Page 1 of 2 12 LastLast
Results 1 to 20 of 24

Thread: Additional Spam Countermeasures?

  1. #1
    Join Date
    Mar 2005
    Location
    San Diego
    Posts
    51

    Question Additional Spam Countermeasures?

    Several of our users are receiving a very large amount of spam, we are running Spamblocker 4.2.3 with Spamassassin 3.4 using the sought & spamassassin rulesets. These haven't impacted what we are receiving by much.

    Is there anything else we can do to slow the spammers down?

    Thanks.

  2. #2
    Join Date
    Apr 2005
    Location
    GMT +7.00
    Posts
    13,577
    Have you enabled realtime blocklists (RBLs) with exim?

    http://help.directadmin.com/item.php?id=142
    Regards, Alex G.

    - Get the best commercial DirectAdmin support and hire me on poralix.com
    - Follow and like @Poralix on Facebook

  3. #3
    Join Date
    Mar 2005
    Location
    San Diego
    Posts
    51
    Yes, use_rbl_domains is a symlink to domains on all of our systems.

  4. #4
    Join Date
    Aug 2008
    Posts
    4,695
    Not really besides paying for 3rd party spam filtering or buying a spam filter appliance like a barracuda spam filter.

  5. #5
    nobaloney's Avatar
    nobaloney is offline NoBaloney Internet Svcs - In Memoriam †
    Join Date
    Jun 2003
    Location
    California
    Posts
    26,119
    Quote Originally Posted by mjm View Post
    Yes, use_rbl_domains is a symlink to domains on all of our systems.
    Have you enabled all the blocklists, including my optional ones? Unfortunately the best ones may incur a cost or have restrictions on their use.

    Jeff
    +1 951 643-5345
    Third-Party DirectAdmin administration and support
    Dedicated Servers, Dedicated Reseller Accounts
    NoBaloney Internet Services div. Qnito Incorporated
    848 North Rainbow Blvd., Suite #3789
    Las Vegas, NV 89107-1103

  6. #6
    nobaloney's Avatar
    nobaloney is offline NoBaloney Internet Svcs - In Memoriam †
    Join Date
    Jun 2003
    Location
    California
    Posts
    26,119
    Quote Originally Posted by scsi View Post
    Not really besides paying for 3rd party spam filtering or buying a spam filter appliance like a barracuda spam filter.
    My version of SpamBlocker 4 (and maybe DirectAdmin's as well; I'm not usre) offer the Barracuda blocklist.

    Jeff
    +1 951 643-5345
    Third-Party DirectAdmin administration and support
    Dedicated Servers, Dedicated Reseller Accounts
    NoBaloney Internet Services div. Qnito Incorporated
    848 North Rainbow Blvd., Suite #3789
    Las Vegas, NV 89107-1103

  7. #7
    Join Date
    Oct 2004
    Location
    A Coruña, Spain
    Posts
    6,786
    I'm testing in the last month the EFA project, and i must say, it does work pretty good and give end-user the ability to set an email as spam with a link that add the sender-receiver combiantion in an internal blacklist:

    Check this: https://efa-project.org/

    I'd tested it with two of mine domains, and i feel pretty happy with that at point that i'm gonna start soon an implementation script (since everydomain added to DA for now have to be added manually to EFA Server) to use API (if they exist) on EFA Server side.

    Best regards
    SeLLeRoNe - Andrea Iannucci
    Head of Managed Service - Senior DevOps Engineer
    If you need my support write me an E-Mail to Support@CrazyNetwork.it

  8. #8
    Join Date
    Apr 2005
    Location
    GMT +7.00
    Posts
    13,577
    Some time ago I've created a set of scripts to bind Directadmin server with Mailcleaner: http://www.mailcleaner.org/
    I can't share the scripts, they were written by me within a commerce service. Anyway if you might want to try Mailcleaner I could help you as well and write some for you.
    Regards, Alex G.

    - Get the best commercial DirectAdmin support and hire me on poralix.com
    - Follow and like @Poralix on Facebook

  9. #9
    Join Date
    Oct 2004
    Location
    A Coruña, Spain
    Posts
    6,786
    Hi Alex,

    thanks for the link.

    Does this work as forwarding server or it "pretend" to store mail locally? EFA does receive email, inspect them, and forward them to a definied server, does mailcleaner do the same? I did read some info's on their website but wasnt that clear.

    In any case i'm gonna test it today probably

    Best regards
    SeLLeRoNe - Andrea Iannucci
    Head of Managed Service - Senior DevOps Engineer
    If you need my support write me an E-Mail to Support@CrazyNetwork.it

  10. #10
    Join Date
    Apr 2005
    Location
    GMT +7.00
    Posts
    13,577
    I don't remember all the details and I'm not quite sure now how mailcleaner is working. It was an year or so ago. And all what I had to do was a set of scripts to be executed on directadmin server to automatically manage domains/accounts on a Mailcleaner server. As an example when a new domain is added into directadmin we need that domain to be added on the Mailcleaner server. And so on.

    Here what I've found on the site:

    MailCleaner must be installed between the Internet and your final mail server, either by becoming the new MX record for your domain(s) or by getting mail from your frontend gateways. Once filtered, the messages will be forwarded to your destination mail server(s) or next gateway(s).
    http://www.mailcleaner.org/doku.php/...er:description

    So directadmin server is supposed to store all the emails.
    Regards, Alex G.

    - Get the best commercial DirectAdmin support and hire me on poralix.com
    - Follow and like @Poralix on Facebook

  11. #11
    Join Date
    Oct 2004
    Location
    A Coruña, Spain
    Posts
    6,786
    Oh ok, missed that line

    Ok so, it does work exactly as EFA Server. The only doubt i have now is that last release is dated 2012 while EFA-Project is actually live (and i use it on CentOS instead of Debian as for mailcleaner, but that's not actually a problem).

    Also, another difference is that mail cleaner use exim as MTA while EFA does use postfix, but, is not a problem aswell.

    EFA need to have domain created with relative end-server-ip/host set for each domain, so, that would be the only call done via domain_create_post.sh i suppose, have no need to create a set for each email address since the DA server will receive mail for non-valid addresses aswell and reply by itself for this.

    I'll check if mailcleaner need email account to be set, but i suppose not

    So, so far, the only "issue" is the release data which is kinda old... so maybe EFA have most up2date software and community is probably more active.

    Thanks
    SeLLeRoNe - Andrea Iannucci
    Head of Managed Service - Senior DevOps Engineer
    If you need my support write me an E-Mail to Support@CrazyNetwork.it

  12. #12
    Join Date
    Apr 2005
    Location
    GMT +7.00
    Posts
    13,577
    You may try a commerce version http://www.mailcleaner.net/ as well.
    Regards, Alex G.

    - Get the best commercial DirectAdmin support and hire me on poralix.com
    - Follow and like @Poralix on Facebook

  13. #13
    Join Date
    Apr 2005
    Location
    GMT +7.00
    Posts
    13,577
    Quote Originally Posted by SeLLeRoNe View Post
    have no need to create a set for each email address since the DA server will receive mail for non-valid addresses aswell and reply by itself for this.
    Well there were done an interface in Directadmin to list what domains are created in Mailcleaner, then there was a page to enable/disable a domain to use mailcleaner. And some others. To use mailcleaner you might need only one script depending on your needs of course.
    Regards, Alex G.

    - Get the best commercial DirectAdmin support and hire me on poralix.com
    - Follow and like @Poralix on Facebook

  14. #14
    Join Date
    Aug 2006
    Location
    LT, EU
    Posts
    8,069
    I would like to mention https://www.spamexperts.com here, they offer DA plugin as well. Also, it's worth checking "Spam Filtering" section of https://github.com/Exim/exim/wiki/HowTo, especially the greylisting part.
    Martynas Bendorius
    MB Martynas IT. Professional server management company. Official DirectAdmin, CloudLinux, LiteSpeed and Comodo partners.

  15. #15
    Join Date
    Oct 2004
    Location
    A Coruña, Spain
    Posts
    6,786
    Thanks smtalk, but actually spamexperts.com host your mail appliance, while efa and mailcleaner is a "your side" server without need to pay for a service and/or put your mail server elsewhere.

    Thanks for the hint in any case

    I'll check the exim HowTo's soon.

    Regards
    SeLLeRoNe - Andrea Iannucci
    Head of Managed Service - Senior DevOps Engineer
    If you need my support write me an E-Mail to Support@CrazyNetwork.it

  16. #16
    nobaloney's Avatar
    nobaloney is offline NoBaloney Internet Svcs - In Memoriam †
    Join Date
    Jun 2003
    Location
    California
    Posts
    26,119
    I'm very interested in the recent discussion above between Alex and Andrea, but the key question for either one is:

    Is it better than running SpamBlocker?

    Because it blocks more spam?

    Also, I noticed some statement about one (perhaps both) being able to whitelist receiver-sender pair addresses. Will either do the same for blacklisting receiver-sender pairs?

    And can either be run on the same server? Or would either require a separate server?

    Thanks.

    Jeff
    +1 951 643-5345
    Third-Party DirectAdmin administration and support
    Dedicated Servers, Dedicated Reseller Accounts
    NoBaloney Internet Services div. Qnito Incorporated
    848 North Rainbow Blvd., Suite #3789
    Las Vegas, NV 89107-1103

  17. #17
    Join Date
    Oct 2004
    Location
    A Coruña, Spain
    Posts
    6,786
    Hi Jeff,

    yes it does block more spam (lot more) and every email has a signature with a link to add the sender to blacklist, and that blacklist is a single sender-receiver line.

    Regarding the whitelist the admin can add a single sender-receiver whitelist, while, if a message get blocked the first time, the system send to the end-user an email sayint that an email from "sender" has been blocked with a link to unblock it (and so it add to whitelist); if the user ignore/delete that email, the system will never notify anymore the user about same sender that has been blocked.

    Regaring the install on same server i'm not too sure, since some work probably have to be done for prevent port conflict for mail and web (since it does have a web interface which work on 443 and mail server which work on 25).

    FYI it does use mailscanner which seems to be pretty useful and i would love to see it integrated into DA server and exim.

    But for sure, i can do some test for run EFA on DA Server as soon as i do have some free time

    Regards

    Best regards
    SeLLeRoNe - Andrea Iannucci
    Head of Managed Service - Senior DevOps Engineer
    If you need my support write me an E-Mail to Support@CrazyNetwork.it

  18. #18
    nobaloney's Avatar
    nobaloney is offline NoBaloney Internet Svcs - In Memoriam †
    Join Date
    Jun 2003
    Location
    California
    Posts
    26,119
    Thanks, Andrea.

    I suppose we could run a separate server, but lots of smaller hosting companies likely can't afford to do that.

    If we do run another server, then how is email transferred to our main server? Is it strictly a matter of mx priority, or do we need to use a different email port on our own DirectAdmin server?

    Thanks.

    Jeff
    +1 951 643-5345
    Third-Party DirectAdmin administration and support
    Dedicated Servers, Dedicated Reseller Accounts
    NoBaloney Internet Services div. Qnito Incorporated
    848 North Rainbow Blvd., Suite #3789
    Las Vegas, NV 89107-1103

  19. #19
    nobaloney's Avatar
    nobaloney is offline NoBaloney Internet Svcs - In Memoriam †
    Join Date
    Jun 2003
    Location
    California
    Posts
    26,119
    Andrea,

    I thought I'd add this in another post to the thread:

    I'm considering offering an Enterprise Email solution which would either use Horde Webmail or AfterLogic webmail. It would not run DirectAdmin and would not allow webhosting, but would likely use exim. If we move forward with this we'd need of course webmail and the EFA solution, so we might need to somehow proxy the web needs of both; both will need secure https access on the standard port 443.

    Jeff
    +1 951 643-5345
    Third-Party DirectAdmin administration and support
    Dedicated Servers, Dedicated Reseller Accounts
    NoBaloney Internet Services div. Qnito Incorporated
    848 North Rainbow Blvd., Suite #3789
    Las Vegas, NV 89107-1103

  20. #20
    Join Date
    Oct 2004
    Location
    A Coruña, Spain
    Posts
    6,786
    It is just a matter of MX priority.

    On the EFA server the only setup would be add the domains in this way:

    domain.tld final-server-ip

    Also, why you dont think on roundcube as webmail? Does the other have really something better?

    Regards
    SeLLeRoNe - Andrea Iannucci
    Head of Managed Service - Senior DevOps Engineer
    If you need my support write me an E-Mail to Support@CrazyNetwork.it

Page 1 of 2 12 LastLast

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •