Configure Postfix for DNS Blackhole Lists

Posted on 2012-10-28 [Sunday] by Jay Jay

Followed the instructions in this article Configure Postfix for DNS Blackhole Lists such as dsbl.org / spamhaus.org database to configure my Postfix email server to stop spam. I used the whole recommendation:


smtpd_recipient_restrictions =
   reject_invalid_hostname,
   reject_non_fqdn_hostname,
   reject_non_fqdn_sender,
   reject_non_fqdn_recipient,
   reject_unknown_sender_domain,
   reject_unknown_recipient_domain,
   reject_unauth_destination,
   permit_mynetworks,
   reject_rbl_client list.dsbl.org,
   reject_rbl_client sbl-xbl.spamhaus.org,
   reject_rbl_client cbl.abuseat.org,
   reject_rbl_client dul.dnsbl.sorbs.net,
   permit

Before that my settings where:


smtpd_recipient_restrictions =
  permit_mynetworks,
  permit_sasl_authenticated,
  reject_unauth_destination

I kept the permit_sasl_authenticated setting too.

Postfix and Unsolicited Commercial Email (UCE, aka SPAM)

Posted on 2012-02-09 [Thursday] by Jay Jay

Read My Understanding Of How UCE Actually Works which was a really helpful and enlightening article. (I saved a local copy.)

Also read Postfix Configuration – UCE Controls.

Ignoring emails with old dates

Posted on 2012-02-03 [Friday] by Jay Jay

I was reading about Postfix’s cleanup facility which supports header_checks which can be specified in a regexp: table. And it inspired me to come up with this header_filter_map file:

/^Date: .* [JFMASOND][aepuco][nbrynlgptvc] 1/ REJECT
/^Date: .* [JFMASOND][aepuco][nbrynlgptvc] 200/ REJECT
/^Date: .* [JFMASOND][aepuco][nbrynlgptvc] 2010/ REJECT
/^Date: .* [JFMASOND][aepuco][nbrynlgptvc] 2011/ REJECT
/^Date: .* Jan 2012/ REJECT
/^Date: .* Feb 2011/ REJECT
/^Date: .* Mar 2011/ REJECT
/^Date: .* Apr 2011/ REJECT
/^Date: .* May 2011/ REJECT
/^Date: .* Jun 2011/ REJECT
/^Date: .* Jul 2011/ REJECT
/^Date: .* Aug 2011/ REJECT
/^Date: .* Sep 2011/ REJECT
/^Date: .* Oct 2011/ REJECT
/^Date: .* Nov 2011/ REJECT
/^Date: .* Dec 2011/ REJECT

Which I applied in Postfix by adding the following line to /etc/postfix/main.cf:

header_checks = regexp:/etc/postfix/header_filter_map

It remains to be seen if what I’ve done will work, and at the moment this is a bit of a pain because I have to manually update the header_filter_map file every month, but the general idea is that if the regexp matches a date too far in the past then the message is rejected. Hopefully then those spammers who have messages turning up in my history will be gone.

Today’s spam

Posted on 2011-09-26 [Monday] by Jay Jay

I noticed this in my inbox today, it got past the spam filter:

“If all you dream about is pain relief, why are you still living? It is not real life!”

It’s fun to interpret it in different ways. And it’s kind of shocking as an advertisement.

The reality of AI

Posted on 2011-09-26 [Monday] by Jay Jay

I think this is rather amusing.

If you go to the AI-class FAQ the first thing you will see is:

Q: What if I don’t receive a verification e-mail after submitting my enrolment?

A: Confirm that it is not in your spam box.

Which is funny, isn’t it? I mean, it’s applied AI that is doing your spam filtering, and the most likely cause of you not getting your email from the AI-class is that the AI that’s filtering your mail is wrong with a false-positive.

Well I think it’s funny. :P

Discarding messages flagged as spam with mailman

Posted on 2011-08-22 [Monday] by Jay Jay

I found these instructions for configuring spamassassin in mailman. The defaults seem a little high to me, so I’ve reconfigured with:

SPAMASSASSIN_DISCARD_SCORE = 7
SPAMASSASSIN_HOLD_SCORE = 2
SPAMASSASSIN_MEMBER_BONUS = 5

M	T	W	T	F	S	S
1	2	3	4	5	6	7
8	9	10	11	12	13	14
15	16	17	18	19	20	21
22	23	24	25	26	27	28
29	30

John's blog

Talking about technology (mostly)

Tag Archives: spam