More than one dns-based spam filters with sendmail?
Dear List, currently I ask ordb.org whether mail comes from an open relay. But this covers not all the known spam-sources. So it would be nice to have one or two other dns-based relay checks in my sendmail rules. So I have FEATURE(`dnsbl',`relays.ordb.org',`Rejected - see http://ordb.org/')dnl FEATURE(`dnsbl',`blackwholes.wirehup.net',`Rejected - see http://domea.wirehup.nl/error/erros.html')dnl set in the mc-file, I generate the sendmail.cf from. But It seems that sendmail only asks the first dns server and if this states the relay as "not known as an open relay" it accepts the connection. How do I get sendmail to do more relay checks? Thanks in advance Thom -- ------------------------------------------------------------------- bye bye (c) by Thom | Thorsten Marquardt | EMail: THOM@kaupp.chemie.uni-oldenburg.de | Member of the pzt project. | http://kaupp.chemie.uni-oldenburg.de/pzt -------------------------------------------------------------------
On Friday 21 June 2002 12:26, Thorsten Marquardt wrote: (snip) :: I have :: :: FEATURE(`dnsbl',`relays.ordb.org',`Rejected - see http://ordb.org/')dnl :: FEATURE(`dnsbl',`blackwholes.wirehup.net',`Rejected - see http://domea.wirehup.nl/error/erros.html')dnl :: :: set in the mc-file, I generate the sendmail.cf from. But It seems that sendmail only :: asks the first dns server and if this states the relay as "not known as an open relay" it :: accepts the connection. :: :: How do I get sendmail to do more relay checks? :: Hi Thorsten, I'mpresently using 3 different blocklists in my Sendmail setup (SuSE 7.3, 8.11.6). They were merely added the same way you did and have work flawless ever since. Below is a copy of what went in my sendmail.mc. Have you tried grepping your sendmail.cf for instances of "dnsbl", just to verify that all "features" was properly added by the m4 macro ?? -- FEATURE(`dnsbl',`bl.spamcop.net',` Mail from $&{client_addr} rejected - Spammer!; see http://spamcop.net/bl.shtml')dnl FEATURE(`dnsbl',`relays.osirusoft.com',` Mail from $&{client_addr} rejected - Spammer!; see http://relays.osirusoft.com')dnl FEATURE(`dnsbl',`relays.ordb.org',` Mail from $&{client_addr} rejected - Open relay!; see http://www.ordb.org')dnl -- /Mikkel -- () ascii ribbon campaign - against html mail /\ PGPkey @ http://suffocated.org/key.asc
Hi Mikkel,
Hi Thorsten,
I'mpresently using 3 different blocklists in my Sendmail setup (SuSE 7.3, 8.11.6).
mine is SuSE 7.1 with Sendmail 8.11.2.
They were merely added the same way you did and have work flawless ever since. Below is a copy of what went in my sendmail.mc. Have you tried grepping your sendmail.cf for instances of "dnsbl", just to verify that all "features" was properly added by the m4 macro ??
This is what m4 build from the mc-file. But I don't understand a single word of this :-( --- hope I cut the right sequence --- # DNS based IP address spam list relays.ordb.org R$* $: $&{client_addr} R::ffff:$-.$-.$-.$- $: <?> $(host $4.$3.$2.$1.relays.ordb.org. $: OK $) R$-.$-.$-.$- $: <?> $(host $4.$3.$2.$1.relays.ordb.org. $: OK $) R<?>OK $: OKSOFAR R<?>$+ $#error $@ 5.7.1 $: Rejected - see http://ordb.org/ # DNS based IP address spam list blackholes.wirehub.net R$* $: $&{client_addr} R::ffff:$-.$-.$-.$- $: <?> $(host $4.$3.$2.$1.blackholes.wirehub.net. $: OK $) R$-.$-.$-.$- $: <?> $(host $4.$3.$2.$1.blackholes.wirehub.net. $: OK $) R<?>OK $: OKSOFAR R<?>$+ $#error $@ 5.7.1 $: "Rejected - see http://doema.wirehub.nl/error/errors.html" Does this look similar to your sendmail.cf? Thom -- ------------------------------------------------------------------- bye bye (c) by Thom | Thorsten Marquardt | EMail: THOM@kaupp.chemie.uni-oldenburg.de | Member of the pzt project. | http://kaupp.chemie.uni-oldenburg.de/pzt -------------------------------------------------------------------
On Friday 21 June 2002 15:24, Thorsten Marquardt wrote: :: Hi Mikkel, Hi, :: :: This is what m4 build from the mc-file. But I don't understand a single word :: of this :-( --- hope I cut the right sequence --- *lol* you don't really have to, that's what the mc-file is for. However it looks OK. :: # DNS based IP address spam list relays.ordb.org :: R$* $: $&{client_addr} :: R::ffff:$-.$-.$-.$- $: <?> $(host $4.$3.$2.$1.relays.ordb.org. $: OK $) :: R$-.$-.$-.$- $: <?> $(host $4.$3.$2.$1.relays.ordb.org. $: OK $) :: R<?>OK $: OKSOFAR :: R<?>$+ $#error $@ 5.7.1 $: Rejected - see http://ordb.org/ :: :: # DNS based IP address spam list blackholes.wirehub.net :: R$* $: $&{client_addr} :: R::ffff:$-.$-.$-.$- $: <?> $(host $4.$3.$2.$1.blackholes.wirehub.net. $: OK $) :: R$-.$-.$-.$- $: <?> $(host $4.$3.$2.$1.blackholes.wirehub.net. $: OK $) :: R<?>OK $: OKSOFAR :: R<?>$+ $#error $@ 5.7.1 $: "Rejected - see http://doema.wirehub.nl/error/errors.html" As suggested earlier today on this list, it could be a faulty/mispelled address. It doesn't appear to be if you check: http://basic.wirehub.nl/blackholes.html Try adding the FEATURE using the suggested syntax: FEATURE(`enhdnsbl', `blackholes.wirehub.net', `"571 ACCESS DENIED to "$&{client_name}" by Wirehub! Internet DNSBL (http://doema.wirehub.nl/error/errors.html)"', `t', `127.0.0.2.')dnl And of course restart Sendmail. Hope you'll get it to work this time around. /Mikkel -- () ascii ribbon campaign - against html mail /\ PGPkey @ http://suffocated.org/key.asc
Dear Mikkel, dear list, I should'nt wear sunglasses. It ain't wirehub.net but wirehub.nl . It will work this time. Thanks Thom -- ------------------------------------------------------------------- bye bye (c) by Thom | Thorsten Marquardt | EMail: THOM@kaupp.chemie.uni-oldenburg.de | Member of the pzt project. | http://kaupp.chemie.uni-oldenburg.de/pzt -------------------------------------------------------------------
On Friday 21 June 2002 15:58, Thorsten Marquardt wrote: :: Dear Mikkel, dear list, :: :: :: I should'nt wear sunglasses. It ain't wirehub.net but wirehub.nl . :: :: It will work this time. :: Beats me! It looks like you got it right the first time. According to Wirehub. the zone resides at: blackholes.wirehub.net. http://basic.wirehub.nl/blackholes.html /Mikkel -- () ascii ribbon campaign - against html mail /\ PGPkey @ http://suffocated.org/key.asc
On Fri, 21 Jun 2002, Thorsten Marquardt wrote:
FEATURE(`dnsbl',`relays.ordb.org',`Rejected - see http://ordb.org/')dnl FEATURE(`dnsbl',`blackwholes.wirehup.net',`Rejected - see http://domea.wirehup.nl/error/erros.html')dnl
set in the mc-file, I generate the sendmail.cf from. But It seems that sendmail only asks the first dns server and if this states the relay as "not known as an open relay" it accepts the connection.
In general this setup should work but blackwholes.wirehup.net seems to be discontinued. A `dig wirehup.net' returns with status SERVFAIL. You could try a different DNSBL instead. -- Best regards / Mit freundlichen Grüßen Andreas Amann <andreas.amann@epost.de>
Andreas Amann wrote:
FEATURE(`dnsbl',`blackwholes.wirehup.net',`Rejected - see http://domea.wirehup.nl/error/erros.html')dnl
In general this setup should work but blackwholes.wirehup.net seems to be discontinued. A `dig wirehup.net' returns with status SERVFAIL.
cause it's wirehub.nl ;) http://doema.wirehub.nl/error/errors.html Have fun. -- Web: http://www.darkman.de - IRC: irc://irc.d-t-net.de Realitaet ist nur die Wahrnehmung einer Einbildung (c) by Sven 'Darkman' Michels 1999-2002
participants (4)
-
Andreas Amann -
Mikkel Riis -
Sven 'Darkman' Michels -
Thorsten Marquardt