Hello,
I have read this dabate over the real time black list and have this to say
about them... This is my approach as a server administrator and from the
stand point of having my domain blocked because my "neighbors" didn't "play"
nice.
I use the warn clause as follows at the server level:
To identify the sending country, I use:
warn message = X-Location: $dnslist_text
dnslists = country-rirdata.dnsiplists.completewhois.com
to identify blacklisted entries, I use:
warn condition = ${lookup
{${lc:$sender_helo_name}}lsearch{/usr/exim/MyIP}{no}{yes}}
condition = ${lookup
{${lc:$sender_host_address}}lsearch{/usr/exim/MyIP}{no}{yes}}
dnslists = abuse.rfc-ignorant.org
message = X-BlackList: Listed in
$dnslist_domain/$dnslist_text
I repeat this for ~135 different RBLs... Overkill perhaps, but the more
information I can provide my users, the better their choices will be. My
experience with using deny with RBLs is an automatic loss of 10% good mail.
on my personal account, I filter anything and everything to the max. This
gives me all my mail, and I don't get all the trash... I've educated all my
users to do the same. Its an effective and effecient way of getting the
best of both worlds: the good mail and no spam. My server handles anywhere
from 25,000 to 1 million emails a day.
My official opinion of RBLs: They have their plaace if used wisely, but
they are usually used in the worst ways. Often, they block large groups of
innocent people suffer from there misuse and even when you try to get
innocent domains removed from them, the respose is usually, "tough !@#$" or
"Thats your problem". This is where RBL owners truely fail in their goals
and where RBLs tend to fail the most in general.
