cut off by spamhaus free use?

[Denis Beauchemin]

Scott Silva a écrit :
> on 12/3/2007 11:35 AM Denis Beauchemin spake the following:
>> Jeff A. Earickson a écrit :
>>> On Mon, 3 Dec 2007, Jeff Mills wrote:
>>>
>>>>
>>>>
>>>> Yes!
>>>> One of the things I have done in my servers is move the spamhaus 
>>>> list to
>>>> the bottom of my list of RBL's.
>>>> That way, spamhaus is only queried when none of the others match. I 
>>>> find
>>>> that spamcop gets more than the others.
>> I did the same and so far it is still working:
>> cbl.abuseat.org
>> dul.dnsbl.sorbs.net
>> web.dnsbl.sorbs.net
>> relays.dnsbl.sorbs.net
>> rhsbl.dnsbl.sorbs.net
>> bl.spamcop.net
>> list.dsbl.org
>> zen.spamhaus.org
> I would move cbl right above zen, as they also have a usage limit.

I didn't see any on their web site...
>>
>> So far today, they blocked:
>>           bl.spamcop.net :  13188 (  5 %)
>>          cbl.abuseat.org : 131946 ( 57 %)
>>      dul.dnsbl.sorbs.net :  57306 ( 25 %)
>>            list.dsbl.org :   1320 (  0 %)
>>   relays.dnsbl.sorbs.net :     42 (  0 %)
>>      web.dnsbl.sorbs.net :   1225 (  0 %)
>>         zen.spamhaus.org :  24122 ( 10 %)
> What do you run to get this info? Or was it hand compiled? I have been 
> looking for something I could get some good stats with. 

I run the attached Bash/Perl script.  It parses my maillog looking for 
sendmail rejection messages.

Denis

-- 
   _
  °v°   Denis Beauchemin, analyste
 /(_)\  Université de Sherbrooke, S.T.I.
  ^ ^   T: 819.821.8000x62252 F: 819.821.8045

-------------- next part --------------
#!/bin/bash
#
# $Id: listeRBL,v 1.2 2007/12/03 20:00:04 bead2306 Exp $
#
# This script goes through sendmail's maillog to find lines about
# blocked incoming connexions.
#
# DB

# Is a file name supplied^
if [[ -n "$1" ]]; then
    # Yes, use it
    file="$1"
else
    # No, use default maillog
    file="/var/log/maillog"
fi

# Is file compressed?
if [[ $file == ${file%.gz} ]]; then
    # No, just list it
    cmd="cat $file"
else
    # Yes, uncompress it
    cmd="zcat $file"
fi

# Now search the log
$cmd | LANG=C fgrep reject=554 |perl -ne '
  next unless /found in (.*?)\s*$/;
  $h{$1}++;
  END{
    for $i (sort keys %h){
        $t += $h{$i};
    }
    for $i (sort keys %h){
        printf "%25s : %6d (%3d %%)\n", $i, $h{$i}, $h{$i}*100/$t;
    }
    printf "%25s : %d\n", "*** Total blocked conns", $t;
  }'