On Tue Sep 20 2016 18:40:17 Sebastian Nielsensaid:
>
> I would really suggest using DISCARD instead of "500 This TLD sends spam - g
> e t lost.".
> Thus the spammer dosen't get to know he got stuck in a spam filter and can
> update their tools to bypass it.
>
> DISCARD accepts the mail but th
On 20 Sep 2016, at 20:40, Sebastian Nielsen wrote:
I would really suggest using DISCARD instead of "500 This TLD sends
spam - g
e t lost.".
Thus the spammer dosen't get to know he got stuck in a spam filter and
can
update their tools to bypass it.
Note that in this specific case of junk TLD
James Reynolds:
> I use check_sender_access and DISCARD to throw away about 1500-4000
> messages a day from .top domains (which is about the volume of my
> legit email). I looked into it and most of them are registered
> to namecheap.com, which appears to sell the names for for $.98
> each. I did
I use check_sender_access and DISCARD to throw away about 1500-4000 messages a
day from .top domains (which is about the volume of my legit email). I looked
into it and most of them are registered to namecheap.com, which appears to sell
the names for for $.98 each. I did a little research into
On 21/09/16 02:35, Jim Reid wrote:
> Spammers generally don’t pay that level of attention to SMTP responses, far
> less fine-tune their address lists and tools. These morons just find a victim
> host or botnet to blast out crap to a bazillion email addresses, not caring
> if any of them work o
]
Skickat: den 21 september 2016 03:36
Till: Sebastian Nielsen
Kopia: Postfix Users
Ämne: Re: TLD blocking revisited
smime.p7s
Description: S/MIME Cryptographic Signature
> On 21 Sep 2016, at 01:40, Sebastian Nielsen wrote:
>
> I would really suggest using DISCARD instead of "500 This TLD sends spam - g
> e t lost.".
> Thus the spammer dosen't get to know he got stuck in a spam filter and can
> update their tools to bypass it.
Spammers generally don’t pay that l
---
Från: owner-postfix-us...@postfix.org
[mailto:owner-postfix-us...@postfix.org] För li...@lazygranch.com
Skickat: den 21 september 2016 02:23
Till: Jim Reid
Kopia: Postfix Users
Ämne: Re: TLD blocking revisited
Tell ya what. Let's hold the suggestions here. This one looks like someth
ginal Message
From: Jim Reid
Sent: Tuesday, September 20, 2016 1:56 PM
To: li...@lazygranch.com
Cc: Postfix Users
Subject: Re: TLD blocking revisited
> On 20 Sep 2016, at 21:10, li...@lazygranch.com wrote:
>
> What is the simplest way to block a TLD?
Put the offending TLD in a map and hav
On 20 Sep 2016, at 16:10, li...@lazygranch.com wrote:
After studying these spam messages, I think postfix blocking via
tld is the only solution. The problem is the message is embedded in
graphics with brief text regarding "if you can't view this click
here". There isn't enough to trip the spa
> On 20 Sep 2016, at 21:10, li...@lazygranch.com wrote:
>
> What is the simplest way to block a TLD?
Put the offending TLD in a map and have that map referenced through
check_sender_access and/or check_client_access.
ie
in main.cf:
smtpd_client_restrictions = permit_mynetworks
Im using the following to block TLDs, but not in helo checks, im using sender
checks instead:
/\.bid$/ DISCARD
/\.top$/ DISCARD
/\.xyz$/ DISCARD
/\.pro$/ DISCARD
/\.date$/ DISCARD
/\.faith$/ DISCARD
/\.download$/ DISCARD
DISCARD blocks the mail without telling the sender the mail was blocked so
On Tue Sep 20 2016 14:10:17 li...@lazygranch.com
said:
>
> After studying these spam messages, I think postfix blocking via tld is the
> only solution. The problem is the message is embedded in graphics with brief
> text regarding "if you can't view this click here". There isn't enough
On 2016-09-20 22:10, li...@lazygranch.com wrote:
After studying these spam messages, I think postfix blocking via tld
is the only solution. The problem is the message is embedded in
graphics with brief text regarding "if you can't view this click
here". There isn't enough to trip the spam bot.
After studying these spam messages, I think postfix blocking via tld is the
only solution. The problem is the message is embedded in graphics with brief
text regarding "if you can't view this click here". There isn't enough to trip
the spam bot.
What is the simplest way to block a TLD?
Original Message
From: Alice Wonder
Sent: Tuesday, September 20, 2016 1:49 AM
To: postfix-users@postfix.org
Subject: Re: TLD blocking revisited
On 09/19/2016 05:29 PM, li...@lazygranch.com wrote:
> The last time TLD blocking came up, the consensus of the hive was not
> to block based o
On 09/19/2016 05:29 PM, li...@lazygranch.com wrote:
The last time TLD blocking came up, the consensus of the hive was not
to block based on TLD. (You may recall .xyz being used by
Alphabet.) However lately I'm getting a ridiculous number of .stream
SPAM coming through. The RBLs are getting abou
https://topicdesk.com/downloads/tutorials/spamassassin-filter-for-new-tlds-xyz-info-ninja-etc/
I used this, more or less. It wasn't exactly set up for freebsd. The
directory needed is at
/usr/local/etc/mail/spamassassin
PS:
Benny, is that your real email address? I'd like to take this off the
list
On 2016-09-20 04:08, li...@lazygranch.com wrote:
OK. Would I score it in SpamAssassin? If not, where? Point me in the
right direction and I assume Google will be my friend.
make a tld list in enlist, score that enlist in spamassassin, if need
more help mail me
OK. Would I score it in SpamAssassin? If not, where? Point me in the right
direction and I assume Google will be my friend.
Original Message
From: Michael J Wise
Sent: Monday, September 19, 2016 6:54 PM
To: postfix-users@postfix.org
Subject: Re: TLD blocking revisited
Block? No.
+Score
Block? No.
+Score? Yes.
But this is the Postfix list, and ... this really belongs elsewhere.
> The last time TLD blocking came up, the consensus of the hive was not
> to block based on TLD. (You may recall .xyz being used by
> Alphabet.) However lately I'm getting a ridiculous number of .stream
more you add, the more
likely you get false positives.
Original Message
From: /dev/rob0
Sent: Monday, September 19, 2016 6:11 PM
To: postfix-users@postfix.org
Reply To: postfix-users@postfix.org
Subject: Re: TLD blocking revisited
On Mon, Sep 19, 2016 at 05:29:51PM -0700, li
On Mon, Sep 19, 2016 at 05:29:51PM -0700, li...@lazygranch.com wrote:
> The last time TLD blocking came up, the consensus of the hive was
> not to block based on TLD. (You may recall .xyz being used by
> Alphabet.) However lately I'm getting a ridiculous number of
> .stream SPAM coming through.
On 2016-09-20 02:29, li...@lazygranch.com wrote:
The last time TLD blocking came up, the consensus of the hive was not
to block based on TLD. (You may recall .xyz being used by
Alphabet.) However lately I'm getting a ridiculous number of .stream
SPAM coming through. The RBLs are getting about hal
The last time TLD blocking came up, the consensus of the hive was not
to block based on TLD. (You may recall .xyz being used by
Alphabet.) However lately I'm getting a ridiculous number of .stream
SPAM coming through. The RBLs are getting about half.
https://www.spamhaus.org/statistics/tlds/
I h
25 matches
Mail list logo
