Koozali.org: home of the SME Server

Fighting spam with SME dedicated DNSBL

Offline Knuddi

  • *
  • 540
  • +0/-0
    • http://www.scanmailx.com
Fighting spam with SME dedicated DNSBL
« on: September 26, 2016, 04:23:35 PM »
I have been building my own DNS blacklist over the last years for my own company (ScanMailX) and can see the positive effect of this in the constant battle against spam and other bad stuff which is email borne.

I was wondering whether there would be an interest for you to provide data to this list and in return get access to the total list for your SME server?

The philosophy would be that all users (SME Servers) would have to provide data in order to be allowed to use this DNSBL. This data will be collected automatically via a plugin to qpsmtpd and an associated script that runs on your server.

The plugin will collect information from all (or some) hard rejected emails and send data to the central server which then analyzed and add to the DNSBL. This data that would be sent is sending IP address, sender email address, qpsmtpd module that rejected and the reject message.

Interested?

Regards,
Jesper
« Last Edit: September 28, 2016, 01:40:15 PM by Knuddi »

Offline Stefano

  • *
  • 10,836
  • +2/-0
Re: SME dedicated DNSBL
« Reply #1 on: September 26, 2016, 04:24:40 PM »
yes, I am :-)

Offline brianr

  • *
  • 988
  • +2/-0
Re: SME dedicated DNSBL
« Reply #2 on: September 26, 2016, 04:35:36 PM »
.. and me, although I am only a minor player in sme installations these days (I've got 5).

And my latest mailstats will log the use of the DNSBL and we can see if it genuinely is worth it!! :-P

oh - and I'd be happy to help test it as well!
« Last Edit: September 26, 2016, 06:27:17 PM by brianr »
Brian j Read
(retired, for a second time, still got 2 installations though)
The instrument I am playing is my favourite Melodeon.
.........

Offline Knuddi

  • *
  • 540
  • +0/-0
    • http://www.scanmailx.com
Re: SME dedicated DNSBL
« Reply #3 on: September 26, 2016, 07:37:33 PM »
For a starter it will be entirely IP based but I also have an URI based blacklist that I can add to the mix.

@Stefano & Brianr,
When I have more ready I will let you know. Please btw. send me an email on jesper@swerts-knudsen.dk so that I can send you install information and other details.

/Jesper

Offline Fumetto

  • *
  • 874
  • +1/-0
Re: Fighting spam with SME dedicated DNSBL
« Reply #4 on: September 28, 2016, 09:14:10 PM »
I've one server with wan ip on 192.168.x.x (after a router I can't manage) and 4 server with wan public IP; the 1st is SME 8.x all other 9.1.
I can give my willingness to act as a tester, but the servers are in production, so testers for something that works ... :)

Offline Knuddi

  • *
  • 540
  • +0/-0
    • http://www.scanmailx.com
Re: Fighting spam with SME dedicated DNSBL
« Reply #5 on: September 28, 2016, 10:02:40 PM »
Its not a problem that the one server sits behind a NAT router - so does on of mine. The system will add a configuration file to SpamAssassin for the DNSBL and a qpsmtpd plugin that collects rejected data.

I am quite sure it works, but I need to have the installation process pipecleaned hopefully by Stefano and/or Brianr over the next days. If you connect as described above, then I will send you installation guide when ready.

The DNSBL currently has 1.3 mio validated spam IPs and around 350.000 URIs so we do not start from scratch.

/Knuddi

Offline calisun

  • *
  • 601
  • +0/-0
Re: Fighting spam with SME dedicated DNSBL
« Reply #6 on: September 28, 2016, 11:59:54 PM »
I don't know about you guys, but built is spam filer in SME Server 9 works great for me. I hardly ever get any spam in my in box.
When I check the junkmail folder, it has a lot of mail in there daily.
« Last Edit: September 29, 2016, 12:02:14 AM by calisun »
SME user and community member since 2005.
Want to install Wordpress in iBay of SME Server?
See my step-by-step How-To wiki here:
http://wiki.contribs.org/Wordpress_Multisite

Offline Knuddi

  • *
  • 540
  • +0/-0
    • http://www.scanmailx.com
Re: Fighting spam with SME dedicated DNSBL
« Reply #7 on: October 06, 2016, 08:16:12 PM »
I have created a Howto for this at https://wiki.contribs.org/SMEOptimizer

The solution has now successfully been though several alpha testers and I think that its ready for additional users.


Offline brianr

  • *
  • 988
  • +2/-0
Re: Fighting spam with SME dedicated DNSBL
« Reply #8 on: October 07, 2016, 08:44:41 AM »
Jesper

I followed your howto, but at the end there was nothing in the /var/log/smeoptimizer.log (indeed it did not even exisit!).
Brian j Read
(retired, for a second time, still got 2 installations though)
The instrument I am playing is my favourite Melodeon.
.........

Offline Knuddi

  • *
  • 540
  • +0/-0
    • http://www.scanmailx.com
Re: Fighting spam with SME dedicated DNSBL
« Reply #9 on: October 07, 2016, 09:09:51 AM »
Hi Brian,

I cannot see that any registration was attempted in the backend.

Did you remember the:

./SMEOptimizer.pl –initialize

Can you check whether these files are present:
/usr/local/smeoptimizer/smeoptimizer.cron
/etc/e-smith/templates/etc/crontab/smeoptimizer.cron.template


/Jesper

Offline brianr

  • *
  • 988
  • +2/-0
Re: Fighting spam with SME dedicated DNSBL
« Reply #10 on: October 07, 2016, 09:28:54 AM »
Neither of those file exist, when I run

./SMEOptimizer.pl –initialize

I get:

Code: [Select]
[root@bjsserver smeoptimizer]# ./SMEOptimizer.pl –initialize

         SMEOptimizer - Optimize your SME server
by SMEOptimizer.com - Copyright (c) 2016, all rights reserved.
 Servers hosted and operated by ScanMailX - www.scanmailx.com

Command line options:
-help:      Shows this help
-initialize: Register and retrieve the configuration and enable the cronjob services.
            When the registration has been confirmed, then all services will be activated automatically.

[root@bjsserver smeoptimizer]#
Brian j Read
(retired, for a second time, still got 2 installations though)
The instrument I am playing is my favourite Melodeon.
.........

Offline brianr

  • *
  • 988
  • +2/-0
Re: Fighting spam with SME dedicated DNSBL
« Reply #11 on: October 07, 2016, 09:35:24 AM »
Found it - you need

./SMEOptimizer.pl --initialize

(note the --).

Brian j Read
(retired, for a second time, still got 2 installations though)
The instrument I am playing is my favourite Melodeon.
.........

Offline Stefano

  • *
  • 10,836
  • +2/-0
Re: Fighting spam with SME dedicated DNSBL
« Reply #12 on: October 07, 2016, 09:55:39 AM »
you, just like me, just did a copy and paste :-)

Offline brianr

  • *
  • 988
  • +2/-0
Re: Fighting spam with SME dedicated DNSBL
« Reply #13 on: October 07, 2016, 10:38:07 AM »
you, just like me, just did a copy and paste :-)

the only way to get it right, except in this case it didn't!
Brian j Read
(retired, for a second time, still got 2 installations though)
The instrument I am playing is my favourite Melodeon.
.........

Offline Knuddi

  • *
  • 540
  • +0/-0
    • http://www.scanmailx.com
Re: Fighting spam with SME dedicated DNSBL
« Reply #14 on: October 07, 2016, 10:49:17 AM »
Interesting as it works with one "-" on my 8.2 server. I all cases I have corrected the Howto to reflect two "-" :-)