rbl in exim4

[ovsoft]

I'm at most a Linux newbie so I ask your help...
How to activate rbl checking in exim4 for all domains on my webserver?

Thanx a lot

 

[nobaloney]

Make sure you've got the latest version of the exim.conf file; you can check it against the one found here.

Presuming this is the one you have, all you need to do to activate RBL checking is verify you've got the files listed under "MODIFICATION INSTRUCTIONS", then put the domain names (the right side of the @ sign) for which you want RBL implemented, into /etc/virtual/use_rbl_domains.

You don't even have to restart exim.

Jeff

 

[ovsoft]

Ok, it seem to work. Can I test in some way?

Another question: does an email antivirus compatible with DA exists?

 

[nobaloney]

Ok, it seem to work. Can I test in some way?

Wait a day or two and check your /var/log/exim/rejectlog file; you should find lots of entries proving it works.

I hope you didn't leave the "example.com" website listed; you really should have a site of your own for the very occasional false positive, as senders will be notified and will want to get whitelisted.

Another question: does an email antivirus compatible with DA exists?

There are some posts on these forums for community-supported solutions.

Additionally we're working on an open-source version of the exim.conf file that will support VirusBlocker, similarly to how we support SpamBlocker. Certainly DA may decide to use it as well.

We'll also sell a commercial solution at some point, based on our free VirusBlocker.

Jeff

 

[ovsoft]

rejectlog is 15mb big!!!

Another question: where can I configure exim filter for all domains? How can I reject all bounce messages (from postmaster and mailer-daemon)?

 

[nobaloney]

rejectlog is 15mb big!!!

Then you must be rejecting a lot of spam.

Another question:

Oh, was that a question? I thought it was an exclamation. Is your rejectlog being rotated? If not, then you need to figure out why not. Your rejectlog should be significantly smaller than your mainlog, because all the entries in your rejectlog should also be in your mainlog.

where can I configure exim filter for all domains?

What do you mean by "exim filter"?

How can I reject all bounce messages (from postmaster and mailer-daemon)?

Bounce messages have null return paths, which you can search for using exiscan (built in to exim).

But beware; that's what spammers do, so they don't get the bounce messages from all the incorrectly addressed spam they send. You'll find yourself on a lot of blocklists if you do. (including the blocklists your using if you use the default blocklists built into the exim.conf file).

Jeff

 

[different]

I had use the exim.conf you write, but
I have my /var/log/exim/rejectlog is empty,
I can make sure it block much mail, but why I can't see the log, can you help me..?

and another question
if my user's IP is on the list of RBL , like sbl.spamhaus.org
Can he send the mail to server ? even he have the real user account on our server, and use smtp authentication...?
or he will be block by exim?

 

[different]

Another question,
When I use this new conf,
My email system become slower,
every time I try to send email, it will wait for 5 to 20 seconds to wait, and then start to transfer,
it's because the rbl check, or how can I speed up the respose time?

 

[different]

Sorry. one more question..

the log_bandwidth seems only log the email send remote bandwidth??
I mean only when I send the mail from exim port 25 to remote domain, it will be count, but doesn't conut the email I receive or use pop3 to download?

 

[nobaloney]

I had use the exim.conf you write, but
I have my /var/log/exim/rejectlog is empty,
I can make sure it block much mail, but why I can't see the log, can you help me..?

If you're using FreeBSD then the logs may be elsewhere; you'd have to ask someone with FreeBSD experience.

If you haven't implmented SpamBlocker (by populating the /etc/virtual/use_rbl_domains file; see the instructions in the comments near the top of the exim.conf file), then the log may be empty.

and another question
if my user's IP is on the list of RBL , like sbl.spamhaus.org
Can he send the mail to server ? even he have the real user account on our server, and use smtp authentication...?

Hopefully your user isn't a spammer and isn't listed on sbl.spamhaus.org.

But SpamBlocker won't help you know; it will always accept email from your users if they authenticate themselves either by POP before SMTP or SMTP AUTH.

Another question, When I use this new conf, My email system become slower, every time I try to send email, it will wait for 5 to 20 seconds to wait, and then start to transfer, it's because the rbl check, or how can I speed up the respose time?

My machine hasn't gotten slower. SpamAssassin could make things appear slower, but generally not for outgoing email.

We do check for things like reverse DNS, so if you don't have it, or if your DNS is timing out on one server and then checking another, that could be causing a delay. This is now the default DA supplied exim.conf file, and I don't recall seeing any complaints from anyone, so I just don't know why you could be having the problem.

Jeff