Marius Gologan:
> Would be useful to have a native blacklist check for the Name servers (names
> and IPs) of the sender domain and unverified client domain name.
Did you mean:
check_client_ns_access
check_reverse_client_ns_access
check_helo_ns_access
check_sender_ns_access
check_recipient_ns_access
These use a "native" blacklist called "Postfix access table" that
allows you to block mail from anyone who uses a particular DNS server.
> I've been using scripts to achieve this and and the results are effective in
> the following cases:
>
> - when the spammer rotates the IPs, Domain names and subdomains.
>
> - when the spammer uses new TLDs with tolerant registrars or hosts his own
> NS.
>
> - existent RBLs (listing IPs) can be used for NS check. Weight would provide
> granularity instead of just a black or white action.
What DNSBL services provide reputation about DNS server IP addresses?
Wietse
> I've noticed Postfix is already resolving the Name servers. I presume much
> of the necessary work is already there.
>
>
>
> Thank you.
>
>
>
> Marius.
>
