PDA

View Full Version : Verifying that the blacklists work



evil_smurf
04-25-2008, 08:14 AM
I am currently in the middle of migrating quite a few DA user accounts over to a new cleanly-installed DA server. I am using SpamBlocker 2, and just would like to verify that the blacklist is working, as I have not had a blacklist hit yet on the domain I moved over as a test yesterday, which is odd.

below is the section for the dns blacklists, is there anything I am missing or that I need to check to ensure that the dns blacklists are being used?

Thanks for your help!



# deny so-called "legal" spammers"
deny message = Email blocked by LBL - to unblock contact us at http://wwwxxx.com/support.php
# only for domains that do want to be tested against RBLs
domains = +use_rbl_domains
sender_domains = +blacklist_domains

# deny using hostname in bad_sender_hosts blacklist
deny message = Email blocked by BSHL - to unblock contact us at http://www.xxx/support.php
# only for domains that do want to be tested against RBLs
domains = +use_rbl_domains
hosts = +bad_sender_hosts

# deny using IP in bad_sender_hosts blacklist
deny message = Email blocked by BSHL - to unblock contact us at http://www.xxxxx.com/support.php
# only for domains that do want to be tested against RBLs
domains = +use_rbl_domains
hosts = +bad_sender_hosts_ip

# deny using email address in blacklist_senders
deny message = Email blocked by BSAL - to unblock contact us at http://wwwxxxx.com/support.php
domains = use_rbl_domains
deny senders = +blacklist_senders

# By default we do NOT require sender verification.
# Sender verification denies unless sender address can be verified:
# If you want to require sender verification, i.e., that the sending
# address is routable and mail can be delivered to it, then
# uncomment the next line. If you do not want to require sender
# verification, leave the line commented out

#require verify = sender

# deny using .spamhaus
deny message = Email blocked by SPAMHAUS - to unblock contact us at http://www.xxxxcom/support.php
# only for domains that do want to be tested against RBLs
domains = +use_rbl_domains
dnslists = sbl.spamhaus.org

# deny using ordb
# deny message = Email blocked by ORDB - to unblock contact us at http://www.xxxxcom/support.php
# # only for domains that do want to be tested against RBLs
# domains = +use_rbl_domains
# dnslists = relays.ordb.org

# deny using sorbs smtp list
deny message = Email blocked by SORBS - to unblock contact us at http://www.xxxxx.com/support.php
# only for domains that do want to be tested against RBLs
domains = +use_rbl_domains
dnslists = dnsbl.sorbs.net=127.0.0.5

# Next deny stuff from more "fuzzy" blacklists
# but do bypass all checking for whitelisted host names
# and for authenticated users

# deny using spamcop
deny message = Email blocked by SPAMCOP - to unblock contact us at http://www.xxxxx.com/support.php
hosts = !+relay_hosts
domains = +use_rbl_domains
!authenticated = *
dnslists = bl.spamcop.net

# deny using njabl
deny message = Email blocked by NJABL - to unblock contact us at http://www.xxxxx.com/support.php
hosts = !+relay_hosts
domains = +use_rbl_domains
!authenticated = *
dnslists = dnsbl.njabl.org

# deny using cbl
deny message = Email blocked by CBL - to unblock contact us at http://www.xxxxx.com/support.php
hosts = !+relay_hosts
domains = +use_rbl_domains
!authenticated = *
dnslists = cbl.abuseat.org

# deny using all other sorbs ip-based blocklist besides smtp list
deny message = Email blocked by SORBS - to unblock contact us at http://www.xxxx.com/support.php
hosts = !+relay_hosts
domains = +use_rbl_domains
!authenticated = *
dnslists = dnsbl.sorbs.net!=127.0.0.6

# deny using sorbs name based list
deny message = Email blocked by SORBS - to unblock contact us at http://www.xxxx.com/support.php
domains =+use_rbl_domains
# rhsbl list is name based
dnslists = rhsbl.sorbs.net/$sender_address_domain

floyd
04-25-2008, 03:41 PM
domainlist use_rbl_domains = lsearch;/etc/virtual/use_rbl_domains

Any domains in /etc/virtual/use_rbl_domains?

evil_smurf
04-25-2008, 06:27 PM
Nope, that's a blank file. I compared it with my old server and the old one had it as a symlink to /etc/virtual/domains

symlink created!


Thanks!

chrissoumil
05-14-2008, 11:03 PM
If your email server IP is blacklisted, because of spamming accusations, our web based system will let you know, whenever you are blacklisted and provide information on how to get delisted.
http://www.blacklistedip.com/email-blacklist.php

nobaloney
05-15-2008, 06:09 PM
A comprehensive free manual tool for checking to see if an IP# is on a blocklist may be found here (http://www.robtex.com/rbl/). Be sure to check your server's main IP# (the one exim uses to send email) and not the IP#, if any, reserved for your domain.

Jeff