Re: rblsmtp blocking legit mail

[Chris Wilkes <cwilkes-qmail@xxxxxxxxx>]

On Tue, Dec 10, 2002 at 04:20:01PM -0700, Fred Colclough wrote:
> 

[snip out beginning of qmail-smtpd/run script]

>    /usr/local/bin/rblsmtpd -rrelays.ordb.org -rlist.dsbl.org -rmultihop.dsbl.org -rbl.spamcop.net 

> BUT...one particular domain appears to be blocked, & is a HUGE
> provider of cable internet in our area: adelphia.net. MANY of our
> users use adelphia. SINCE adding those 3 blacklists, NO MAIL from
> adelphia.net GETS to us anymore!

I had that problem with spamcop.net listing the IP address of a
particular mailing list I was on.  To get around it you want to setup
your own anti-RBL (or "whitelist") to list known good IP addresses.

Look to http://cr.yp.to/djbdns/rbldns.html to see how to create a
your own RBL.  What I would do is make two of them with names:
  whitelist.spacefoundation.org
  rbl.spacefoundation.org
and list those entries in your dnscache/root/servers directory.  Then
follow the docs and put known GOOD ips into the whitelist root/data file
and known BAD ones into rbl root/data file, creating that structure with
the rbldns-conf program.

To test out if an IP address you put in there works, do this for IP
address 192.168.0.100:
  dnsip 100.0.168.192.whitelist.spacefoundation.org
if it comes back with a 127.0.0.x address then it is working.  If
nothing comes back then either that address isn't listed in there or
something is screwed up.

Then you change your qmail-smtpd/run script to have these entries at the
beginning:
  /usr/local/bin/rblsmtpd -a whitelist.spacefoundation.org -r rbl.spacefoundation.org ....

That's about it.  I periodically put RBL rejected / accepted spam into
my rbl/whitelist lists by looking at my dnscache log files and seeing
which requests make it out to the internet.  In your case a
  grep relays.ordb.org /service/dnscache/log/main/current
will show you them.

Chris