So, all a spammer has to do is add a DKIM record to his domain, in order to avoid getting blocked by RBL's?
----- Original Message ----- From: Thomas Eckardt [mailto:thomas.ecka...@thockar.com] To: For Users of ASSP [mailto:assp-user@lists.sourceforge.net] Sent: Mon, 18 Jul 2016 09:21:25 +0100 Subject: Re: [Assp-user] RBL_not_checked_for_some_ema ils? > It makes no sense to block a mail by RBL (IP) if it passed the DKIM check. > Other domains may use the same sending IP. In this case it is better to > block the domain. > > Thomas > > > > > > > > Von: "Andy Knuts" <a...@knuts.be> > An: "For Users of ASSP" <assp-user@lists.sourceforge.net> > Datum: 16.07.2016 15:22 > Betreff: Re: [Assp-user] RBL_not_checked_for_some_ema ils? > > > > Well, it does not seem to do any RBL check if DKIM has passed. > Looking assp.pl I see this: > > ... > mlog($fh,"$tlit DKIM signature $this->{dkimverified} - $detail - > sender policy is: $dkimwhy_s - author policy is: $dkimwhy_a") if > $ValidateSenderLog && $DoDKIM>=2; > $this->{rwlok}=1; > ... > > So it sets rwlok=1 if DKIM has passed. Commenting this out makes RBL check > works no matter if DKIM has passed or not. > > Kind regards, > Andy > > ----- Original Message ----- > From: Thomas Eckardt > [mailto:thomas.ecka...@thockar.com] > To: For Users of ASSP > [mailto:assp-user@lists.sourceforge.net] > Sent: Sat, 16 Jul 2016 11:50:59 > +0100 > Subject: Re: [Assp-user] RBL_not_checked_for_some_emails? > > > > RBL is skipped in the following cases. > > > > - a RBLCache entry is found (OK - not listed) > > - acceptallmail > > - ISPIP > > - noprocessing > > - RWL > > - whitelisted > > - noRBL > > - outgoing or local mail > > - contentonly > > > > > > Thomas > > > > > > > > > > > > > > Von: "Andy Knuts" <a...@knuts.be> > > An: assp-user@lists.sourceforge.net > > Datum: 14.07.2016 11:45 > > Betreff: [Assp-user] RBL_not_checked_for_some_emails? > > > > > > > > My ASSP is filtering a lot of spam, so far so good. > > But most of the spam that still gets in my mailbox is sent from IP's > > listed on b.barracudacentral.org. > > For some reason ASSP is not checking the RBL lists for those emails > while > > it does check RBL's for many other mails. > > I enabled verbose logging for dnsbl and I can see it doing a lot of RBL > > check for many mails. > > For some reason it's just not checking the RBL's for some emails and > they > > end up in my mailbox. > > > > I have been investigating this for a while and i THINK ASSP is not > > checking RBL's if DKIM has passed, is this correct? > > > > If yes, can we modify this behaviour? > > > > Thanks > > > > > ------------------------------------------------------------------------------ > > What NetFlow Analyzer can do for you? Monitors network bandwidth and > > traffic > > patterns at an interface-level. Reveals which users, apps, and protocols > > > are > > consuming the most bandwidth. Provides multi-vendor support for NetFlow, > > > J-Flow, sFlow and other flows. Make informed decisions using capacity > > planning > > reports.http://sdm.link/zohodev2dev > > _______________________________________________ > > Assp-user mailing list > > Assp-user@lists.sourceforge.net > > https://lists.sourceforge.net/lists/listinfo/assp-user > > > > > > > > > > > > > > DISCLAIMER: > > ******************************************************* > > This email and any files transmitted with it may be confidential, > legally > > privileged and protected in law and are intended solely for the use of > the > > > > individual to whom it is addressed. > > This email was multiple times scanned for viruses. There should be no > > known virus in this email! > > ******************************************************* > > > > > > ------------------------------------------------------------------------------ > What NetFlow Analyzer can do for you? Monitors network bandwidth and > traffic > patterns at an interface-level. Reveals which users, apps, and protocols > are > consuming the most bandwidth. Provides multi-vendor support for NetFlow, > J-Flow, sFlow and other flows. Make informed decisions using capacity > planning > reports.http://sdm.link/zohodev2dev > _______________________________________________ > Assp-user mailing list > Assp-user@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/assp-user > > > > > > > DISCLAIMER: > ******************************************************* > This email and any files transmitted with it may be confidential, legally > privileged and protected in law and are intended solely for the use of the > > individual to whom it is addressed. > This email was multiple times scanned for viruses. There should be no > known virus in this email! > ******************************************************* > > ------------------------------------------------------------------------------ What NetFlow Analyzer can do for you? Monitors network bandwidth and traffic patterns at an interface-level. Reveals which users, apps, and protocols are consuming the most bandwidth. Provides multi-vendor support for NetFlow, J-Flow, sFlow and other flows. Make informed decisions using capacity planning reports.http://sdm.link/zohodev2dev _______________________________________________ Assp-user mailing list Assp-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/assp-user
