Hi, >>>>> "RCVD_IN_XBL_ALL" smells like deep header inspection >>>>> >>>> >>>> The question was: >>>> >>>> "How many points do you add to an email that *originated* >>>> from a dynamic IP that [is] on a number of blacklists?" >>> >>> >>> no - that was the question of the OP >>> i responded long ago with config values >> >> >> You're probably misunderstanding the precise meaning of "originated". > > > well *no points at all* if we talk about the client using a submission > server and not about the server itself deliver the mail to our machine > > you can do that only for your *personal* mail, but it's a no-go if you host > users > >>> the question above is a different one while i can't parse it completly >> >> >> The question is about an email from a client IP that's in a lot of >> blacklists. >> >> The IP address that's in the blacklists, 180.178.104.22, authenticated >> >> Received: from [180.178.104.22] (port=51022 helo=CapriciousDude) >> by vio1.naveca.biz with esmtpa (Exim 4.87) > > > it's nonsense to give points for dynamic enduser machines, they are > *typically* on a lot of blacklists and the users behind are changing all the > time > > when you want to know why - try to use sbl-xbl as suggested by spiderlabs > for a web-application-firewall, did that *only* for form-submissions and > reverted it after few hours on a sunday because support hell with no good > excuse
Yeah, that's it exactly. Particularly overseas where it doesn't appear NAT and/or submission are used as readily as they are here. So even though that IP is on virtually every blacklist, you wouldn't add any points? And there's nothing further the user could do to fix the problem, given the dynamic nature of the IP? Thanks, Alex
