[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: [cobalt-users] Nuonce Antispam feature
- Subject: RE: [cobalt-users] Nuonce Antispam feature
- From: "Crocket" <crocket@xxxxxxxxxxx>
- Date: Sat Apr 17 08:30:01 2004
- List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>
-----Original Message-----
From: cobalt-users-admin@xxxxxxxxxxxxxxx
On Behalf Of Dan Kriwitsky
> 195.130.132.44 is the IP from which your email arrived at the list. It's
> not blocked by Spamcop. My guess would be there are some open proxies
> being used to spam through your ISP's SMTP. They need to take action to
> remove those customers from the network. Also, if abuse@xxxxxxxxxxxxxx
> does not function than many people may block them when the spam
> complaints bounce.
> --
> C2003 Dan Kriwitsky
Hi Dan,
Here's an example of the maillog:
Apr 16 06:34:42 cob6 sendmail[22950]: i3G4YgN22950: ruleset=check_relay,
arg1=apate.telenet-ops.be, arg2=195.130.132.57, relay=apate.telenet-ops.be
[195.130.132.57], reject=553 5.3.0 Rejected Mail from 195.130.132.57 Email
blocked using http://spamcop.net/
Telenet is the ISP, the listed ip is one from one of their mailservers, but
I see 100's of those in the logs, including other mailservers from them.
The rejections started 2 days ago from any of the *.telenet-ops.be servers.
But since I disabled the DNSBL, the spam count has at lease tripled again.
Would it be safe to OK the domain *.telenet-ops.be in the /etc/mail/access ?
That domain is only used by their company, their users all have pandora.be
as the domain for their email addies.
I know about one policy that telenet customers can only send a mail to 300
emails at a time.
Also only telenet customers are allowed to use their SMTP servers and they
have to use something like out.pandora.be as the outgoing mailserver.
John