Re: home server for email box

To: debian-user@lists.debian.org
Subject: Re: home server for email box
From: Vincent Lefevre <vincent@vinc17.net>
Date: Sat, 11 Mar 2023 23:50:21 +0100
Message-id: <[🔎] 20230311225021.GC3993677@zira.vinc17.org>
Mail-followup-to: debian-user@lists.debian.org
In-reply-to: <[🔎] 61c53bdc-7eec-ce85-69c7-e2d94a278bfc@ardley.org>
References: <1700539476.531935.1678444177593.JavaMail.yahoo.ref@mail.yahoo.co.jp> <[🔎] 1700539476.531935.1678444177593.JavaMail.yahoo@mail.yahoo.co.jp> <[🔎] ZAsOJcbNrwyKzA55@phare.normalesup.org> <[🔎] ZAsYGbYCLwpC67xM@tuxteam.de> <ZAtSNN8mn/PsReqf@Oppenheimer> <[🔎] c7ffa6f1-49a6-56a6-c01a-e5035b05cb17@ardley.org> <[🔎] 87a60kxpr0.fsf@free.fr> <[🔎] 61c53bdc-7eec-ce85-69c7-e2d94a278bfc@ardley.org>

On 2023-03-11 05:39:20 +0800, Jeremy Ardley wrote:
> Sort of off topic. I've given up entirely on rbl. Every commented out option
> has had some type of intermittent failure resulting in lost or delayed valid
> incoming mail.
> 
> I now put up with a tiny fraction of spam that's managed well enough by
> spamassassin and postscreen
> 
> smtpd_recipient_restrictions =
>    permit_sasl_authenticated
>    permit_mynetworks
>    reject_unauth_destination
>    reject_invalid_hostname
>    reject_non_fqdn_hostname
>    reject_non_fqdn_sender
>    reject_non_fqdn_recipient
>    reject_unknown_sender_domain
> #   reject_rbl_client cbl.abuseat.org
> #   reject_rbl_client dnsbl-1.uceprotect.net
> #   reject_rbl_client dnsbl.sorbs.net
> #   reject_rbl_client spam.spamrats.com
> #   reject_rbl_client dyna.spamrats.com
> #   reject_rbl_client noptr.spamrats.com
> #   reject_rbl_client bl.spamcop.net
> #   reject_rbl_client dnsbl.sorbs.net
> #   reject_rbl_client sbl.spamhaus.org
> #   reject_rhsbl_helo dbl.spamhaus.org
> #   reject_rhsbl_reverse_client dbl.spamhaus.org
> #   reject_rhsbl_sender dbl.spamhaus.org
> 
> #   reject_rbl_client cbl.abuseat.org

Why not use postscreen for RBLs?

FYI, I've been using the following for quite a long time:

postscreen_blacklist_action = enforce
postscreen_greet_action = enforce
postscreen_dnsbl_action = enforce
postscreen_dnsbl_sites = zen.spamhaus.org=127.0.0.[0..255]*3
  b.barracudacentral.org*2
  bl.spameatingmonkey.net
  dnsbl.ahbl.org
  bl.spamcop.net
  swl.spamhaus.org*-4
  list.dnswl.org=127.[0..255].[0..255].0*-2
  list.dnswl.org=127.[0..255].[0..255].1*-3
  list.dnswl.org=127.[0..255].[0..255].[2..255]*-4
postscreen_dnsbl_threshold = 3

IIRC, this more or less comes from the postfix-users mailing-list.

-- 
Vincent Lefèvre <vincent@vinc17.net> - Web: <https://www.vinc17.net/>
100% accessible validated (X)HTML - Blog: <https://www.vinc17.net/blog/>
Work: CR INRIA - computer arithmetic / AriC project (LIP, ENS-Lyon)

Reply to:

References:
- home server for email box
  - From: pyh@ymail.ne.jp
- Re: home server for email box
  - From: Nicolas George <george@nsup.org>
- Re: home server for email box
  - From: <tomas@tuxteam.de>
- Re: home server for email box
  - From: Henning Follmann <hfollmann@itcfollmann.com>
- Re: home server for email box
  - From: Jeremy Ardley <jeremy@ardley.org>
- Re: home server for email box
  - From: Michel Verdier <mv524@free.fr>
- Re: home server for email box
  - From: Jeremy Ardley <jeremy@ardley.org>

Prev by Date: Re: home server for email box
Next by Date: Re: question about rc.local
Previous by thread: Re: home server for email box
Next by thread: Re: home server for email box
Index(es):
- Date
- Thread