pparsons at techeez.com
Wed May 14 17:29:27 IST 2014
Actually the original question was if you use them which ones do you use ? and have had the greatest success with. Hahaha I also said I did not want to kick off the discussion again which has gone through the list many many times…
I am just looking for some suggestions to what lists to use.
From: mailscanner-bounces at lists.mailscanner.info [mailto:mailscanner-bounces at lists.mailscanner.info] On Behalf Of Terry Hulen Jr
Sent: May-14-14 6:25 AM
To: MailScanner discussion
Subject: Re: RBLS
I do not believe that anyone is wrong in this thread. I have ~3-5 DNSBLs that I use. All of these are utilized at the MTA and I also use Greylisting. I am using postfix as my MTA.
With all of that being said...
The poster's original question was if I used RBLs with MS, the answer is that I have never needed to. I save machine resources by catching the offenders early in the process and if they cannot make it past the MTA, they cannot get to MS anyway.
On Wed, May 14, 2014 at 5:23 AM, Peter Farrow <peter at farrows.org<mailto:peter at farrows.org>> wrote:
I have to agree with Jonas... I have about 6 Blacklists I routinely use...
On 14/05/2014 09:59, Jonas Akrouh Larsen wrote:
One thing to keep in mind with RBLs, are DNS queries. It is not recommended
to use public DNS servers. (Google/open dns) Run
bind/named/dnsmasq/tinydns locally. Also, you won't really gain anything by
having too many RBLs .. You'll just up the processing time and queries.
This part I do not agree with. Unless you think all RBL's contains more or less the same IP's, its pretty obvious that your protection improves with more RBL's.
Also unless you have resource contention in regards to multiple threads, the slowness RBL's introduce doesn't matter, and the system is just waiting for a response from the network, which almost doesn't consume any system resources.
Personally I have RBL's in both the MTA and in mailscanner. In the MTA I greylist based on a few very trustworthy RBL's and in mailscanner I score based on ohh I don't know 10-20 RBL's. It allows you to have a much more fine-tuned system instead of blocking based on a single RBL at the SMTP level.
The advantage of having them in mailscanner is mainly that you can whitelist senders, the disadvantage is that senders aren't told that they are listed (but since all the RBL's I use are public db's used in thousands of systesm I trust somebody else will let them know soon enough :) )
Med venlig hilsen / Best regards
Jonas Akrouh Larsen
Laplandsgade 4, 2. sal
2300 København S
Office: 7020 0979
Direct: 3336 9974
Mobile: 5120 1096
MailScanner mailing list
mailscanner at lists.mailscanner.info<mailto:mailscanner at lists.mailscanner.info>
Before posting, read http://wiki.mailscanner.info/posting
Support MailScanner development - buy the book off the website!
This message has been scanned for viruses and
dangerous content by MailScanner<http://www.mailscanner.info/>, and is
believed to be clean.
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the MailScanner