Ralf Hildebrandt put forth on 4/10/2010 2:21 AM:
> I'm using zen.spamhaus.org in postscreen and,
>
> reject_rbl_client bl.spamcop.net
> reject_rbl_client bogons.cymru.com
> reject_rhsbl_sender dbl.spamhaus.org
> reject_rhsbl_reverse_client dbl.spamhaus.org
Using these dnsbls here:
smtpd_recipient_restrictions =
...
reject_rbl_client zen.spamhaus.org
reject_rhsbl_client dbl.spamhaus.org
reject_rhsbl_sender dbl.spamhaus.org
reject_rhsbl_helo dbl.spamhaus.org
...
I reject most spam via other methods, mostly pcre/regex and cidr tables. My
dnsbl queries reject less than 1% of my spam load. Plug the following
dynamic/generic rdns regex table into your Postfix configuration and see if
it catches some spam for you. It does a good job here. Given its size I'd
recommend running it (and all your map files) via proxymap. Ask here if
you're unsure or need help implementing proxymap. It bit me the first time
I tried it.
smtpd_recipient_restrictions =
...
check_client_access regexp:/etc/postfix/fqrdns.regexp
...
/etc/postfix/fqrdns.regexp
http://www.hardwarefreak.com/fqrdns.regexp
This regex file is free for anyone to use if you wish to. The FP rate
should be zero since it matches only dynamic/generic rdns names.
--
Stan
