Linode Forum
https://forum.linode.com/

What's everyone using for DNSBL's these days?
https://forum.linode.com/viewtopic.php?f=11&t=8993
Page 1 of 1

Author:  zedsdead [ Wed Jun 13, 2012 9:34 am ]
Post subject:  What's everyone using for DNSBL's these days?

I've been using the following for some time, and while they're very effective I'm just wondering what others are using?

Currently I use (in this order in Postfix):

cbl.abuseat.org
b.barracudacentral.org
zen.spamhaus.org
dnsbl-1.uceprotect.net

Author:  Erasmus Darwin [ Wed Jun 13, 2012 10:43 am ]
Post subject:  Re: What's everyone using for DNSBL's these days?

Zen.spamhaus.org includes xbl.spamhaus.org which, in turn, includes cbl.abuseat.org. So you should be able to drop cbl.abuseat.org from your checks without any loss in coverage.

Author:  AgentOfPork [ Wed Jun 13, 2012 3:09 pm ]
Post subject:  Re: What's everyone using for DNSBL's these days?

I've found good luck with combining spamhaus and barracuda. The Zen list from Spamhaus is quite effective by itself (though I never recommend using only 1). In some corporate situations you may want to use only a subset of the spamhaus lists. One semi-broken internet-exposed M$ Exchange server I have to look after (I need the job :D ), I use only the SBL for connection filtering, instead of Zen. The PBL list (and sometimes the XBL) can sometimes cause problems on outbound SMTP AUTH servers. Not nice to block your own users. :shock:

UCEProtect has also been good. I used to use SORBS, but were a pain to deal with at times, so I haven't used them for a while. Other peoples mileage may vary

Author:  mnordhoff [ Thu Jun 14, 2012 12:36 am ]
Post subject:  Re: What's everyone using for DNSBL's these days?

AgentOfPork wrote:
UCEProtect has also been good. I used to use SORBS, but were a pain to deal with at times, so I haven't used them for a while. Other peoples mileage may vary

...UCEProtect?

Author:  derfy [ Thu Jun 14, 2012 7:35 am ]
Post subject:  Re: What's everyone using for DNSBL's these days?

YMMV, but I was having decent spam blocking with just greylisting. Granted, I do use mail aliases and deactivate old ones regularly, but there you go.

Author:  AgentOfPork [ Thu Jun 14, 2012 8:56 am ]
Post subject:  Re: What's everyone using for DNSBL's these days?

mnordhoff wrote:
AgentOfPork wrote:
UCEProtect has also been good. I used to use SORBS, but were a pain to deal with at times, so I haven't used them for a while. Other peoples mileage may vary

...UCEProtect?


Sorry, my own inside joke. :oops: I was referring to http://uceprotect.org/. I really should wake up before posting... I didn't think uceprotect.net was even around anymore! :shock:

Author:  zedsdead [ Fri Jun 15, 2012 12:49 pm ]
Post subject:  Re: What's everyone using for DNSBL's these days?

Erasmus Darwin wrote:
Zen.spamhaus.org includes xbl.spamhaus.org which, in turn, includes cbl.abuseat.org. So you should be able to drop cbl.abuseat.org from your checks without any loss in coverage.


Didn't know that, I'll try it out thanks!

Author:  troublshootr [ Sun Jun 17, 2012 6:28 pm ]
Post subject:  Re: What's everyone using for DNSBL's these days?

I take a look at this site every now and then to see some stats on the various lists. http://www.intra2net.com/en/support/antispam/index.php_sort=accuracy_order=desc.html

Of the dnslists I use in Exim, zen.spamhaus.org picks up the most for me by far - 97% - of the mail rejected. Barracuda picks up about 2% although I get timeouts on occasion. psbl.surriel.com accounts for the other 1%. I've tried bl.spamcop.net, bl.mailspike.net and some others. Spamcop caught very few. Mailspike was interesting. It would catch a lot then stop and then catch a lot again. Guess it has to do with the nature of it. I did get a few false positives so I removed it. Removing spamcop and mailspike didn't seem to make any difference ultimately. I get very few (less than 3 a day) that are spam. I could tighten up my rules a bit but I've got one client who must subscribe to every legitimate department store that sends horrendous html e-mails. They trigger all kinds of spamassassin rules. I am in the process of whitelisting those now so we'll see what I can do with SA.

Terry

Page 1 of 1 All times are UTC-04:00
Powered by phpBB® Forum Software © phpBB Group
http://www.phpbb.com/