Oenus Tech Services wrote: > After much testing, we have decided to put the RBLs on Postfix for > performance reasons. Before checking with those RBLs, our system does > EHLO checks against a known-spammer blacklist database as well to filter > the most obvious cases. Then we use zen.spamhaus.org, > safe.dnsbl.sorbs.net, and bl.spamcop.net, in this order. Next we do
safe.dnsbl.sorbs.net includes new.spam.dnsbl.sorbs.net which is not very safe at all. bl.spamcop.net isn't all that safe either. Both will routinely hit on the free email providers and major ISPs outgoing MTAs. This is because both have automatic systems generating them. Its fairly hard for any sizable ISP or mail provider to not constantly be going on and off new.spam and spamcop lists given harvested/weak passwords and the newer bots that will use the MTA configured in the default mail client of the zombied system including being able to do SMTP-AUTH. "safe" sorbs would be something along the lines of: dul.dnsbl.sorbs.net + relays.dnsbl.sorbs.net + zombie.dnsbl.sorbs.net
