Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

Is this group alive?

9 views
Skip to first unread message

KIKI

unread,
Apr 25, 2019, 9:03:04 PM4/25/19
to
anybody here?

William Unruh

unread,
Apr 25, 2019, 11:45:38 PM4/25/19
to
On 2019-04-26, KIKI <hf...@ueur.dl> wrote:
> anybody here?

Do you have a question?

KIKI

unread,
Sep 26, 2020, 11:32:30 AM9/26/20
to
Hi

Yes I have a very big question :-)
I have been using postfix for a couple of years, it is definitely my
favorite MTA. I don't have problems with it but I have a question
regarding mail filtering especially RBL lists.

Is there a way to create or use existing a kind of RBL list but with
email addresses like:

spam...@gmail.com
spam...@yahoo.com

and so on?

I can do it locally on my server but it would be more robust to have
email addresses added by community.
I know how the RBL works, I know it is DNS but such RBL-like mechanism
for email addresses would be nice.

William Unruh

unread,
Sep 26, 2020, 4:33:15 PM9/26/20
to

You might want to make the Subject have something to do with the
content. Why should anyone read this message since the Subject line is so
silly.

An global RBL list can be somewhat dangerous since you never have any idea of
why name/addresses/etc are on the list. Some malicious actor could
decide that you belong there and submit/enter your name into the list.
FAr better for you to have your own where you know why you entered the
location.

On 2020-09-26, KIKI <hf...@ueur.dl> wrote:
> On 26.04.2019 05:45, William Unruh wrote:
>> On 2019-04-26, KIKI <hf...@ueur.dl> wrote:
>>> anybody here?
>>
>> Do you have a question?
>>
>
> Hi
>
> Yes I have a very big question :-)
> I have been using postfix for a couple of years, it is definitely my
> favorite MTA. I don't have problems with it but I have a question
> regarding mail filtering especially RBL lists.
>
> Is there a way to create or use existing a kind of RBL list but with
> email addresses like:
>
> spam...@gmail.com
> spam...@yahoo.com
>
> and so on?
>
> I can do it locally on my server but it would be more robust to have
> email addresses added by community.

The "community" includes a lot of people whose judgement I would
question.

KIKI

unread,
Oct 14, 2020, 9:11:04 AM10/14/20
to
On 14.10.2020 09:43, Johann Beretta wrote:

>> Is there a way to create or use existing a kind of RBL list but with
>> email addresses like:
>>
>> spam...@gmail.com
>> spam...@yahoo.com
>>
>
> Practically? No.
>

I mean the list already exists and can be used if you use exim.
I try to find similar mechanism for postfix.

> I'm gathering you want people to be able to add email addresses to this
> "master list", yes?

Not exactly and not random people.

> What's to stop me from dumping several billion randomly generated email
> addresses into it?

You probably would not be able to add any address to this list.

> What's to stop anyone from doing that? How do you prevent someone from
> dumping legit email addresses, into your system, that were forged an
> associated with spam. Nobody can know all the "legit" email addresses
> out there.

Polish lists are maintained by MTA administrators and not random people.
You can't be a Joe from the street. They select and pick people
themselves. You can't apply to be a member. I tried myself but I did not
have any anti spam related history, I don't run a blog or whatever so
they did not want to talk to me too much. They offer a membership to
people they know and every such a member, as they write, add their
spammers to the common database. I could also be a member but they don't
want me yet :-) I have some incoming spams and I could feed the database
also.
This is probably due to your concerns but what I can tell you polspam.pl
works great here in Poland. When I added it's RBLs to the Postfix I
noticed 99% reduction of spam instantly.
Polspam.pl also uses collateral banning, not only the spamming domain
but also a hostname. The domain goes to the rhsbl (domains) but
hostnam's IP goes to the bl (IP addresses). This is extremely effective
since spammers use foreign providers and MTA administrator has two lists
(even more) to chose from.

Please read here: https://polspam.pl/dlst.php

I am a very big fan of such initiatives.


> Filtering based on email address is less than pointless. Email addresses
> are infinitely forgeable. Domain filtering would be better than that,
> and still practically pointless.

Yes they are forgeable but there are more and more spammers who realized
that creating some Gmail accounts may prevent RBL from listing the whole
Gmail. You can always check SPF, DKIM and DMARC of google and at the end
you could check blaclist with emails if the Gmail is a legit sender.

Postfix lacks such functionality, one or two simple commands to analyze
proper headers, not only domains...
Please read the second topic, I described it.


0 new messages