> I wonder if anyone can help? I need to put 1,500,000 IP entries into a
> table. My box is a P3-450 CPU, 1.5G of RAM, 6G IDE HD, 2NIC, Openbsd
> 3.4 with custom kernel running a bridge with PF. So far works great
> except when I tried to load a large list of IPs into a PF table.
>
> So far I have managed to load 800,000 IPs into a table when I set
> nkmempages to 32768. 49152 & 65536 fails to boot with:
> Outblaze Ltd. www.outblaze.com
OK, so like many people reading this message I said, "WTF?!" out loud when I
read this post this morning. Then as I scanned through the post, I
remembered a "courtesy note" (my emphasis, not theirs) I had just received
from Outblaze.com earlier this morning after contacted their postmaster desk
(which I have never done).
(This posting and the note I received earlier are completely coincidental
timing, I'm sure).
I actually got a couple of these messages from outblaze.com this morning,
and believe me, *none* of my machines have ever
[1] Delivered a spam to us
[2] Triggered antispam filters
of these fellows as they state list in the email I received (quoted below
verbatim). Perhaps I was previously blocked and they're "retesting" me.
Uh-huh.
Personally, I think they're nuts for a variety of reasons. But more
importantly, I wanted to bring full disclosure to this posting. Namely, if I
know for an absolute, certain, indubitable fact that none of my machines
have met their 'requirements', why on Earth am I being contacted by them?
Perhaps it's completely innocuous; perhaps not. Now that I'm thinking about
it, how many innocent people/servers are being blacklisted by this
technique?
<sarcasm>
And more importantly, wouldn't this technique be an outstanding way to solve
the spam problem if MSN, Yahoo, Earthlink, and AOL did it, too?! YAY! I
think I'm going to start firing up a bunch of boxes to do this, too! You
guys wouldn't mind getting a few emails from me would ya?!
</sarcasm>
Kevin
Here's the message I received from them in its entirety, for those that are
interested....
----------------------------------------
Hello
Thank you for contacting the Outblaze postmaster desk.
The obsl.outblaze.com machine is a Outblaze Security resource that is used
as a
tool to assist us in determining if machines being used to send us mail may
be
abused from outside sources, allowing them to be used to spam our customers
and
role accounts. We fully understand your concerns surrounding the probing of
your machine. This issue has been raised internally and we hope this email
helps you better understand our process.
The intention of this process is truly not meant to be a big brother system,
but we understand that some may view it as such. Our ultimate goal, however,
is
to protect our network and our customers. Given that we are an ISP with
over
30 million users, we have to adopt this strategy.
To that end, Outblaze has begin the reactive testing of IP addresses which
connect to its inbound SMTP gateways. If your machine connects to ours to
send
email, we perform SMTP relay and open proxy server tests upon the connecting
IP
address to ensure that the machine at that IP address cannot be abused for
malicious purposes.
Your mail server is most likely being tested because your IP
[1] Delivered a spam to us
[2] Triggered antispam filters (such as sent us a significant number of
emails
with hotmail, yahoo or other freemail domains in the envelope sender, but
not
from a hotmail / yahoo IP)
[3] We were previously blocking you, and we are retesting your host. If
your
host is now seen to be closed to relaying, it will be delisted from our
blocklist.
If your server is found to be an open relay or proxy it will be locally
blocked
by us. In such a case, please secure your server using the documentation at
http://www.mail-abuse.org/tsi/ar-fix.html (open relays) and
http://www.cyberabuse.org (for open proxies).
Alternatively, you can ask your software manufacturer / on mailing lists and
usenet newsgroups discussing your mail / proxy server), and then contact us
at
[EMAIL PROTECTED] once your relay or proxy is secured.
This message is a test of your mail server to determine if it will perform
relaying or proxying (re-sending) of e-mail messages for unauthorized
outside
parties. This capability, if enabled in your server, is widely considered
to
be a serious flaw in server security.
For additional information about this test message, please contact
[EMAIL PROTECTED]
Please note also that if you are reading this message, then the implication
is
that your mail server has PASSED this one particular relaying test. However
other types of relaying tests may perhaps still indicate mail relaying
vulnerabilities in your mail server.
If your IP is not running an open mail relay or proxy, we sincerely
apologize
for the inconvenience caused. Your IP will, in such a case, be whitelisted
from further testing for a period of time.
The status of your mailserver can be checked at this URL -
http://spamblock.outblaze.com/your_ip_here
Sincerely,
[EMAIL PROTECTED]
