Diego Liziero schrieb: > On Wed, Oct 22, 2008 at 2:31 PM, Henrik K <[EMAIL PROTECTED]> wrote: >> On Tue, 21 Oct 2008, Terry Carmen wrote: >> >>> /[ax]dsl.*\..*\..*/i 450 AUTO_XDSL Email Rejected. You appear to be >>> connecting from a Dynamic IP address. /client.*\..*\..*/i 450 >>> AUTO_CLIENT Email Rejected. You appear to be connecting from a Dynamic >>> IP address. >>> /cable.*\..*\..*/i 450 AUTO_CABLE Email Rejected. You appear to >>> be connecting from a Dynamic IP address. >>> /dial.*\..*\..*/i 450 AUTO_DIAL Email Rejected. You appear to >>> be connecting from a Dynamic IP address. >> Not to mention these regexes hit multi-tld domains. Few examples.. >> >> dns.televicable.net.mx >> deliv-b0.cablevision.net.mx >> mail.cableplus.com.cn >> mail.supercable.net.ve >> mail0.cablenet.ne.jp >> mail0.supercabletv.net.co >> email.ibukdial.co.uk >> mail.mundial.com.ar >> smtpsvc.dialin.co.uk >> www.medialempresa.com.br > > BTW, has anyone a regexp ready to accept all names that might be real > smtp-out servers? > > (such as mail|smtp|mx|email and so on) > > I think it can be useful for example to whitelist them before greylisting.
I think this is rather a bad idea. I would prefer to treat them on their behaviour (use helo checks, check for reverse dns ..., you should find several examples in this thread, from mouss ...) . What would prevent a spammer to name his box "smtp" e.g.? You could use the botnet plugin for Spamassassin if used at your site. > Regards, > Diego. -- Gruesse/Greetings MH Dont send mail to: [EMAIL PROTECTED] --
