Home Forums OS X Server and Client Discussion Mail Blackhole Outages and Current Configurations

Viewing 2 posts - 1 through 2 (of 2 total)
  • Author
    Posts
  • September 7, 2005 at 3:23 pm #363150
    chiznibitz
    Participant

    some of my blackholes.us RBLs are timing out. this has happened to other domains before (korea-services or something?).

    anyway, i was just wondering a) if anyone else is having this problem and b) what blacklists everyone else is using these days.

    in fact, maybe this thread could become a place where we periodically share blacklist configurations.

    here’s my postfix config (i don’t remember why some are commented out):

    smtpd_client_restrictions = permit_mynetworks,
    check_client_access hash:/etc/postfix/access,
    reject_rbl_client dynablock.njabl.org,
    reject_rbl_client relays.ordb.org,
    reject_rbl_client sbl.spamhaus.org,
    reject_rbl_client korea.services.net,
    reject_rbl_client opm.blitzed.org,
    reject_rbl_client list.dsbl.org,
    reject_rbl_client cn-kr.blackholes.us,
    reject_rbl_client singapore.blackholes.us,
    reject_rbl_client thailand.blackholes.us,
    reject_rbl_client malaysia.blackholes.us,
    reject_rbl_client china.blackholes.us,
    reject_rbl_client korea.blackholes.us,
    reject_rbl_client argentina.blackholes.us,
    reject_rbl_client brazil.blackholes.us,
    reject_rbl_client taiwan.blackholes.us,
    reject_rbl_client nigeria.blackholes.us,
    reject_rbl_client cbl.abuseat.org,
    reject_unauth_destination,
    reject_unauth_pipelining,
    reject_invalid_hostname,permit

    smtpd_sender_restrictions =
    reject_rbl_client relays.ordb.org,
    reject_rbl_client dnsbl.njabl.org,
    reject_rbl_client sbl.spamhaus.org,
    reject_rbl_client dynablock.wirehub.net,
    #reject_rbl_client relays.osirusoft.com,
    #reject_rbl_client dialups.relays.osirusoft.com,
    reject_rhsbl_client relays.ordb.org,
    reject_rhsbl_client dnsbl.njabl.org,
    reject_rhsbl_client sbl.spamhaus.org,
    #reject_rhsbl_client relays.osirusoft.com,
    reject_non_fqdn_sender,
    reject_unauth_pipelining,
    permit

    September 12, 2005 at 9:29 pm #363212
    heavyboots
    Participant

    Still running 10.3.9 and I use ASSP for spam filtering, so it’s a bit of a different setup. The only RBL’s I’m using are just the default ASSP ones:

    bl.spamcop.net
    cbl.abuseat.org
    sbl-xbl.spamhaus.org
    dnsbl.njabl.org
    list.dsbl.org
    dnsbl.sorbs.net
    opm.blitzed.org
    dynablock.njabl.org

    ASSP is set for 3 replies max, 2 replies necessary to RBL a message.

    Actually, the cool new feature that seems to really be making a difference is Delaying/Greylisting. New IP/from-user/to-usr triplets cause the mail server to request a delayed send–ie, tell the mail server at the other end to retry sending the message in 5 minutes. Valid mail servers can handle that; spammer engines being set up for speed and bulk just totally ignore it and don’t call back after the 5 minute time limit.

  • Author
    Posts
Viewing 2 posts - 1 through 2 (of 2 total)
  • You must be logged in to reply to this topic.

Comments are closed

Copyright © 2025 AFP548. All Rights Reserved.