On Tue, Apr 02, 2002 at 11:59:09AM -0500, [EMAIL PROTECTED] babbled thus: > Subject: Re: open relays > To: "J.D. Abolins" <[EMAIL PROTECTED]> > Cc: [EMAIL PROTECTED] > X-Mailer: Lotus Notes Release 5.0.8 June 18, 2001 > From: [EMAIL PROTECTED] > Date: Tue, 2 Apr 2002 11:59:09 -0500 > > > I got fed up with trying to restrict relaying through my SMTP server. > Also, since I run a hosting service, I did not want to spend a ton of money > on "Black Hole" services. > They usually charge a fee for the service on a costly per server basis, so > I did the following.
The *only* service which does that is MAPS RBL. I use several free services, and between them, they block about 90% of the spam I see. Here's my script for running rblsmtpd (which sits in front of qmail-smtpd): #!/bin/sh # # Runs qmail-smtpd under rblsmtpd, since inetd thinks we have too many args exec /var/qmail/bin/rblsmtpd -b -t 90 -r relays.ordb.org -r orbs.dorkslayers.com -r dev.null.dk -r relays.osirusoft.com -r bl.spamcop.net -r relays.visi.com /var/qmail/bin/qmail-smtpd 3>&2 2>&1 1>&3 | logger Note the -r options (rbl services). All of these are free - and there are others, as well. You can also see an RBL list comparison here: http://www.sdsc.edu/~jeff/spam/cbc.html > > I migrated my SMTP server to Lotus Domino (for Linux of course) Proprietary SMTP servers tend to get people in trouble. For instance, ORBZ (one of the larger free RBL lists) recently shut down, due to the city of Battle Creek, MI initiating a lawsuit against it's owner, due to the way ORBZ tested mail servers for open relays. The mail server in question has a bug that causes certain messages to create a DoS attack against the server (in this case, entirely accidentally). The mail server in question? Lotus Domino. --- From http://www.theregus.com/content/6/24385.html --- Last August, Gulliver sent a message to the BugTraq mailing list stating that the ORBZ scanner creates "oddly formed mail envelopes that can cause Lotus Domino to enter a mail routing loop" resulted in the crash of a mail server. --------------------------------------------------------- Personally, I've had no trouble whatsoever enabling relaying on my qmail server based on IP address. This enables my internal network to relay messages outside (as is intended), and disallows world+dog to relay. If you need a different control method, many more ways are available. Check http://www.qmail.org/ . -- Mike Edwards Brainbench certified Master Linux Administrator http://www.brainbench.com/transcript.jsp?pid=158188 ----------------------------------- Unsolicited advertisments to this address are not welcome.
