Hi Markus. Or, your users can put the following in their
individual ~/.procmailrc:
:0
* ? test -f "${HOME}/.procmail.reject"
* ? formail -c -x received: | fgrep -i -s -f "${HOME}/.procmail.reject"
/dev/null
where ${HOME}/.procmail.reject is a record list of the form:
[123.321.123.321]
to reject stuff from a specific machine, or:
[123.321.
to reject messages from an entire class B domain, which is placed in
the "Received:" header.
Its less efficient, and won't work for a major mail gateway, but it is
adaquate to allow users to prohibit reception of mail from certain
specific machines/domains.
John
BTW, you might want to replace "/dev/null" with something like:
{
EXITCODE=100
:0
/dev/null
}
which will cause qmail to refuse to deliver the email-since many
spammers keep email addresses in a database, which will be removed
under an exception.
Eric Cox writes:
>
>
> Markus Stumpf wrote:
> >
> > On Tue, Jul 04, 2000 at 01:17:46PM -0600, Charles Cazabon wrote:
> > > This would block a lot of valid mail as well. I frequently send mail from
> > > a given machine using a different (but valid) envelope sender -- and I will
> > > sometimes use my Hotmail address if I am afraid that I might end up on
> > > the recipient's mailing list(s).
> >
> > I know.
> > But my alternative in the moment (we do receive at most one legitimite
> > email from hotmail.com a month) - as we have now - is to put hotmail.com
> > in badmailfrom.
>
> I use ORBS (orbs.org) here and at work, although some people have said it
> has too many false positives and other problems (but let's not rehash that
> issue, okay folks?)
>
> But I also use my own RBL-style spammer domain, myrbl.com, and feed it
> to rblsmtpd its command line. Then just put the rIP of the offending
> machine in the domain, and presto! It's gone. This allows me to add any
> spammer/open relay to the list in a matter of seconds. (I wrote some
> simple python scripts to make it easier - email me if interested). Also,
> with BIND 8, you can have the domain appear only on your mail machine's
> nameserver too - so if someone else runs the main nameserver, he/she won't
> have to deal with it.
>
> Eric
--
John Conover [EMAIL PROTECTED] http://www.johncon.com/
631 Lamont Ct. Tel. 408.370.2688 http://www.johncon.com/ntropix/
Campbell, CA 95008 Fax. 408.379.9602 http://www.johncon.com/nformatix/
