On Apr 23, 2013, at 19:42, Steve Jenkins <stevejenk...@gmail.com> wrote:
> I recently removed TRBLSPAM from my postscreen_dnsbl_sites lists after they > went offline earlier this month (this should be a reminder to do the same for > anyone here who also used them). That got me wondering about what DNSBL sites > others have been successfully using with Postscreen. > > Here's my current setup: > > postscreen_dnsbl_threshold = 3 > postscreen_dnsbl_sites = > zen.spamhaus.org*2, > b.barracudacentral.org*2, > dnsbl.mjabl.org, > bl.spameatingmonkey.net, > dnsbl.ahbl.org, > bl.spamcop.net, > swl.spamhaus.org*-4, > list.dnswl.org=127.[0..255].[0..255].0*-2, > list.dnswl.org=127.[0..255].[0..255].1*-4, > list.dnswl.org=127.[0..255].[0..255].[2..255]*-6 > > This setup has been working pretty well for me, and reduces false positives > by not allowing any single DNSBL to block an incoming connection without > concurrence from at least one other DNSBL. > > I'm wondering if others can recommend any other DNSBLs that I should > consider, or if anyone has any other feedback on my setup. We use ZEN, the BRBL and our own local blacklist. All equal weight, treshold set at 1, no whitelists yet. Pretty boring, I guess, but it works well for us so far. How many false positives do you get if you use ZEN and BRBL as single 'decision makers'? Cya, Jona
