And my other recommendation stands -- look into which BLs will let you
replicate their zone/s locally.
Thank you for your advice.
Among other things, I've been reviewing the spam tests I've enabled. I
thought I might share my observations with the list here, as a sounding
board. Perhaps I
How does one go about replicating a zone locally to begin with? Can you
replicate multiple zones locally?
Sure.
Should you do this on the machine that is
hosting SmarterMail/Declude, or on another?
Sniffer is my best test. INVURIBL used to be fantastic, but it doesn't fare
quite as well
*unsticks Ctrl key*
How does one go about replicating a zone locally to begin with?
2 ways, depending on the BL. They could let you use standard DNS zone
transfer, or they could make you do an out-of-band HTTP/FTP download
of the zone.
--Sandy
Sanford
IADB holds the IP's of good senders and helps reduce false positives so the
hit rate may be low but it is worth having. MAILPOLICE can be consolidated
into a single lookup.
David Barker
VP Operations Declude
Your Email security is our business
978.499.2933 office
978.988.1311 fax
How does this work then, if you don't mind me asking stupid questions...?
...Declude just does a DNS lookup on the defined server and checks to see if
it returns an authoritative or non-authoritative response for the host name
of the e-mail address, and then pass/fails on that?
I Googled a few
Cbl is a subset of zen.spamhaus.org so you could be double scoring that.
UCEPROTECT-2 and UCEPROTECT-1 overlap considerable. You are probably double
scoring there.
DNSBL and IADB are whitelists. They would have lower scores.
SORBS is shutting down. Might want to remove that
...Declude just does a DNS lookup on the defined server and checks to see if
it returns an authoritative or non-authoritative response for the host name
of the e-mail address, and then pass/fails on that?
Yes, same way DSBLs usually work, only when you replicate the zone,
your DNS server is
INVURIBL used to be fantastic, but it doesn't fare
quite as well these days. Does anyone recommend anything else?
invURIBL is extremely effective for me even more so now that
(personally) I am using the invaluement lists which haven been
absolutely terrific.
The one problem with the URI
Note that the resulting downoaded file is in RBLDNS format. So you
would convert it to a standard zone file. What DNS server do you use?
I'm using The MS DNS that comes on 2003 Server. I have it installed on both
of the SmarterMail/Declude/Sniffer/INVURIBL boxes.
Is that a bad, or a good
invURIBL is extremely effective for me even more so now that
(personally) I am using the invaluement lists which haven been
absolutely terrific.
Wow. That blindsided me. I was completely ignorant of how the product
worked. I thought that Invariant Systems maintained their own list, and
Hi Michael,
I'm using Windows 2003 DNS server as well, and have had no trouble with it
at all. There are some advantages to Simple DNS when it comes to
integration and replication of an entire server, but I've made up those
deficiencies with scripting around the DNSCMD utility in the Windows
Just glancing around their website, I see that they recommend RSYNC
to RBLDNSD formatted files. The Invaluement people here recommend
Simple DNS Plus as a replacement for Windows DNS. Would most people
here make the same recommendation?
I really have nothing against Windows DNS, no
There are some advantages to Simple DNS when it comes to
integration and replication of an entire server, but I've made up those
deficiencies with scripting around the DNSCMD utility in the Windows
Server
Resource Kit..
Thanks, Darin!
I've written scripts using DNSCMD before; I guess I
Michael Cummins wrote:
invURIBL is extremely effective for me even more so now that
(personally) I am using the invaluement lists which haven been
absolutely terrific.
Wow. That blindsided me. I was completely ignorant of how the product
worked. I thought that Invariant Systems
The product is basically the conduit from the URI in the email to the
list. In fact if you wanted to you could host your own URI list
internally and add domains as you see fit. We have many customers that
do this.
I understand now.
What does a record for URI look like in DNS? How do
15 matches
Mail list logo