Re: [exim] Using GeoIP to block spammers - anyone?

Top Page
This message is part of the following thread:
Mthe complete thread tree sorted by date
MMChad Leigh at <-
.MOdhiambo G. Washington at ->
Delete this message
Reply to this message
Author: Renaud Allard
Date:  
To: Odhiambo G. Washington
CC: exim-users
Subject: Re: [exim] Using GeoIP to block spammers - anyone?
Well, the DNS based list is based on the IP sending the mail AFAIK (no
slash). I use "sender_domain = !+local_domains" to not tag mails sent by
my server, but it's not mandatory at all. So you can use the variable
$dnslist_text to check if it is incoming from Kenya, and then block it
at whatever step you wish with a condition statement.
like

deny
dnslists = country-rirdata.dnsiplists.completewhois.com
condition = ${if match {$dnslist_text}{\NKE\N} {yes}{no}}



Odhiambo G. Washington wrote:
> * On 23/06/06 09:14 +0200, Renaud Allard wrote:
> |
> | Hi,
> |
> | GeoIP is somewhat non free (requires licencing).
> | What I use, just to put a header with the location in every mail, is a
> | DNS based location list which is free.
> |
> | My ACL is:
> | warn
> | sender_domains = !+local_domains
> | message = X-Location: $dnslist_text
> | dnslists = country-rirdata.dnsiplists.completewhois.com
> |
> | I don't know if it will detect Kenya correctly, so you will probably
> | have to make some tests.
>
> Hi Renaud,
>
> Thank you very much for the tip.
> I can confirm that it's detecting Kenya correctly as "KE - Kenya"
>
> Now I am wondering how I can use this information to block spammers.
> Initially, I was thinking of applying the "deny" of the connections at
> acl_smtp_connect, but your method, based on sender_domain, is not
> practical for this because at connect time, the sender_domain is
> not yet known...
> How are you using yours after the identification of the source country?
>
>
> 
>         cheers
>        - wash 
> +----------------------------------+-----------------------------------------+
> Odhiambo Washington                    . WANANCHI ONLINE LTD (Nairobi, KE)  |
> wash () WANANCHI ! com            . 1ere Etage, Loita Hse, Loita St.,  |
> GSM: (+254) 722 743 223            . # 10286, 00100 NAIROBI             |
> GSM: (+254) 733 744 121            . (+254) 020 313 985 - 9             |
> +---------------------------------+------------------------------------------+
> "Oh My God! They killed init! You Bastards!"  
>                          --from a /. post

>

--

.O.
..O
OOO

PGP key: http://www.llorien.org/gnupg/key.pub

Insanity: doing the same thing over and over again and expecting
different results.
- Albert Einstein

This message was posted to the following mailing lists:
Exim-users
Mailing List Info | Nearby Messages		<-Re: [exim] Queue priorityRe: [exim] Using GeoIP to block spammers - anyone?->
Tahini and Hummus and Cumin Development Archives administrated by cumin AdminsLurker (version 2.3)