> -----Original Message----- > From: Pat Masterson [mailto:[EMAIL PROTECTED] > Subject: RE: [SAtalk] (OT) DSL/DIALUP manual BL Catch 22 > > > Here it is Chris.. > GL. -pat >
Thanks for your access file Pat!! Your list was great help. I wanted to let you know how I'm handling this as it may be of some help. Some quick info: The access file you sent me with blocked IPs had some class B's blocked. I had to double check each of them to make sure they didn't block any of the asian countries I unfortunetly have to deal with. It seems MANY (and I mean LOTS) belong to APNIC (asian pacific network information center) I'm blocking class C's on this network until I'm sure I don't deal with anyone using there network for business. Also another majority of the IP addresses are from RIPE registered in Amsterdam. Here is how I handle my access file: It is made from 3 different files. Access.orig, ipaccess, and spam.txt Access.orig is simply my own generic access file for my system to work. Just the basics. Ipaccess is JUST the list of blocked IPs. Spam.txt I get at http://basic.wirehub.nl/spamstats.html under the Public(extended) blacklist. (HIGHLY RECOMENDED!) (down towards the bottom of that page.) I download the extended public BL anytime I'm at the server. But at least twice a week. Because the amount of spam getting thru is so small, I now check every IP address and add that to my/your ipaccess file. I try to block the /32 of the IP. If in the ipaccess file I see others in the subnet have already been blocked, then I will change it to class B or C accordingly. (I actually do this in excel first to make it easier to compare and find IPs.) After I update spam.txt and ipaccess list. I just type a script ./updatebl, which does the following... del access.db.was cp access.db access.db.was mv spam.txt access cat ipaccess >> access cat access.orig >> access makemap -hash blah blah blah balh......... This way I have a backup and it is pretty automated. With your list edited for IPs only, no class B's, and about 200 of my own, within 5 minutes I saw rejections for those IPs. :) NICE! I like this method better, as I have control. I've copied to the SA list in hopes it may help others who use Sendmail. Thanks again!!!! Chris Santerre System Admin "A little nonsense now and then, is relished by the wisest men." - Willy Wonka ------------------------------------------------------- This SF.net email is sponsored by: VM Ware With VMware you can run multiple operating systems on a single machine. WITHOUT REBOOTING! Mix Linux / Windows / Novell virtual machines at the same time. Free trial click here: http://www.vmware.com/wl/offer/345/0 _______________________________________________ Spamassassin-talk mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/spamassassin-talk
