From: Mihira Fernando (no email)
Date: Fri Aug 31 2007 - 13:39:10 EDT
Resending to list as I mistakenly sent it only to Steve.
My apologies Steve.
> If you query your ISPs DNS server then they may consider your ISPs IP as high traffic and not your IP?
Could be but end of the day, I'm still getting burned. Using another DNS server
is not not practical in my situation so I'm tied up with my ISP's DNS servers.
> There are many many free DNSBL's and RHBL's out there. The best is to test yourself and see which one fits best for your needs. To understand what I mean have a look here: http://www.dnsbl.com/2007/03/how-well-do-various-blacklists-work.html
Thanks, will go through this.
> BTW: I burned as well many times my fingers with DNSBL/RHBL and decided to go with policyd-weight (http://www.policyd-weight.org/). I tweaked the hell out of it to have the best configuration for my needs. I extended it as well to include other stuff like p0f, ASN checking, checking by country, etc... It stops a lot of spam entering my server and still having a very low false positive rate. I have nothing against the DNSBL/RHBL included in Postfix but they force me to look at the sender with black and withe glasses and this is not what I need.
I have Postfix-Policyd greylisting as well. Zen & policyd were doing a good job.
With zen ,so far, I didnt have any false positives and extremely little false
negatives so I'm rather reluctant to change it however it seems now I have to
Thanks all for your replies.
-- Random Quotes From Megas XLR Coop: You see? The mysteries of the Universe are revealed when you break stuff. Jamie: When in doubt, blow up a planet. Kiva: It's an 80 foot robot, if we can't see it, absolutely it's not here. Glorft Technician: Unnecessary use of force in capturing the Earthers has been approved.