Here is the scenario, spamcannibal is problematic and it doesn't look like the package is going to be fixed properly anytime soon. I'm tired of fighting it.
How can I: safely get a copy of spam, parse the spam for the headers that are valid to find out where it really came from, and then build a DNS blacklist from that? DNS blacklist built, how can I tarpit based off of the ip addresses that are blacklisted? Tarpit meaning, you can connect to me but you get stuck at that step and are never able to send data. Am I correct in thinking that I can install what is needed for the QUEUE iptables target without installing spamcannibal? If there is a third party project that works when you have two null relays and an internal mailhub, let me know. This is almost what I have, except I don't know how to masquerade properly so that Postfix can route out of either one of my two inbound email gateways instead of going out directly. Spamcannibal seems to assume one Internet connected mail server with no relays feeding email to it indirectly. It should be possible to split mail processing and tarpitting, but good luck figuring that out with the instructions available. I've backed out MailScanner and I've backed out SpamCannibal completely on all of my mail servers as well. I even went so far as to bring stock CentOS 5 perl back on my mail hub. I want to start out with something incredibly simple, I want to throw the smtp packets to user space and then throw them back. Once I can do that, it will be easier to add to that the tarpitting feature. I think if you don't acknowledge in 6 seconds or something like that that there is an auto resend. For writing a tarpit daemon driven by a local DNS blacklist, do I need to use C or can I do this in some other language? C and Perl I know, C better than Perl. I'd like to work together with anyone who is interested in the result and having an easier to install and easier to understand tarpit. ---------------------------------------------------------------- This message was sent using IMP, the Internet Messaging Program. _______________________________________________ PLUG mailing list [email protected] http://lists.pdxlinux.org/mailman/listinfo/plug
