Re: [Exim] How to test DNS-Deny lists

Top Page
Delete this message
Reply to this message
Author: Tim Jackson
Date:  
To: EXIM Official Maillist
Subject: Re: [Exim] How to test DNS-Deny lists
Hi Jens, on Mon, 26 Jan 2004 14:08:51 +0100 you wrote:

> I have added the following parameters in my exim.conf to block
> domains/ips of listed spammers in spamhaus.org:
> deny dnslists           = sbl.spamhaus.org : \
>                             list.dsbl.org : \
>                             cbl.abuseat.org : \
>                             opm.blitzed.org : \
>                             spamguard.leadmon.net
>        message            = rejected because $sender_host_address is in
>        a blacklist at $dnslist_domain\n$dnslist_text


Where? In your RCPT ACL? (this would be the normal place)

BTW, you might be better off replacing the two entries sbl.spamhaus.org
and cbl.abuseat.org with sbl-xbl.spamhaus.org.

> After that, I wanted to test this. I have read that I should use the
> "exim -bh" command. But how do I have to use this ?


You run an example SMTP session through it.

> A test with a listed IP-Adress from spamhaus.org showes me the
> following:# exim -bh 64.143.3.120

[snip -bh output up to connect time stage]
> But I think, exim does not block the ipaddress. Is this correct ?


Yes, assuming you put the ACL rules into your RCPT ACL, because you didn't
run through an SMTP session up to that (RCPT) point. After doing exim -bh,
you need to do (e.g.):

HELO test
MAIL FROM: <>
RCPT TO: <someuser>

and then you should see the "message" being blocked, if the host is listed
in one of the blacklists you are using.

Tim