RE: [Declude.JunkMail] Max whitelists hit

[Craig Edmonds]

Yes, I realise that, and am fully aware on the methods to lock down the mail server but there are very good logistaical reasons why I can implement that at the moment, so this is not the issue or the solution for me at the moment.   I plan to implement SMTP AUTH in the near future, BUT, the whitelisting in declude should still work.   This raises anotehr good question, if the "whitelisting" does not work on more than a few email addresses, does this mean that the "blacklisting" does not work either?   Kindest Regards Craig Edmonds 123 Marbella Internet W: www.123marbella.com E : [EMAIL PROTECTED]      From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Kevin Bilbee Sent: Friday, July 28, 2006 7:54 PM To: declude.junkmail@declude.com Subject: RE: [Declude.JunkMail] Max whitelists hit If you are not authenticating your users then your SMTP server is open for spammers to forge the “from” address to relay through your server! Unless you only allow relaying from specific ip addresses. “Relay for local users only” is a great way for spammers to hijack your server.   “Relay Mail for Addresses” and “No Mail Relay” are the only safe relay options. Assuming the addresses trusted in relay for addresses are secure from unauthorized relaying.       Kevin Bilbee           From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Craig Edmonds Sent: Friday, July 28, 2006 8:15 AM To: declude.junkmail@declude.com Subject: RE: [Declude.JunkMail] Max whitelists hit Importance: High Sensitivity: Confidential   Thanks John, but Authentication is not an option right now and I will suffer the few forged addresses that come through.   I did not realise that there was a limit to the amount of domains I can put in the whitelist and its worked until now whilst testing it with a  few domains but with a long list of 500 domains it does not work properly, when really it should.   Without posting really really confidential information here, I need to be able whitelist, the same way that I can blacklist.   I have one guy at domainA.com trying to send to another guy at domainB.com and both domains are on the same server. domainB.com is not getting the emails becasue domainA.com's ip address where they are located is blacklisted quite badly and the email when sent through our server is given a score of 48, which means any email that domainA.com sends to domainB.com gets put in the spam hold queue. Right now I need to be able to use the whitelisting functionality of declude. Kindest Regards Craig Edmonds 123 Marbella Internet W: www.123marbella.com E : [EMAIL PROTECTED]   From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of John T (Lists) Sent: Friday, July 28, 2006 4:52 PM To: declude.junkmail@declude.com Subject: RE: [Declude.JunkMail] Max whitelists hit Sensitivity: Confidential 1. Sorry, your email was not considered confidential and has been included in a public archive for all to see.   2. As I said before, please stop using the silly white listing of a domain. Haven’t you heard of forged addresses?   3. Please review your configuration and correct the problem causing your clients outbound email to be scanned. What you are doing is a workaround, not fixing the actual problem. You will have to bite the bullet and start forcing your users to authenticate and in doing so can easily whitelist based upon the fact that they authenticated.   John T eServices For You   "Seek, and ye shall find!"   -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Craig Edmonds Sent: Friday, July 28, 2006 5:28 AM To: declude.junkmail@declude.com Subject: RE: [Declude.JunkMail] Max whitelists hit Importance: High Sensitivity: Confidential   Hi David, It kind of works. In C:\IMAIL\Declude\$default$.junkmail I have placed the following line: WHITELISTFILE            C:\IMAIL\Declude\Filters\whitelist.txt The file at C:\IMAIL\Declude\Filters\whitelist.txt contains a list of email addresses in the following format: @123-reg.co.uk @tapiz.com.ar @redhothomes.co.uk @cloudninemurcia.com @cloudninemarbella.com (there is about 500 domains I am whitelisting at the moment) I am sitting here watching the log file (btw, I am using a programme called "BareTail" which absolutely rocks when you want to look at live log files http://www.baremetalsoft.com) and it seems that its whitelisting "some" domains listed in the whitelist.txt file but still passes many of the domains in the whitelist file through the declude spam filter. This results in many of my clients emails being held in the spam folder. Any ideas? Kindest Regards Craig Edmonds 123 Marbella Internet W: www.123marbella.com E : [EMAIL PROTECTED] -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of David Barker Sent: Thursday, July 27, 2006 3:40 PM To: declude.junkmail@declude.com Subject: RE: [Declude.JunkMail] Max whitelists hit Sensitivity: Confidential Yes, in the global.cfg there is a limit. If you need to have unlimited whitelist entries, or if you need per-user or per-domain whitelisting, you may find the WHITELISTFILE option helpful. To use this option, you need to add a line in the format "WHITELISTFILE D:\{MAILSERVER}\Declude\mywhitelist.txt" to the appropriate configuration file (\{MAILSERVER}\Declude\$default$.JunkMail, or the per-user/per-domain configuration file you wish to use the whitelists with). The D:\{MAILSERVER}\Declude\mywhitelist.txt file would then contain either one E-mail address ("[EMAIL PROTECTED]") or domain ("@example.com") or subdomain (".example.com") per line. The whitelist files can have unlimited entries in them. Note that the file you use with the WHITELISTFILE option does NOT use the same format as the WHITELIST entries in the global.cfg file. Also, note that the WHITELISTFILE option does not work in the global.cfg file. David B www.declude.com ________________________________ From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Craig Edmonds Sent: Thursday, July 27, 2006 9:34 AM To: declude.junkmail@declude.com Subject: [Declude.JunkMail] Max whitelists hit Importance: High Sensitivity: Confidential just found this in my declude log. 07/27/2006 15:28:25.221 qbf78048c0118c40b.smd WARNING: Max whitelists hit. Some whitelists will not be processed! Is there a limit to the amount of domains you can put in the whitelist? Kindest Regards Craig Edmonds 123 Marbella Internet W: www.123marbella.com <http://www.123marbella.com/>; E : [EMAIL PROTECTED]   <http://i.msgtag.com/alaqebaugecbtfqn/xlkcihtsdEb/aom/yi.gif>; --- This E-mail came from the Declude.JunkMail mailing list. To unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type "unsubscribe Declude.JunkMail". The archives can be found at http://www.mail-archive.com. --- This E-mail came from the Declude.JunkMail mailing list.  To unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type "unsubscribe Declude.JunkMail".  The archives can be found at http://www.mail-archive.com. --- This E-mail came from the Declude.JunkMail mailing list. To unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type "unsubscribe Declude.JunkMail". The archives can be found at http://www.mail-archive.com. --- This E-mail came from the Declude.JunkMail mailing list. To unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type "unsubscribe Declude.JunkMail". The archives can be found at http://www.mail-archive.com. --- This E-mail came from the Declude.JunkMail mailing list. To unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type "unsubscribe Declude.JunkMail". The archives can be found at http://www.mail-archive.com. --- This E-mail came from the Declude.JunkMail mailing list. To unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type "unsubscribe Declude.JunkMail". The archives can be found at http://www.mail-archive.com. --- This E-mail came from the Declude.JunkMail mailing list. To unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type "unsubscribe Declude.JunkMail". The archives can be found at http://www.mail-archive.com.