Re: [GTALUG] Spam is basically dead
ac via talk wrote:
1. Bounce when no rDNS (exim/postfix/sendmail/qmail - 2 second conf)
Sometimes people don't have access to configure Reverse DNS (or PTR) as they are sending with a dynamic IP address. This isn't common but at least for GTALUG there are five or six people who host their email from their home on dynamic IP addresses.
2. Use 10+ dnsbl with properly configured spamassasin (cache locally) - with 2 (or more, or less) points per dnsbl listing (five minutes copy & paste for exim/postfix) -> dnsbl from here: http://multirbl.valli.org/
I stopped using SpamAssasin a while ago. I know use Rspamd, Rmilter, and OpenDMARC. I found SpamAssasin was letting in way to much spam and required way to much knowledge to run properly.
1. Bounce when no rDNS (exim/postfix/sendmail/qmail - 2 second conf) Sometimes people don't have access to configure Reverse DNS (or PTR) as
ac via talk wrote: they are sending with a dynamic IP address. This isn't common but at least for GTALUG there are five or six people who host their email from their home on dynamic IP addresses. Enough mail servers require a reverse DNS to accept incoming messages
On 08/16/2017 08:40 AM, Myles Braithwaite 👾 via talk wrote: that running a mail server without a reverse DNS setup correctly will block you from lots of mail destinations. Years ago I learned this lesson the hard way. If all you care about is this mail list and a hand full of other locations then run your mail server from home with no reverse. If you can find a properly setup forwarder then you may be able to have that site resend your messages. Also lots of ISP's filter outbound smtp connections.
2. Use 10+ dnsbl with properly configured spamassasin (cache locally) - with 2 (or more, or less) points per dnsbl listing (five minutes copy & paste for exim/postfix) -> dnsbl from here: http://multirbl.valli.org/ I stopped using SpamAssasin a while ago. I know use Rspamd, Rmilter, and OpenDMARC. I found SpamAssasin was letting in way to much spam and required way to much knowledge to run properly. I have hated Spamassassin for years but I still use it. I will have to take a look at rspamd.
-- Alvin Starr || land: (905)513-7688 Netvel Inc. || Cell: (416)806-0133 alvin@netvel.net ||
On Wed, 16 Aug 2017 08:40:03 -0400 Myles Braithwaite 👾 <me@mylesb.ca> wrote:
ac via talk wrote:
1. Bounce when no rDNS (exim/postfix/sendmail/qmail - 2 second conf) Sometimes people don't have access to configure Reverse DNS (or PTR) as they are sending with a dynamic IP address. This isn't common but at least for GTALUG there are five or six people who host their email from their home on dynamic IP addresses.
I did not say the reverse must match the forward. But the vast majority of email servers are dropping if no reverse zone as hijacked IP ranges do not have reverse zones. Dynamic IP numbers from your ISP usually/mostly have reverse zones. But to operate a real email server you will need a fixed IP number anyway for your own sanity So, if you do not want spam - drop if no reverse zone (rule 1) :)
2. Use 10+ dnsbl with properly configured spamassasin (cache locally) - with 2 (or more, or less) points per dnsbl listing (five minutes copy & paste for exim/postfix) -> dnsbl from here: http://multirbl.valli.org/
I stopped using SpamAssasin a while ago. I know use Rspamd, Rmilter, and OpenDMARC. I found SpamAssasin was letting in way to much spam and required way to much knowledge to run properly.
Which is why you use 10+ (If you do not want spam) If anyone applies the 6 rules - Spam is dead :) I have now worked with email for 30? years... and in that time I have seen that domains to do not have the same spam, so there is no magic single rbl, and spam trends change all the time. For new clients I always lookup the spam their domains get on around 300 International Blacklists, then build a short list of 15 -20 and then measure effectiveness of those against their incoming, these days it always works and spam is actually dead. Okay, well you still get the occasional manual sent spam from a public email account by some opportunist, but I mean that the senseless junk is all gone... Andre
Okay, well you still get the occasional manual sent spam from a public email account by some opportunist, but I mean that the senseless junk is all gone...
Senseless junk has been replaced by Sales people who use auto-follow-up software to email you every third day if you don't reply. It would be awesome if I could stop those. But they seem to be using the Sales person email client, Gmail or Outlook, so it's hard to filter them out.
participants (3)
-
ac -
Alvin Starr -
Myles Braithwaite 👾