[NTLUG:Discuss] How does MAPS RBL work?

joseph beasley joe_beasley at yahoo.com
Tue Jul 29 21:19:38 CDT 2003 

Check your new sendmail.cf for something like this:

# Deny spammers during MAIL
#
Scheck_mail
R$*           $: $(dequote "" $&{client_addr} $)
R0            $@ OK
R$-.$-.$-.$-  $(host $4.$3.$2.$1.blackholes.mail-abuse.org. $:OK $)
ROK           $@ OK
R$+           $#error $@ 5.7.1 $: " Mail from " $(dequote ""
$&{client_addr} $) " refused, see     
http://mail-abuse.org/cgi-bin/lookup?$1.$2.$3.$4"


You can modify the message there.  

--- Neil Aggarwal <neil at JAMMConsulting.com> wrote:
> Joseph:
> 
> When I changed my sendmail.mc to have the empty third argument
> string:
> FEATURE(`dnsbl',`dnsbl.JAMMConsulting.com',`',`"Your IP address "
> $&{client_addr} " was found in our blocking list. Please see
> http://www.jammconsulting.com/dnsbl for more information."')dnl
> 
> The rejection messages are this:
> 5.7.1 Rejected: 218.188.36.168 listed at dnsbl.JAMMConsulting.com
> 
> Instead of the message that I wanted to tell people.
> 
> Any ideas why this is occurring?
> 
> Thanks,
> 	Neil
> 
> 
> --
> Neil Aggarwal, JAMM Consulting, (972)612-6056, www.JAMMConsulting.com
> FREE! Valuable info on how your business can reduce operating costs
> by 
> 17% or more in 6 months or less! =>
> http://newsletter.JAMMConsulting.com
> 
> > -----Original Message-----
> > From: discuss-bounces at ntlug.org 
> > [mailto:discuss-bounces at ntlug.org] On Behalf Of joseph beasley
> > Sent: Monday, July 14, 2003 6:09 PM
> > To: NTLUG Discussion List
> > Subject: RE: [NTLUG:Discuss] How does MAPS RBL work?
> > 
> > 
> > Check http://www.sendmail.org/m4/anti_spam.html for the format of
> the
> > line in the sendmail.mc.  The backticks are important.  The link
> lists
> > the format as "   FEATURE(`dnsbl', `dnsbl.example.com', `', `"451
> > Temporary lookup failure for " $&{client_addr} " in
> > dnsbl.example.com"')
> >  " 
> > 
> > You don't have the `', before the error message starts. 
> > 
> > 
> > --- Neil Aggarwal <neil at JAMMConsulting.com> wrote:
> > > Joseph:
> > > 
> > > I tried a test.  I set up a mail server on a DSL connection.  The
> > > server is configured to use DNS servers provided by Verizon.
> > > 
> > > On that server, I added this line to my sendmail.mc file:  
> > > FEATURE(`dnsbl',`dnsbl.JAMMConsulting.com',`"Your IP address "
> > > $&{client_addr} " was found in our  blocking list. Cable DSL and
> > > dialup
> > > users must use your ISPs mail server."')dnl
> > > 
> > > When I send an email to that server, it performs a query on the 
> > > dnsbl.JAMMConsulting.com by sending a query to Verizon's
> > > DNS server which in turn sends the query to our DNS server
> > > that hosts our dnsbl.   The queries are not sent directly
> > > to our dnsbl server.
> > > 
> > > What directives do you use to make sendmail query the
> > > dnsbl server directly?
> > > 
> > > Thanks,
> > > 	Neil
> > > 
> > > 
> > > --
> > > Neil Aggarwal, JAMM Consulting, (972)612-6056, 
> > www.JAMMConsulting.com
> > > FREE! Valuable info on how your business can reduce operating
> costs
> > > by 
> > > 17% or more in 6 months or less! =>
> > > http://newsletter.JAMMConsulting.com
> > > 
> > > > -----Original Message-----
> > > > From: discuss-bounces at ntlug.org 
> > > > [mailto:discuss-bounces at ntlug.org] On Behalf Of joseph beasley
> > > > Sent: Wednesday, July 02, 2003 6:33 PM
> > > > To: NTLUG Discussion List
> > > > Subject: RE: [NTLUG:Discuss] How does MAPS RBL work?
> > > > 
> > > > 
> > > > The queries are direct to their dns server.  If you are using 
> > > > sendmail,
> > > > there are options for RBL servers.  When sendmail receives a
> > > messages
> > > > it does a lookup for the ip address of the sending mail server
> on
> > > the
> > > > MAPS dns server.  
> > > > 
> > > > You do not have to change the dns server on your mail server. 
> You
> > > do
> > > > have to change your sendmail.cf so that it knows what RBL to
> use.
> > > > 
> > > > --- Neil Aggarwal <neil at JAMMConsulting.com> wrote:
> > > > > Chris:
> > > > > 
> > > > > > I did some digging.
> > > > > > First, they offer two types of server, as I kinda said in
> my 
> > > > > > original reply. one
> > > > > > is query, the other is zone transfer.
> > > > > 
> > > > > I am more interested in offering the direct query approach.
> > > > > 
> > > > > > Their query option is just that, a direct query.
> > > > > > You make a good point about your primary DNS server doing
> the 
> > > > > > query of the
> > > > > > authoritative DNS server on behalf of the client and 
> > > > > > returning the results.
> > > > > > However, the contract that MAPS has you complete only asks 
> > > > > > for your mail server
> > > > > > IP address. This tells me that your IP address must ride 
> > > > on the UDP
> > > > > > communication for DNS queres.
> > > > > > That fact of the matter is that the IP address of the mail 
> > > > > > server must be
> > > > > > getting to the MAPS dns server so they can verify 
> > > > > > authenticity. There is no
> > > > > > documentation that tells you that you must change the
> primary 
> > > > > > DNS server of your
> > > > > > mail server to their server. I can't believe they would
> have 
> > > > > > you do this anyway,
> > > > > > because they have 5+ DNS servers running across the world
> for 
> > > > > > disaster recovery.
> > > > > > This would make a painful maintenance effort.
> > > > > 
> > > > > This is exactly the question:  How do they force the
> mailserver
> > > > > to make a direct query to their DNS servers?
> > > > > 
> > > > > > Here are some links for ya.
> > > > > > http://mail-abuse.org/feestructure.html
> > > > > > http://mail-abuse.org/rbl/usage.html
> > > > > 
> > > > > I appreciate your efforts, but I read thru those before
> > > > > posting this thread.  They don't answer the question at hand.
> > > > > 
> > > > > Thanks,
> > > > > 	Neil.
> > > > > 
> > > > > 
> > > > > --
> > > > > Neil Aggarwal, JAMM Consulting, (972)612-6056, 
> > > www.JAMMConsulting.com
> > > > FREE! Valuable info on how your business can reduce 
> > operating costs
> > > > by 
> > > > 17% or more in 6 months or less! =>
> > > > http://newsletter.JAMMConsulting.com
> > > > 
> > > > 
> > > > _______________________________________________
> > > > https://ntlug.org/mailman/listinfo/discuss
> > > 
> > > 
> > > =====
> > > Joe Beasley
> > > CNE, CCNP, MCSE, CCNA, AEIOU....
> > > PGP/GPG key --  http://home.attbi.com/~joe.beasley/joebeasley.txt
> > > AOL Messenger            joebeasley3rd
> > > Yahoo Messenger          joe_beasley
> > > MSN Messenger            joebeasley3rd
> > > ICQ                      13164242
> > > 
> > > 
> > > __________________________________
> > > Do you Yahoo!?
> > > SBC Yahoo! DSL - Now only $29.95 per month!
> > > http://sbc.yahoo.com
> > > 
> > > _______________________________________________
> > > https://ntlug.org/mailman/listinfo/discuss
> > > 
> > > 
> > > _______________________________________________
> > > https://ntlug.org/mailman/listinfo/discuss
> > 
> > 
> > =====
> > Joe Beasley
> > CNE, CCNP, MCSE, CCNA, AEIOU....
> > PGP/GPG key --  http://home.attbi.com/~joe.beasley/joebeasley.txt
> > AOL Messenger            joebeasley3rd
> > Yahoo Messenger          joe_beasley
> > MSN Messenger            joebeasley3rd
> > ICQ                      13164242
> > 
> 
=== message truncated ===


=====
Joe Beasley
CNE, CCNP, MCSE, CCNA, AEIOU....
PGP/GPG key --  http://home.attbi.com/~joe.beasley/joebeasley.txt
AOL Messenger            joebeasley3rd
Yahoo Messenger          joe_beasley
MSN Messenger            joebeasley3rd
ICQ                      13164242


__________________________________
Do you Yahoo!?
Yahoo! SiteBuilder - Free, easy-to-use web site design software
http://sitebuilder.yahoo.com

More information about the Discuss mailing list