On Fri, 28 Aug 2020 15:21:53 +0100
RW wrote:
> " WHERE ARE THE DATA FILES?
>
> For all of these, right click , then 'save as' - then later you can
> set them up for frequent downloads (every minute!) using CURL or
> WGET
If anyone's using FreeBSD it's best to avoid fetch -m.
fetch doesn't
On Fri, 28 Aug 2020 08:10:17 -0500
bwalton+1576874...@leepfrog.com wrote:
> Thanks Rob!
>
> I've done an initial download of the data files and will use, as
> requested, wget's timestamping flag. How, often do you expect these
> files to be updated? Just trying to determine how often to check f
Thanks Rob!
I've done an initial download of the data files and will use, as
requested, wget's timestamping flag. How, often do you expect these
files to be updated? Just trying to determine how often to check for
updates.
Thanks,
Bryan
On Tue, 25 Aug 2020, Rob McEwen wrote:
On 8/25/2020 11:04 PM, John Hardin wrote:
I just wrote something similar to generate a rule, in case for some reason
you don't want to use a plugin. Let me know if there's any interest in it.
yes - please share!
http://www.impsec.org/~jhardin/antispam
On Tue, August 25, 2020 23:07, Rob McEwen wrote:
> Thanks, John Capo, for the suggestions! Honestly, I'm at the end of my rope -
> completely burned
> out from creating this - desperately needing to catch up in other areas of my
> business so that I
> can pay my bills. And I have other ideas for
Here's mine, had it running as a regular cron job for a few days now.
On Wed, 26 Aug 2020 at 04:08, Rob McEwen wrote:
> On 8/25/2020 11:04 PM, John Hardin wrote:
> > I just wrote something similar to generate a rule, in case for some
> > reason you don't want to use a plugin. Let me know if ther
On 8/25/2020 11:04 PM, John Hardin wrote:
I just wrote something similar to generate a rule, in case for some
reason you don't want to use a plugin. Let me know if there's any
interest in it.
yes - please share!
--
Rob McEwen
https://www.invaluement.com
+1 (478) 475-9032
Thanks, John Capo, for the suggestions! Honestly, I'm at the end of my
rope - completely burned out from creating this - desperately needing to
catch up in other areas of my business so that I can pay my bills. And I
have other ideas for how to make this data even better that I'm trying
to get
On Tue, 25 Aug 2020, John Capo wrote:
Create a file like this from the ids in
https://www.invaluement.com/spdata/sendgrid-id-dnsbl.txt
/^bounces\+2191708-[0-9a-f]{4}-/ REJECT Phish from compromised Sendgrid
account
/^bounces\+4227563-[0-9a-f]{4}-/ REJECT Phish from compromised Sendgrid
accou
On 2020-08-25 11:42, Matus UHLAR - fantomas wrote:
well, do we have anything available now to block at SMTP level?
- postfix policy server?
- milter?
so far I have noticed only SA plugins. Which is not bad, but that HUGE
advantage is not usable now.
Nothing elegant about this but it was easy
On Tue, Aug 25, 2020 at 08:29:55PM +0200, Benny Pedersen wrote:
> Rob McEwen skrev den 2020-08-25 19:20:
>
> > PRO TIP: Instead of complaining about this problem on this thread -
> > why not go to the discussion list or forum of your preferred MTA - and
> > ask them to implement it?
>
> maybe mak
On 8/25/2020 2:29 PM, Benny Pedersen wrote:
maybe make clamav sigs ?
Benny,
Thanks for your other suggestions - those are worth exploring.
Also - the Clamav Sigs is not a bad idea - but even besides the fact
that (like SA rules), Clamav is content filtering and not at the
SMTP-Envelope lev
Rob McEwen skrev den 2020-08-25 19:20:
PRO TIP: Instead of complaining about this problem on this thread -
why not go to the discussion list or forum of your preferred MTA - and
ask them to implement it?
maybe make clamav sigs ?
is mimedefang working still ?, special plugins needed ?, i just
Matus UHLAR - fantomas skrev den 2020-08-25 17:42:
well, do we have anything available now to block at SMTP level?
- postfix policy server?
- milter?
so far I have noticed only SA plugins. Which is not bad, but that HUGE
advantage is not usable now.
fuglu
i reject highscore spams, just setup
On 8/25/2020 1:20 PM, Rob McEwen wrote:
but I can do everything, at least not all at once
*can't do
--
Rob McEwen
https://www.invaluement.com
On 8/25/2020 11:42 AM, Matus UHLAR - fantomas wrote:
well, do we have anything available now to block at SMTP level?
- postfix policy server?
- milter?
so far I have noticed only SA plugins. Which is not bad, but that HUGE
advantage is not usable now.
And likewise - 48 hours ago - a SpamAssas
--On Saturday, August 22, 2020 11:15 AM -0400 Jered Floyd
wrote:
Like most ISPs, they have a feedback loop to remove malicious users. I
assume it is too slow, so a SendGrid account ID RBL would provide
meaningful value.
On 8/22/2020 3:35 PM, Kenneth Porter wrote:
Would not Pyzor accomplish t
Hi Rob
This works like a charm, blocking a lot of: bounces+8465718 atm.
Thank you for your excellent plugin!
Mit freundlichen Grüssen
-Benoît Panizzon-
--
I m p r o W a r e A G-Leiter Commerce Kunden
__
Zurlindenstrasse 29
The following plugin extracts the SendGrid ID to a Tag, now we can use it
with askdns..
https://github.com/fmbla/spamassassin-sendgrid
Paul
On Sun, 23 Aug 2020 at 20:42, Giovanni Bechis wrote:
> On 8/21/20 9:28 PM, Rob McEwen wrote:
> > ANNOUNCEMENT: The NEW invaluement "Se
On 8/21/20 9:28 PM, Rob McEwen wrote:
> ANNOUNCEMENT: The NEW invaluement "Service Provider DNSBLs" - 1st one for
> Sendgrid-spams!
>
> ...a collection of a new TYPE of DNSBL, with the FIRST of these having a
> focus on Sendgrid-sent spams. AND - there is a FREE version
- On Aug 22, 2020, at 3:35 PM, Kenneth Porter sh...@sewingwitch.com wrote:
>> Like most ISPs, they have a feedback loop to remove malicious users. I
>> assume it is too slow, so a SendGrid account ID RBL would provide
>> meaningful value.
>
> Would not Pyzor accomplish the same thing? Sub
On 8/22/2020 3:35 PM, Kenneth Porter wrote:
--On Saturday, August 22, 2020 11:15 AM -0400 Jered Floyd
wrote:
Like most ISPs, they have a feedback loop to remove malicious users. I
assume it is too slow, so a SendGrid account ID RBL would provide
meaningful value.
Would not Pyzor accomplish
--On Saturday, August 22, 2020 11:15 AM -0400 Jered Floyd
wrote:
Like most ISPs, they have a feedback loop to remove malicious users. I
assume it is too slow, so a SendGrid account ID RBL would provide
meaningful value.
Would not Pyzor accomplish the same thing? Submit the SendGrid spam to
- On Aug 21, 2020, at 10:37 PM, Philip Prindeville
philipp_s...@redfish-solutions.com wrote:
> I fail to see the point: that we do the work that sendgrid should be doing,
> but
> on a duplicative scale?
>
> Why don’t they police themselves?
Presumably for the same reasons we filter spam
Sendgrid and their likes...
Checking 1 days logs for 1 domain, I see that of the 17 SendGrid mails to hit
my antispam gateway, 17 of them were spam from 9 distinct senders.
I can't deal with hunting spammers like that, giving a nice little score the
spam tools that allow this kind of mass maili
@lbutlr skrev den 2020-08-22 08:03:
On 21 Aug 2020, at 14:15, Benny Pedersen wrote:
blacklist_from *+14927644-*
I think adding 5.0 to all sendgrid mail is the best idea I've heard.
Sendgrid makes me long for the days of the SPEWS RBL.
i am soon to be tired of it to add it to rpz in bind9
On 21 Aug 2020, at 14:15, Benny Pedersen wrote:
> blacklist_from *+14927644-*
I think adding 5.0 to all sendgrid mail is the best idea I've heard.
Sendgrid makes me long for the days of the SPEWS RBL.
--
These are the thoughts that kept me out of the really good schools.
-- George Car
On 8/22/20 4:37 AM, Philip Prindeville wrote:
On Aug 21, 2020, at 1:28 PM, Rob McEwen wrote:
ANNOUNCEMENT: The NEW invaluement "Service Provider DNSBLs" - 1st one for
Sendgrid-spams!
...a collection of a new TYPE of DNSBL, with the FIRST of these having a focus
on Sendgrid-
> On Aug 21, 2020, at 1:28 PM, Rob McEwen wrote:
>
> ANNOUNCEMENT: The NEW invaluement "Service Provider DNSBLs" - 1st one for
> Sendgrid-spams!
>
> ...a collection of a new TYPE of DNSBL, with the FIRST of these having a
> focus on Sendgrid-sent spams. A
Rob McEwen skrev den 2020-08-21 21:28:
ANNOUNCEMENT: The NEW invaluement "Service Provider DNSBLs" - 1st one
for Sendgrid-spams!
(1) Sendgrid IDs that are found OFTEN in the SMTP-ENVELOPE FROM address
of Sendgrid-sent messages.
EXAMPLE:
So this THIS case, 14927644 is the ID. No
ANNOUNCEMENT: The NEW invaluement "Service Provider DNSBLs" - 1st one
for Sendgrid-spams!
...a collection of a new TYPE of DNSBL, with the FIRST of these having a
focus on Sendgrid-sent spams. AND - there is a FREE version of this -
that can be used NOW! (/well... might need a Sp
31 matches
Mail list logo