Re: [exim] unblocking gmail

Top Page
Delete this message
Reply to this message
Author: Lena
Date:  
To: exim-users
Subject: Re: [exim] unblocking gmail
> From: Randy Bush

> > A caller that *survives* forward/reverse DNS lookup
>
> i can't do that. too many strange list subscribers from places that do
> not do much dns. too many users from strange places that do not do much
> dns.


I also don't deny connections without $sender_hostname. I greylist them
and other suspicious senders, but not everyone. I attached set of ACLs,
whitelists and blacklists I use to http://wiki.exim.org/DbLessGreyListingRun
Proved quite effective even without virus-filters, SpamAssassin and like.
Suitable for low to moderate load (up to about 300 thousand spams per day
to existing email addresses, not counting spam to nonexisting addresses).
For heavier load you can use my ACLs with a DB-based greylisting
http://wiki.exim.org/SpamFiltering

> one can not maintain good ip lists because goog,
> yahoo, et alia keep adding servers but not putting them in places such
> as dnswl.org.


I took google's blocks for my whitelist from gmail's spf. The blocks are large:
216.239.32.0/19 : 64.233.160.0/19 : 66.249.80.0/20 : \
72.14.192.0/18 : 209.85.128.0/17 : 66.102.0.0/20 : \
74.125.0.0/16 : 64.18.0.0/20 : 207.126.144.0/20 : \
so I think that addition of new large blocks is unlikely.
Hotmail advertises even larger blocks in their spf, I don't trust Micr0$oft,
so I haven't included them into my whitelist (but I use dnswl.org).

Lena