heck, if you are paranoid about such thing (i am), here is a cron job for you (requires wget):
#!/bin/sh # wjp last updated 8/26/03 # first we query the rbls... # rbl_file="/tmp/check_rbls.out" rbl_IP="yourMailServerIP" rbl_site="http://rbls.org/?q=$rbl_IP"; mail_from="YourCronMailAddress" mail_to="YourMailAddress"
wget -o/var/log/web.cron/check_rbls.sh.cron.log -T90 -t5 -O$rbl_file $rbl_site
# then we look for 'red'... if [ -s $rbl_file ] ; then rbl_count=`grep -c "bgcolor\=\#ffc0c0" $rbl_file` if [ $rbl_count -gt 0 ] ; then
# then fire off a note to the admin /usr/sbin/sendmail -f $mail_from $mail_to<<EOF Subject: rbl detection for $rbl_IP
The IP address $rbl_IP has shown up on the rbl lists as a source for SPAM.
Number of servers showing this information: $rbl_count
The details may be found here: $rbl_site
EOF
fi rm $rbl_file fi
kind of a hack but if you fire that dude off once a day or so and you will know how you stand with the majority of the rbls.
b
Lahu wrote:
Hi eveybody, I m a pretty satisfied JAMES user. So far, JAMES has pleased me on almost every account. (Though, I helped catch a service-level (i.e. SMTP, NNTP, POP) "connectionLimit" bug)
However, I see a growing concern amongst my peers for
the "open-relay" thing. I want to inquire that, can
JAMES be possibly listed in the blacklists (ORDB, MAPS
etc.).
I m asking because JAMES accepts the messages from ANY
IP address. However, later when we use the "RemoteAddrNotinNetwork" mailet/matcher pair, we can
successfully dispatch the mail to the SPAM folder
(though, still accepting the message), which indicates
that the SMTP session had been successfully completed.
This, in effect, makes JAMES a blackhole for the
spammers i.e. it does not relay the emails. ASSUME
that i m unable to use the SMTP AUTH.
On the other hand, can this behaviour cause RBL's like ORDB, MAPS etc. to believe that this mail server (JAMES) is configured as open relay ? What I mean to ask here is that, when these RBL organizations (ORDB, MAPS etc.) perform their automated tests, would they declare JAMES as "open relay" only on the basis of the fact that it accepted the emails OR rather would they go great lengths verifying whether actually that mail was relayed or not ?
I hope I made it clear. Pardon me for not expressing it the concise way as English is not my primary language.
P.S: Do I sound like I m asking for an ESMTP-like feature ??? Coz, I believe (correct me, if I m wrong) ESMTP can reject the mail-connection altogether if it does not come from an allowed IP address!! Is this the case ?
__________________________________ Do you Yahoo!? Yahoo! Finance Tax Center - File online. File on time. http://taxes.yahoo.com/filing.html
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
