Changes

From SME Server
Jump to navigationJump to search

Updating from SME 7.1.x or earlier (view source)

Revision as of 10:27, 27 November 2015

247 bytes removed ,  10:27, 27 November 2015
modified Note box content
Line 79: Line 79:  
RHSBL or ''Right-Hand Side Black List'': Search for known spam hosts by host name.   
 
RHSBL or ''Right-Hand Side Black List'': Search for known spam hosts by host name.   
   −
If you want to try out the RHSBL servers configured by default in SME 7.2:
+
If you want to try out the RHSBL servers configured by default in SME:
 
  <nowiki>config delprop qpsmtpd SBLList
 
  <nowiki>config delprop qpsmtpd SBLList
config setprop qpsmtpd SBLList multi.surbl.org:black.uribl.com\
+
config setprop qpsmtpd SBLList dbl.spamhaus.org:multi.surbl.org:black.uribl.com:rhsbl.sorbs.net
:rhsbl.sorbs.net:bulk.rhs.mailpolice.com:fraud.rhs.mailpolice.com\
  −
:porn.rhs.mailpolice.com:adult.rhs.mailpolice.com:ex.dnsbl.org
   
signal-event email-update</nowiki>
 
signal-event email-update</nowiki>
    
This will enable the following SBL servers for your system.  Be sure to check them out to see if they are consistent with your policies before enabling them.  Don't forget that RHSBL is '''disabled''' by default in SME!
 
This will enable the following SBL servers for your system.  Be sure to check them out to see if they are consistent with your policies before enabling them.  Don't forget that RHSBL is '''disabled''' by default in SME!
 +
* [http://www.spamhaus.org/ dbl.spamhaus.org]
 
* [http://www.surbl.org/ multi.surbl.org]
 
* [http://www.surbl.org/ multi.surbl.org]
 
* [http://www.uribl.com/about.shtml black.uribl.com]
 
* [http://www.uribl.com/about.shtml black.uribl.com]
 
* [http://www.au.sorbs.net/using.shtml rhsbl.sorbs.net]
 
* [http://www.au.sorbs.net/using.shtml rhsbl.sorbs.net]
* [http://rhs.mailpolice.com/ bulk.rhs.mailpolice.com]
  −
* [http://fraud.rhs.mailpolice.com/ fraud.rhs.mailpolice.com]
  −
  Note:  block.mailpolice.com combines the bulk & porn lists into one
  −
* [http://porn.rhs.mailpolice.com/ porn.rhs.mailpolice.com]
  −
* [http://adult.rhs.mailpolice.com/ adult.rhs.mailpolice.com]
  −
* [http://www.dnsbl.org/ex.dnsbl.php3 ex.dnsbl.org]
      
<br>
 
<br>
 
{{Warning box|[http://wiki.openrbl.org/wiki/Blackhole.securitysage.com blackhole.securitysage.com] was a default SBL server but is no longer working and was removed on Oct 5, 2008.  If you have blackhole.securitysage.com in your SBLList and have RHSBL enabled then <b>ALL INCOMING EMAIL WILL BOUNCE.</b>  You must remove blackhole.securitysage.com from your SBLList for your email server to work properly. Follow the instructions above to reset the default SBLList.}}
 
{{Warning box|[http://wiki.openrbl.org/wiki/Blackhole.securitysage.com blackhole.securitysage.com] was a default SBL server but is no longer working and was removed on Oct 5, 2008.  If you have blackhole.securitysage.com in your SBLList and have RHSBL enabled then <b>ALL INCOMING EMAIL WILL BOUNCE.</b>  You must remove blackhole.securitysage.com from your SBLList for your email server to work properly. Follow the instructions above to reset the default SBLList.}}
   −
{{Note box|Some of the SBLList above are quiet aggressive. As a result, genuine mail may be blocked. You should check your qpsmtpd logs at regular intervals to assess the impact of your selection. To reduce the amount of information presented in the logs, filter with "logterse".}}
+
{{Note box|Some of the SBLList above are quite aggressive. As a result, genuine mail may be blocked. You should check your qpsmtpd logs at regular intervals to assess the impact of your selection. To reduce the amount of information presented in the logs, filter with "logterse".
 +
 
 +
A conservative (& some would consider safe) setting for RHSBL would be as follows:
 +
config setprop qpsmtpd SBLList dbl.spamhaus.org
 +
signal-event email-update
 +
 
 +
This will enable the following SBL server for your system. Don't forget that RHSBL is '''disabled''' by default in SME!
 +
* [http://www.spamhaus.org/ dbl.spamhaus.org]}}
    
====DNSBL Servers====
 
====DNSBL Servers====
 
DNSBL (DNS Block List): Block spam hosts based on the IP address of the remote system.
 
DNSBL (DNS Block List): Block spam hosts based on the IP address of the remote system.
   −
If you want to try out the DNSBL servers configured by default in SME 7.2:
+
If you want to try out the DNSBL servers configured by default in SME:
 
  <nowiki>config delprop qpsmtpd RBLList
 
  <nowiki>config delprop qpsmtpd RBLList
config setprop qpsmtpd RBLList bl.spamcop.net:combined.njabl.org:dnsbl.ahbl.org\
+
config setprop qpsmtpd RBLList bl.spamcop.net\
:dnsbl-1.uceprotect.net:dnsbl-2.uceprotect.net:list.dsbl.org\
+
:dnsbl-1.uceprotect.net:dnsbl-2.uceprotect.net\
:multihop.dsbl.org:psbl.surriel.com:zen.spamhaus.org
+
:psbl.surriel.com:zen.spamhaus.org
 
signal-event email-update</nowiki>
 
signal-event email-update</nowiki>
    
This will enable the following DNSBL servers for your system.  Be sure to check them out before enabling them.  (List updated 7/31/2007 to replace ''sbl-xbl.spamhaus.org'' with the new ''zen.spamhaus.org'').
 
This will enable the following DNSBL servers for your system.  Be sure to check them out before enabling them.  (List updated 7/31/2007 to replace ''sbl-xbl.spamhaus.org'' with the new ''zen.spamhaus.org'').
 +
 +
NOTE: as of January 1, 2015, [http://www.ahbl.org/ dnsbl.ahbl.org] service is no longer active. If you have added this service to your DNSBL record, please remove it. Leaving it in will cause a great many false positives.
    
Don't forget that DNSBL is '''disabled''' by default in SME!  
 
Don't forget that DNSBL is '''disabled''' by default in SME!  
    
* [http://www.spamcop.net/ bl.spamcop.net]
 
* [http://www.spamcop.net/ bl.spamcop.net]
* [http://www.njabl.org/ combined.njabl.org]
  −
* [http://www.ahbl.org/ dnsbl.ahbl.org]
   
* [http://www.uceprotect.net/en/index.php?m=1&s=0 dnsbl-1.uceprotect.net] Conservative (blocks single IPs)
 
* [http://www.uceprotect.net/en/index.php?m=1&s=0 dnsbl-1.uceprotect.net] Conservative (blocks single IPs)
 
* [http://www.uceprotect.net/en/index.php?m=1&s=0 dnsbl-2.uceprotect.net] More agressive (blocks class C networks)
 
* [http://www.uceprotect.net/en/index.php?m=1&s=0 dnsbl-2.uceprotect.net] More agressive (blocks class C networks)
* [http://dsbl.org/main list.dsbl.org] single-stage relays tested by trusted testers
  −
* [http://dsbl.org/main multihop.dsbl.org] the outputs of multihop relays, tested by trusted testers
   
* [http://psbl.surriel.com/ psbl.surriel.com]
 
* [http://psbl.surriel.com/ psbl.surriel.com]
 
* [http://www.spamhaus.org/zen/ zen.spamhaus.org] ''formerly sbl-xbl.spamhaus.org''
 
* [http://www.spamhaus.org/zen/ zen.spamhaus.org] ''formerly sbl-xbl.spamhaus.org''
   −
{{Note box|Some of the RBLList above are quiet aggressive. As a result, genuine mail may be blocked.
+
{{Note box|Some of the RBLList above are quite aggressive. As a result, genuine mail may be blocked.
 
Many will argue what's best but most would agree that you can set best-practice recommended settings by:
 
Many will argue what's best but most would agree that you can set best-practice recommended settings by:
  config setprop qpsmtpd RBLList zen.spamhaus.org:whois.rfc-ignorant.org:dnsbl.njabl.org
+
  config setprop qpsmtpd RBLList zen.spamhaus.org
 
  signal-event email-update
 
  signal-event email-update
  
RayMitchell
624

edits

Retrieved from "https://wiki.koozali.org/Special:MobileDiff/23754...29644"

Navigation menu