X-Git-Url: https://git.exim.org/exim-website.git/blobdiff_plain/4bec300304fbfa4a6881b15145437ddaef530acd..173589b215261d4e4dee1aeac8e15d3c9984f3f1:/howto/rbl.html diff --git a/howto/rbl.html b/howto/rbl.html index 379ef30..e35327a 100644 --- a/howto/rbl.html +++ b/howto/rbl.html @@ -11,16 +11,18 @@ List) is a means of identifying hosts that have been associated with the sending of spam mail. A full description of the service and the technology and ethics behind it can be found at http://maps.vix.com/rbl/ + href="http://www.mail-abuse.org/rbl/">http://www.mail-abuse.org/rbl/ along with more general mail policy information at http://maps.vix.com/.

+ href="http://www.mail-abuse.org/">http://www.mail-abuse.org/.

In the few years since MAPS started operating, other similar services although with different aims, procedures and reliabilities have been introduced - MAPS itself has a number of these (ie MAPS/DUL which maintains lists of dial up modems), the - other major source is ORBS, - which is a more proactive relay blocking service

+ other major source was ORBS, + which is a more proactive relay blocking service, however this has + recently closed down. For this reason the examples now use RSS + from mail-abuse.org in place of ORBS

Exim can use the MAPS RBL and/or any other similarly defined service (ie you could make your own additional maps as well). To @@ -48,31 +50,34 @@

RBL Configuration Options

These are fully detailed in the Exim + href="../exim-html-3.20/doc/html/spec.html" target="_top">Exim Specification Document. The specific section on RBL is here and + href="../exim-html-3.20/doc/html/spec_46.html#SEC810">here and the rbl directives are documented starting here

+ href="../exim-html-3.20/doc/html/spec_11.html#SEC311">here

A typical configuration would be a mail system which rejects - mail from machines that appear within the MAPS RBL list, and also - checks hosts in the ORBS lists but only marking each message has - coming via an RBLed host rather than rejecting them. Additionally - all mail to the local postmaster always gets through, even if the - host is in the MAPS RBL list. You also have a local private set - of IPs which relay out through this mail server on net - 192.168.0.0/24 - these cannot be contacted from outside your - organisation so RBL is not an issue.

+ mail from machines that appear within either the MAPS RBL list or + the MAPS DUL (Dial-Up List), and also checks hosts in the RSS + lists but only marking each message has coming via an RBLed host + rather than rejecting them. Additionally all mail to the local + postmaster always gets through, even if the host is in the MAPS + RBL list. You also have a local private set of IPs which relay + out through this mail server on net 192.168.0.0/24 - these cannot + be contacted from outside your organisation so RBL is not an + issue.

The configuration fragment (in the main part of the exim configuration file) to do this is:-

-# reject messages whose sending host is in MAPS/RBL
-# add warning to messages whose sending host is in ORBS
-rbl_domains = rbl.maps.vix.com/reject : relays.orbs.org/warn
+# reject messages whose sending host is in MAPS/RBL & MAP/DUL
+# add warning to messages whose sending host is in RSS
+rbl_domains = blackholes.mail-abuse.org/reject : \
+        dialups.mail-abuse.org/reject : \
+        relays.mail-abuse.org/warn 
 # check all hosts other than those on internal network
-rbl_hosts = !192.168.0.0/24:0.0.0.0/24
+rbl_hosts = !192.168.0.0/24:0.0.0.0/0
 # but allow mail to postmaster@my.dom.ain even from rejected host
 recipients_reject_except = postmaster@my.dom.ain
 # change some logging actions (collect more data)
@@ -86,6 +91,6 @@ rbl_log_rcpt_count	# log recipient info of accepted RBLed messages
     

     
Nigel Metheringham

 
-    
$Id: rbl.html,v 1.3 2000/04/09 22:02:34 nigel Exp $

+    
$Id: rbl.html,v 1.3 2001/05/10 11:24:39 nigel Exp $