Juha Saarinen(juha@???)@2002.06.06 15:09:33 +0000:
> Experimenting with deny hosts under acl_check_rcpt, to shut out some
> spammers.
>
> If I've got a text file in this format:
>
> 65.124.104.0/24 # Aibusiness.net, etc. CopyDVD spammer.
> 65.124.105.0/24
> 65.124.106.0/24
> 65.124.107.0/24
> 65.124.108.0/24
> 65.124.109.0/24
> 65.124.110.0/24
> 65.124.111.0/24
> 206.239.10.142 # Reply.net
>
> etc., which is the appropriate lookup type to use?
>
> Would lsearch work if I terminate the entries before the #'s with a : ?
>
> --
> Juha Saarinen
>
This is very similar to what I've done. However, I made a script to get
the SPEWS level one list:
---
#!/bin/sh
# This retrievs the IP address is the SPEWS mirror
#
http://relays.osirusoft.com/mirror
# Run this script once per day.
/usr/local/bin/lynx -dont_wrap_pre -dump
http://www.spews.org/spews_list_level1.txt | awk '{print $1}' | \
grep -v "#" | sort -n | uniq > /etc/exim/LARTed.txt
/usr/local/sbin/exim_dbmbuild /etc/exim/LARTed.txt /etc/exim/LARTed.db.new
mv /etc/exim/LARTed.db.new /etc/exim/LARTed.db
exit 0
---
Then in my exim configuration file I have:
host_reject = dbm;/etc/exim/LARTed.db
I also block by domain name and have a fairly large file of domains I
don't accept email from, except from whitelisted users:
sender_reject_recipients = ! /etc/exim/whitelist : \
dbm;/etc/exim/spammers.db
This, plus using relays.osirusoft.com/reject has helped tremendously.
--
Scott Nolde
GPG Key 0xD869AB48
