that you can only do it once and it reduces your influence.
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Networking & Security All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum