at present i did stopped the spamdyke, (close to 3 months it was not in use because of some SPAM tag issues)
i did used the default settings it provides when we install it. > From: [email protected] > To: [email protected] > Date: Thu, 5 Nov 2009 08:58:50 -0800 > Subject: RE: [qmailtoaster] Spam issues > > I was actually referring to Nicole's posts Rafael... > > > Michael J. Colvin > NorCal Internet Services > www.norcalisp.com > > > > > > -----Original Message----- > > From: Rafael Andrade [mailto:[email protected]] > > Sent: Thursday, November 05, 2009 8:05 AM > > To: [email protected] > > Subject: Re: [qmailtoaster] Spam issues > > > > See my confs below... :) > > > > [r...@net ~]# ps aux | grep spamdyke > > vpopmail 7922 0.0 0.1 5992 2084 ? S 13:48 0:00 /usr/local/bin/spamdyke > > -f /etc/spamdyke/spamdyke.conf /var/qmail/bin/qmail-smtpd > > /home/vpopmail/bin/vchkpw /bin/true > > vpopmail 7941 0.0 0.1 5104 2088 ? S 13:59 0:00 /usr/local/bin/spamdyke > > -f /etc/spamdyke/spamdyke.conf /var/qmail/bin/qmail-smtpd > > /home/vpopmail/bin/vchkpw /bin/true > > root 8014 0.0 0.0 4120 612 pts/0 D+ 14:02 0:00 grep spamdyke > > vpopmail 21889 0.0 0.0 1736 532 ? S Nov03 0:00 /usr/bin/tcpserver -D -t > > 1 -v -P -R -H -l net -x /etc/tcprules.d/tcp.smtp.cdb -c 100 -u 89 -g 89 > > 0 smtp /usr/local/bin/spamdyke -f /etc/spamdyke/spamdyke.conf > > /var/qmail/bin/qmail-smtpd /home/vpopmail/bin/vchkpw /bin/true > > > > Nov 5 13:48:40 net spamdyke[7924]: DENIED_RBL_MATCH from: > > [email protected] to: [email protected] origin_ip: > > 94.178.208.254 origin_rdns: 254-208-178-94.pool.ukrtel.net auth: (unknown) > > Nov 5 13:57:03 net spamdyke[7937]: DENIED_RDNS_MISSING from: > > [email protected] to: [email protected] origin_ip: > > 151.62.6.23 origin_rdns: (unknown) auth: (unknown) > > Nov 5 13:59:19 net spamdyke[7941]: DENIED_IP_IN_CC_RDNS from: > > [email protected] to: [email protected] origin_ip: 200.174.43.26 > > origin_rdns: 200-174-43-26.gegnet.com.br auth: (unknown) > > Nov 5 14:00:43 net spamdyke[8005]: DENIED_GRAYLISTED from: > > [email protected] to: [email protected] origin_ip: 74.126.30.180 > > origin_rdns: mail.getmailer.com auth: (unknown) > > Nov 5 14:01:11 net spamdyke[8007]: DENIED_RDNS_RESOLVE from: > > [email protected] to: [email protected] origin_ip: > > 58.186.19.63 origin_rdns: 58-186-19-xxx-dynamic.hcm.fpt.vn auth: (unknown) > > > > > > > > My spamdyke Conf: > > [r...@net ~]# cat /etc/spamdyke/spamdyke.conf > > # rbl > > dns-blacklist-entry=bl.spamcop.net > > dns-blacklist-entry=zen.spamhaus.org > > dns-blacklist-entry=dnsbl.sorbs.net > > dns-blacklist-entry=bogons.cymru.com > > dns-blacklist-entry=ix.dnsbl.manitu.net > > dns-blacklist-entry=cbl.abuseat.org > > dns-blacklist-entry=dnsbl.njabl.org > > > > > > # graylist > > #graylist-dir=/etc/spamdyke/graylist.d > > graylist-dir=/home/vpopmail/graylist.d > > graylist-level=always > > graylist-max-secs=2678400 > > graylist-min-secs=180 > > greeting-delay-secs=5 > > > > > > local-domains-file=/var/qmail/control/rcpthosts > > #log-level=debug > > log-level=info > > log-target=syslog > > #log-target=stderr > > max-recipients=50 > > #policy-url=http://my.policy.explanation.url/ > > reject-empty-rdns > > reject-ip-in-cc-rdns > > reject-missing-sender-mx > > reject-unresolvable-rdns > > tls-certificate-file=/var/qmail/control/servercert.pem > > > > > > # blacklist and whitelist ip > > ip-blacklist-file=/etc/spamdyke/blacklist_ip > > ip-whitelist-file=/etc/spamdyke/whitelist_ip > > > > # blacklist and whitelist keywords > > ip-in-rdns-keyword-blacklist-file=/etc/spamdyke/blacklist_keywords > > ip-in-rdns-keyword-whitelist-file=/etc/spamdyke/whitelist_keywords > > > > # blacklist and whitelist senders > > sender-blacklist-file=/etc/spamdyke/blacklist_senders > > sender-whitelist-file=/etc/spamdyke/whitelist_senders > > > > # blacklist and whitelist rdns > > rdns-blacklist-file=/etc/spamdyke/blacklist_rdns > > rdns-whitelist-file=/etc/spamdyke/whitelist_rdns > > > > # whitelist dns > > dns-whitelist-file=/etc/spamdyke/whitelist_dns > > > > # blacklist and whitelist recipients > > recipient-blacklist-file=/etc/spamdyke/blacklist_recipients > > recipient-whitelist-file=/etc/spamdyke/whitelist_recipients > > > > #EOF > > > > > > cat /var/qmail/supervise/smtp/smtpd/run > > #!/bin/sh > > QMAILDUID=`id -u vpopmail` > > NOFILESGID=`id -g vpopmail` > > MAXSMTPD=`cat /var/qmail/control/concurrencyincoming` > > BLACKLIST=`cat /var/qmail/control/blacklists` > > SMTPD="/var/qmail/bin/qmail-smtpd" > > TCP_CDB="/etc/tcprules.d/tcp.smtp.cdb" > > RBLSMTPD="/usr/bin/rblsmtpd" > > HOSTNAME=`hostname` > > VCHKPW="/home/vpopmail/bin/vchkpw" > > REQUIRE_AUTH=0 > > > > exec /usr/bin/softlimit -m 30000000 \ > > /usr/bin/tcpserver -D -t 1 -v -P -R -H -l $HOSTNAME -x $TCP_CDB -c > > "$MAXSMTPD" \ > > -u "$QMAILDUID" -g "$NOFILESGID" 0 smtp \ > > /usr/local/bin/spamdyke -f /etc/spamdyke/spamdyke.conf $SMTPD $VCHKPW > > /bin/true 2>&1 > > > > > > > > What u think about? Can help? need more information? > > > > Thanks in advance > > > > Rafael > > > > Michael Colvin escreveu: > > > > > > Am I missing something here… I don’t see any indication that Spamdyke > > > is running on your mail server. If this is the case, that would be the > > > first thing I would change. The source IP address from the e-mail > > > header is listed in over a dozen blacklists. Adding Spamdyke and a few > > > blacklists would have blocked this message all together, and taken > > > load off of your mail server. > > > > > > If you do have Spamdyke installed, you need to post your config for > > > it, so we can see what blacklists you are using. > > > > > > **Michael J. Colvin** > > > > > > **NorCal Internet Services** > > > > > > **//www.norcalisp.com// <http://www.norcalisp.com/>** > > > > > > <http://www.norcalisp.com/> > > > > > > ------------------------------------------------------------------------ > > > > > > *From:* nicole thomson [mailto:[email protected]] > > > *Sent:* Thursday, November 05, 2009 6:27 AM > > > *To:* [email protected] > > > *Subject:* RE: [qmailtoaster] Spam issues > > > > > > here it is jake > > > tcp.smtp > > > #cat /etc/tcprules.d/tcp.smtp > > > 127.:allow,RELAYCLIENT="",SENDER_NOCHECK="" > > > 192.168.25.:allow,SENDER_NOCHECK="" > > > 172.16.0.:allow,RELAYCLIENT="",SENDER_NOCHECK="" > > > 216.9.253.191,allow,RBLSMTPD="-rblsmtpd deny: take your spam elsewhere!" > > > > > :allow,BADMIMETYPE="",BADLOADERTYPE="M",CHKUSER_RCPTLIMIT="10000",CHKUSER_ > > WRONGRCPTLIMIT="10",QMAILQUEUE="/var/qmail/bin/simscan",DKQUEUE="/var/qmai > > l/bin/qmail-queue.orig",NOP0FCHECK="1",SENDER_NOCHECK="1" > > > > > > spamassassin/local.cf > > > > > > # These values can be overridden by editing > > ~/.spamassassin/user_prefs.cf > > > # (see spamassassin(1) for details) > > > # These should be safe assumptions and allow for simple visual sifting > > > # without risking lost emails. > > > > > > ok_locales all > > > #skip_rbl_checks 1 > > > > > > required_score 12 > > > report_safe 0 > > > #rewrite_header Subject ***SPAM*** > > > > > > use_pyzor 1 > > > > > > use_auto_whitelist 1 > > > > > > use_bayes 1 > > > use_bayes_rules 1 > > > bayes_auto_learn 1 > > > whitelist_from *[email protected] > > > > > > > > > cdb files in control directory > > > > > > ls -lth *.cdb > > > > > > -rw-r--r-- 1 root root 2.0K Nov 5 18:10 badloadertypes.cdb > > > -rw-r--r-- 1 root root 2.0K Nov 5 18:10 badmimetypes.cdb > > > -rw-r--r-- 1 root root 2.1K Nov 5 18:10 simcontrol.cdb > > > -rw-r--r-- 1 root root 2.2K Nov 5 18:10 simversions.cdb > > > > > > > > > > > > > > > ------------------------------------------------------------------------ > > > > > > Date: Thu, 5 Nov 2009 09:20:36 -0500 > > > From: [email protected] > > > To: [email protected] > > > Subject: Re: [qmailtoaster] Spam issues > > > > > > nicole thomson wrote: > > > > > > i did modified tcp.smtp and did qmailctl cdb without fail > > > > > > -rw-r--r-- 1 root root 15K Nov 5 18:10 tcp.smtp.cdb > > > -rw-r--r-- 1 root root 2.3K Nov 5 18:10 tcp.smtp > > > > > > > > > We need to see the contents of the tcp.smtp file so we can make sure > > > there are no errors. > > > > > > ------------------------------------------------------------------------ > > > > > > Windows 7: Find the right PC for you. Learn more. > > > <http://windows.microsoft.com/shop> > > > > > > > -------------------------------------------------------------------------- > > ------- > > Qmailtoaster is sponsored by Vickers Consulting Group > > (www.vickersconsulting.com) > > Vickers Consulting Group offers Qmailtoaster support and > > installations. > > If you need professional help with your setup, contact them today! > > -------------------------------------------------------------------------- > > ------- > > Please visit qmailtoaster.com for the latest news, updates, and > > packages. > > > > To unsubscribe, e-mail: qmailtoaster-list- > > [email protected] > > For additional commands, e-mail: qmailtoaster-list- > > [email protected] > > > > > > --------------------------------------------------------------------------------- > Qmailtoaster is sponsored by Vickers Consulting Group > (www.vickersconsulting.com) > Vickers Consulting Group offers Qmailtoaster support and installations. > If you need professional help with your setup, contact them today! > --------------------------------------------------------------------------------- > Please visit qmailtoaster.com for the latest news, updates, and packages. > > To unsubscribe, e-mail: [email protected] > For additional commands, e-mail: [email protected] > > _________________________________________________________________ Windows 7: Simplify what you do everyday. Find the right PC for you. http://windows.microsoft.com/shop
