search for: dnsbl

Gents, I have added the following to /etc/mail/sendmail.mc and rebuilt it trying to control spam. I still get about 25 spam messages a day. Is there something else that can help control spam? Thanks jerry --------------------------- dnl # dnl # dnsbl - DNS based Blackhole List/Black List/Rejection list dnl # See http://www.sendmail.org/m4/features.html#dnsbl dnl # FEATURE(`dnsbl', `bl.spamcop.net', `"Spam blocked see: http://spamcop.net/bl.shtml?"$&{client_addr}')dnl FEATURE(`dnsbl', `relays.ordb.org',...

On 11/04/2019 14:33, Anton Dollmaier via dovecot wrote: >> Which is why a dnsbl for dovecot is a good idea. I do not believe the >> agents behind these login attempts are only targeting me, hence the >> addresses should be shared via a dnsbl. > > Probably there's an existing solution for both problems (subsequent > attempts and dnsbl): > >> h...

...ecot login failures. My firewall is set to log these so I can see that few repeat, those that do repeat have intervals of >1 week. Blocking these has minimal effect (other than to clog fail12ban and the firewall). > - it will continue bothering other servers and admins Which is why a dnsbl for dovecot is a good idea. I do not believe the agents behind these login attempts are only targeting me, hence the addresses should be shared via a dnsbl.

dnsbl's are a popular method to prevent listed ips from making connections to mta software. cf. postscreen_dnsbl_sites in postfix Would it be possible to introduce such a feature in dovecot, so that connections can be denied based on a dnsbl lookup (where the precise dnsbls used are configurable)?...

...llow-update {none;}; allow-query {any;}; allow-transfer {any;}; }; ================================================== ========== ==== FILE qmail-smtp/RUN ================================ .......... /usr/local/bin/rblsmtpd -t 5 -b -C -r bl.spamcop.net \ -r sbl.spamhaus.org -r relays.ordb.org -r dnsbl.antispam.or.id \ -r rhsbl.ahbl.org -r opm.blitzed.org \ -r cn-kr.blackholes.us -r japan.blackholes.us \ -r taiwan.blackholes.us -r thailand.blackholes.us \ -r nigeria.blackholes.us -r argentina.blackholes.us \ -r bl.spamcop.net -r smtp.dbl.sorbs.net \ -r web.dnsdl.sorbs.net -r spam.dnsbl.sorbs.net...

On 12/04/2019 08:24, Aki Tuomi via dovecot wrote: > Weakforced uses Lua so you can easily integrate DNSBL support into it. How does this help Dovecot block? A link to some documentation or example perhaps? > We will not add DNSBL support to dovecot at this time. Is there a reason why you will not support this RFE?

after having my own dnsbl feeded by a honeypot and even mod_security supports it for webservers i think dovecot sould support the same to prevent dictionary attacks from known bad hosts, in our case that blacklist is 100% trustable and blocks before SMTP-Auth while normal RBL's are after SASL i admit that i am not a C/...

..._recipient_domain, reject_unauth_destination, reject_rbl_client relays.ordb.org, reject_rbl_client opm.blitzed.org, reject_rbl_client list.dsbl.org, reject_rbl_client sbl.spamhaus.org, reject_rbl_client cbl.abuseat.org, reject_rbl_client dul.dnsbl.sorbs.net, reject_rbl_client dev.null.dk, reject_rbl_client virbl.dnsbl.bit.nl, reject_rbl_client smtp.dnsbl.sorbs.net, reject_rbl_client socks.dnsbl.sorbs.net, reject_rbl_client http.dnsbl.sorbs.net, reject_rbl_client web.dnsbl.sorbs.net, che...

...s_list= permit_mynetworks, cidr:/etc/postfix/cidr/postscreen_whitelist_access.cidr, # https://github.com/stevejenkins/hardwarefreak.com-fqrdns.pcre pcre:/etc/postfix/pcre/fqrdns-max.pcre, pcre:/etc/postfix/pcre/fqrdns-plus.pcre, pcre:/etc/postfix/pcre/fqrdns.pcre, postscreen_dnsbl_threshold=4 postscreen_dnsbl_sites= # blacklists. b.barracudacentral.org*4 bad.psky.me*4 zen.spamhaus.org*4 dnsbl.cobion.com*2 bl.spameatingmonkey.net*2 fresh.spameatingmonkey.net*2 cbl.anti-spam.org.cn=127.0.8.2*2 dnsbl.anonm...

Hi all, Just out of curiosity: is there anything we can do, on the samba side, to counter the recent ransomware attacks? (or limit the damage done) I'm thinking like: limit the number of files per second a client (workstation) is allowed to edit, or some other smart tricks..? It would be nice if samba could be an extra layer of defense. Something perhaps a vfs module could help with..?

Hi list, I have noted over the last week or so my DNS servers are dumping lots of messages for bogus domain lookups. Examining the postfix queue with postqueue -p: I see many (Host or domain name not found. Name service error for name=bdgiedjhea.po6e4ina.com type=MX: Host not found, try again) Jake at bdgiedjhea.po6e4ina.com My question - why does this

...t; How would I make hotmail accept my emails and not make them go to junk >> folder? >> >> Is there any trick to do this? > This isn't really a dovecot issue, but you can start with Microsoft's > policies here: https://mail.live.com/mail/policies.aspx > and check DNSBL IP blacklists such as http://www.dnsbl-check.info/

On 12.4.2019 10.21, James via dovecot wrote: > On 11/04/2019 14:33, Anton Dollmaier via dovecot wrote: > >>> Which is why a dnsbl for dovecot is a good idea.? I do not believe the >>> agents behind these login attempts are only targeting me, hence the >>> addresses should be shared via a dnsbl. >> >> Probably there's an existing solution for both problems (subsequent >> attempts and dns...

...ved this from be whitelisted. Content preview: Hi! Anyone know if there are a spanish translation? Thanks! [...] Content analysis details: (6.5 points, 6.5 required) 1.1 RCVD_IN_SORBS_HTTP RBL: SORBS: sender is open HTTP proxy server [200.78.92.138 listed in dnsbl.sorbs.net] 1.1 RCVD_IN_SORBS_MISC RBL: SORBS: sender is open proxy server [200.78.92.138 listed in dnsbl.sorbs.net] 0.1 RCVD_IN_SORBS RBL: SORBS: sender is listed in SORBS [200.78.92.138 listed in dnsbl.sorbs.net] 0.1 RCVD_IN_N...

...If you use postfix als mail relay. Read ; http://www.postfix.org/POSTSCREEN_README.html If you setup postscreen like this this stops about 95% of all problems. Add this part. https://github.com/stevejenkins/hardwarefreak.com-fqrdns.pcre Again, questions ask. ### Before-220 tests (postscreen / DNSBL) postscreen_greet_banner = $myhostname, checking blacklists, please wait. postscreen_greet_wait = 3s postscreen_greet_ttl = 2d postscreen_access_list = permit_mynetworks, cidr:/etc/postfix/cidr/postscreen_whitelist_access.cidr, pcre:/etc/postfix/pcre/fqrdns-max.pcre,...

Scott Robbins wrote: > On Wed, Aug 10, 2011 at 05:11:12PM -0400, m.roth at 5-cent.us wrote: >> This is annoying. I've been trying to get motion working correctly on CentOS 6. First, there was no ffmpeg rpms. Now, I try to install it, and <snip> >> I've run into problems with libfaad being missing before. Here's the real question: how were the ffmpeg and ffmpeg-libs

...------ -------------------------------------------------- -0.0 BAYES_40 BODY: Bayesian spam probability is 40 to 44% [score: 0.4193] 3.5 RCVD_IN_NJABL_DIALUP RBL: NJABL: dialup sender did non-local SMTP [4.35.167.106 listed in dnsbl.njabl.org] 2.6 RCVD_IN_DYNABLOCK RBL: Sent directly from dynamic IP address [4.35.167.106 listed in dnsbl.sorbs.net] 0.1 RCVD_IN_SORBS RBL: SORBS: sender is listed in SORBS [4.35.167.106 listed in dnsbl.sorbs.net] 0.1 RCVD_IN_...

Dear All, its a offtopic question but really apprecite if someone would advise n help i have been running a mil server with sendmail and have sbl-xbl.spamhaus.org as my dnsbl. i had other servers which are alredy out now that is relays.ordb.org and dsbl.org have already been out of my sendmail config. any one knows of ny other servers i could add in my sendmail config apprecite ur help thanks regards Fabian -- This message has been scanned for viruses and d...

On 03/04/2015 09:45 PM, Dave McGuire wrote: > On 03/04/2015 03:37 PM, Oliver Welter wrote: >> Am 04.03.2015 um 21:03 schrieb Dave McGuire: >>> Am 04.03.2015 um 20:12 schrieb Michael Orlitzky: >>>> Please add [DNSBL] support to iptables instead of Dovecot. It's a waste of >>>> effort to code it into every application that listens on the network. (FWIW, I agree that DNSBL hooks have no business being in kernel space. A standard *userland* DNSBL client communicating with iptables and similar by...

...> cidr:/etc/postfix/cidr/postscreen_whitelist_access.cidr, > # https://github.com/stevejenkins/hardwarefreak.com-fqrdns.pcre > pcre:/etc/postfix/pcre/fqrdns-max.pcre, > pcre:/etc/postfix/pcre/fqrdns-plus.pcre, > pcre:/etc/postfix/pcre/fqrdns.pcre, > postscreen_dnsbl_threshold=4 > postscreen_dnsbl_sites= > # blacklists. > b.barracudacentral.org*4 > bad.psky.me*4 > zen.spamhaus.org*4 > dnsbl.cobion.com*2 > bl.spameatingmonkey.net*2 > fresh.spameatingmonkey.net*2 > cbl.ant...