you could also use fail2ban for that. You just have to specify a custom
rule (filter) for the spamdyke-log output. Then the sender ip will be
released after a specified timeframe and not blocked forever ;).
(IMHO it is still not a very good idea to block by firewall)
Otto
Sebastian Grewe
Hi,
i am happily using spamdyke on few of my mail servers. i have put a small page
on
comparison of some easy spam blocking ways. please do check it out at,
http://www.shantanukulkarni.org/spam_analysis.html
Shantanu
--
___
spamdyke-users mailing
I'm not a big fan of UCEProtect right now, as their list blocks our outgoing
mail because our ISP is associated with large amounts of spam. This
methodology, while no doubt effective at blocking spam, must generate a lot
of false positives because of this guilt by association philosophy. Our
ISP
yes, but i use their level 1 protection. level 2 3 are indeed
aggressive. but i am also of the opinion that isps are partly responsible
for their clients using their bandwidth to spam and they should
blacklist these customers and take legal action against them.
Shantanu
--
* Joe Canner
Yes, Level 1 protection seems reasonable. We passed level 1 but failed
level 2 and 3 because of other clients using our ISP. I've only had one
recipient so far block us because of this, but I fear this might be just the
beginning.
I agree that ISPs should take some responsibility for their
A possible solution to this problem is to bring your mail server
in-house, and/or use an affordable outbound mail service such as
DynDNS's Mailhop Outbound. If you don't have a static IP address
in-house, DynDNS's CustomDNS service solves that problem affordably.
Disclaimer: I'm not associated
I totally forgot about that - but I am not using the script to block
them forever, just to monitor qmail when a large amount of connections
is coming in (which happens ever so often). Even so I did turn off
the blocking feature since qmail handles it just fine and connections
clear up after a
Sorry to say that I haven't had a chance to check out your script yet,
Sebastian. :(
Speaking of colored and filtered qmail logfiles though, there's a nice
'qmlog' script at qtp.qmailtoaster.com (part of the qmailtoaster-plus
package). It allows easy viewing and searching of qmail (et al)
We actually have a block of static IPs, so that is not our problem. I
suspect our ISP uses the same Class B network that we are on to also provide
dynamic IP addresses to residential customers. There may also be commercial
customers with static IPs engaged in spamming for all I know.
Hey Eric,
As I undestand it qmlog is just a tool to find a specific logfile entry if
you are looking for certain times where a connection has been made.
My script is just checking for spamdyke output, and only specific output
at that. I also am using a while loop to read the lines in instead of
Sorry, I ignored the first part of your post. Our mail server is already
in-house with a static IP. However, the outbound mail service idea may be a
useful way to approach this problem. If it gets worse and the ISP doesn't
do anything about it, that may be worth investigating.
-Original
I've found that using DynDNS services along with a regular dynamic
address is more affordable than going the static IP route (no pun
intended). Such a service level is adequate for most SMBs, but not
appropriate for mission critial environments.
Joe Canner wrote:
Sorry, I ignored the first
After checking out the code in that script I think it might be easier
for me to just start on my script and extend it's functionality to look
for all lines in those logfiles instead of just spamdyke.
I will see what I can do.
Cheers,
Sebastian
Eric Shubert wrote:
Sorry to say that I haven't
Thanks. I'm sure you'll keep us posted! :)
Sebastian Grewe wrote:
After checking out the code in that script I think it might be easier
for me to just start on my script and extend it's functionality to look
for all lines in those logfiles instead of just spamdyke.
I will see what I can do.
Sure will, so here we go.
Attached a modified qmlog script that can be run with the -c option
to add colored output for most log entries in Qmail Toaster. If something
is missing or doesn't match correctly it will have the FIXME tag before
the line.
When running in color mode less output will
15 matches
Mail list logo