Re: [Exim] How to test DNS-Deny lists

Top Page
Delete this message
Reply to this message
Author: Jens Strohschnitter
Date:  
To: EXIM Official Maillist
Subject: Re: [Exim] How to test DNS-Deny lists
Hi,

thanxx, it works. But another question for testing. Is it possible to test
it in real mode ? Just like faking the senderaddress:
(mail bla@??? -- -f spam@???) so that the mail will be rejected ?
Or how can I do this ?



> yes it would block according to IP.
>
> I have attached a debug for you to see.
>
> here is some of what I have in my conf file:
>
> <snip>
>  deny message       = rejected because $sender_host_address is in a black
> list at $dnslist_domain\n$dnslist_text
>   dnslists           = rbl.maps.vix.com :\
>                        dul.maps.vix.com :\
>                        dul.ru           :\
>                        sbl.spamhaus.org :\
>                        relays.mail-abuse.org :\
>                        list.dsbl.org:
> <snip>

>
> NB: Remember the colon after the last entry.
>



> > Hi there,
> >
> > I have added the following parameters in my exim.conf to
> > block domains/ips
> > of listed spammers in spamhaus.org:
> >
> > deny dnslists           = sbl.spamhaus.org : \
> >                             list.dsbl.org : \
> >                             cbl.abuseat.org : \
> >                             opm.blitzed.org : \
> >                             spamguard.leadmon.net
> >        message            = rejected because
> > $sender_host_address is in a blacklist at
> > $dnslist_domain\n$dnslist_text

> >
> >
> > After that, I wanted to test this. I have read that I should
> > use the "exim -bh" command.
> > But how do I have to use this ? A test with a listed
> > IP-Adress from spamhaus.org showes me
> > the following:
> >
> > # exim -bh 64.143.3.120
> >
> > **** SMTP testing session as if from host 64.143.3.120
> > **** but without any ident (RFC 1413) callback.
> > **** This is not for real!
> >
> > >>> host in host_lookup? yes (matched "*")
> > >>> looking up host name for 64.143.3.120
> > >>> IP address lookup yielded www.bulkisp.net
> > >>> gethostbyname looked up these IP addresses:
> > >>> name=www.bulkisp.net address=64.143.3.120
> > >>> checking addresses for www.bulkisp.net
> > >>> 64.143.3.120
> > >>> host in host_reject_connection? no (option unset)
> > >>> host in sender_unqualified_hosts? no (option unset)
> > >>> host in recipient_unqualified_hosts? no (option unset)
> > >>> host in helo_verify_hosts? no (option unset)
> > >>> host in helo_try_verify_hosts? no (option unset)
> > >>> host in helo_accept_junk_hosts? no (option unset)
> >
> > But I think, exim does not block the ipaddress. Is this correct ?
> >
> >
> > --
> > Regards,
> >
> >      Jens Strohschnitter

> >
> > -------------------------------------
> > *!!!LINUX LINUX LINUX LINUX LINUX!!!*
> >
> > * http://www.jens-strohschnitter.de *
> > -------------------------------------
> > Set the controls for
> >          the heart of the sun
> > -------------------------------------

> >
> >
> > --
> >
> > ## List details at
> > http://www.exim.org/mailman/listinfo/exim-users Exim details
> > at http://www.exim.org/ ##
> >
>
>



--
Regards,

     Jens Strohschnitter


-------------------------------------
*!!!LINUX LINUX LINUX LINUX LINUX!!!*

* http://www.jens-strohschnitter.de *
-------------------------------------
Set the controls for
         the heart of the sun
-------------------------------------