Quote:
Originally Posted by osiris  Another question, I see there is a lot talk of external maintained whitelists in the "tweak your zimbra's antispam solution guide", how about external maintained blacklists, like spamcop etc? |
There are a number of Realtime Blacklists (RBLs) that you can add to your postfix configuration--they don't work inside of SpamAssassin. Here's the section from the Zimbra Admin guide that describes implementing RBLs:
Quote:
Turning On or Off RBLs
RBL (Real time black-hole lists) can be turned on or off in SpamAssassin from
the Zimbra CLI.
The three RBL’s that are enabled during installation are the following:
• reject_invalid_hostname
• reject_non_fqdn_hostname
• reject_non_fqdn_sender
You can set the following, in addition to the three above:
• reject_rbl_client dnsbl.njabl.org
• reject_rbl_client cbl.abuseat.org
• reject_rbl_client bl.spamcop.net
• reject_rbl_client dnsbl.sorbs.net
• reject_rbl_client sbl.spamhaus.org
• reject_rbl_client relays.mail-abuse.org
To turn RBL on
1. Log on to the server and go to the Zimbra directory (su - zimbra)
2. Enter zmprov gacf | grep zimbraMtaRestriction, to see what RBLs are set.
3. To add any new RBL types, you must list the existing RBLs and the new
RBLs all in one command as:
zmprov mcf zimbraMtaRestriction [RBL type]
To add all the possible restrictions, the command would be
zmprov mcf zimbraMtaRestriction reject_invalid_hostname zimbraMtaRestriction
reject_non-fqdn_hostname zimbraMtaRestriction reject_non_fqdn_sender
zimbraMtaRestriction “reject_rbl_client dnsbl.njabl.org” zimbraMtaRestriction
“reject_rbl_client cbl.abuseat.org” zimbraMtaRestriction “reject_rbl_client
bl.spamcop.net” zimbraMtaRestriction “reject_rbl_client dnsbl.sorbs.net”
zimbraMtaRestriction “reject_rbl_client sbl.spamhaus.org” zimbraMtaRestriction
“reject_rbl_client relays.mail-abuse.org”
Note: Quotes must be added to RBL types that are two words.
|