Re: filter-dnsbl and Abusix
Greeting, On Sat, 10 Feb 2024 20:10:36 +0100, J Doe wrote: > > ...however, if I try either the combined DNSBL from Abusix or the black > DNSBL from Abusix, it will reject mail from Hotmail as well as e-mail > that is hosted via 1&1's e-mail service. > > The man page for filter-dnsbl mentions Abusix, so I am assuming it > supports it, but why would this be happening ? It seems like all > responses via Abusix are detected as spam. > > Does anyone else make use of Abusix and see this behaviour ? > I use it. And Abusix is expect that you're using it with their white list as well. I do have a fork of filter-dnsbl which supports white listing, and which I'm using for more than a month now. Thus, in few weeks I plan to describe my email setup and share here a link, but I need some time to stabelize software before I announce it. -- wbr, Kirill
Re: filter-dnsbl and Abusix
On 2024-02-10 14:27, Martijn van Duren wrote:
On Sat, 2024-02-10 at 14:10 -0500, J Doe wrote:
Hello,
I have configured OpenSMTPD to make use of: filter-dnsbl:
/etc/mail/smtpd.conf
. . .
filter check_abusix proc-exec "filter-dnsbl -v
.black.mail.abusix.zone" user _dnsbl group _dnsbl
. . .
filter port_25_filters chain { check_rev_DNS, check_spamhaus,
check_abusix... }
...however, if I try either the combined DNSBL from Abusix or the black
DNSBL from Abusix, it will reject mail from Hotmail as well as e-mail
that is hosted via 1&1's e-mail service.
The man page for filter-dnsbl mentions Abusix, so I am assuming it
supports it, but why would this be happening ? It seems like all
responses via Abusix are detected as spam.
Does anyone else make use of Abusix and see this behaviour ?
Thanks,
- J
I don't use abusix myself. Some time ago someone pointed out to me
that keys were part of the address and thus popped up in the logs and
return codes. For the providers that are known to have keys I've
implemented a hardcoded way of stripping the key itself. Other than
that they have no special treatment in filter-dnsbl.
If you're sure these servers aren't listed it might be possible that
they return some special whitelist status. To keep filter-dnsbl simple
all answers are interpreted at listed.
martijn@
Hi Martijn,
Thank you for your reply.
Yes, in man when it mentioned stripping the key I was confused at first,
but then I understood what the documentation meant.
I also tried doing a manual lookup of a test value that Abusix mentions
on their website via dig - that works and returns 127.x.x.x values - but
doing a test against a Hotmail IPv4 address produces no results.
I was wondering if my resolver may be the issue. I run my own for the
mail server, as I know Spamhaus requires a dedicated resolver and not
the use of a public one like: 8.8.8.8, and I made sure to disable QNAME
minimization on the off chance that it was interfering, but no luck for
the Hotmail IPv4 address, again.
I suppose it's possible that there is some sort of issue on Abusix's
side, but their status page doesn't list anything for today so far.
Ah, well. filter-dnsbl is still great with SpamHaus ... if we can
figure out why Abusix is doing what it's doing, it will be nice to make
use of it. Maybe all the Abusix servers are distracted by Super Bowl
weekend, ha ha.
Thanks again,
- J
Re: filter-dnsbl and Abusix
On Sat, 2024-02-10 at 14:10 -0500, J Doe wrote:
> Hello,
>
> I have configured OpenSMTPD to make use of: filter-dnsbl:
>
> /etc/mail/smtpd.conf
> . . .
> filter check_abusix proc-exec "filter-dnsbl -v
> .black.mail.abusix.zone" user _dnsbl group _dnsbl
> . . .
> filter port_25_filters chain { check_rev_DNS, check_spamhaus,
> check_abusix... }
>
> ...however, if I try either the combined DNSBL from Abusix or the black
> DNSBL from Abusix, it will reject mail from Hotmail as well as e-mail
> that is hosted via 1&1's e-mail service.
>
> The man page for filter-dnsbl mentions Abusix, so I am assuming it
> supports it, but why would this be happening ? It seems like all
> responses via Abusix are detected as spam.
>
> Does anyone else make use of Abusix and see this behaviour ?
>
> Thanks,
>
> - J
>
I don't use abusix myself. Some time ago someone pointed out to me
that keys were part of the address and thus popped up in the logs and
return codes. For the providers that are known to have keys I've
implemented a hardcoded way of stripping the key itself. Other than
that they have no special treatment in filter-dnsbl.
If you're sure these servers aren't listed it might be possible that
they return some special whitelist status. To keep filter-dnsbl simple
all answers are interpreted at listed.
martijn@
filter-dnsbl and Abusix
Hello,
I have configured OpenSMTPD to make use of: filter-dnsbl:
/etc/mail/smtpd.conf
. . .
filter check_abusix proc-exec "filter-dnsbl -v
.black.mail.abusix.zone" user _dnsbl group _dnsbl
. . .
filter port_25_filters chain { check_rev_DNS, check_spamhaus,
check_abusix... }
...however, if I try either the combined DNSBL from Abusix or the black
DNSBL from Abusix, it will reject mail from Hotmail as well as e-mail
that is hosted via 1&1's e-mail service.
The man page for filter-dnsbl mentions Abusix, so I am assuming it
supports it, but why would this be happening ? It seems like all
responses via Abusix are detected as spam.
Does anyone else make use of Abusix and see this behaviour ?
Thanks,
- J
