Changes

From SME Server
Jump to navigationJump to search

Email Whitelist-Blacklist Control (view source)

Revision as of 18:06, 5 March 2012

352 bytes added ,  18:06, 5 March 2012
m
→‎Usage Examples
Line 49: Line 49:  
Black Lists: REJECT
 
Black Lists: REJECT
   −
The '''qpsmtpd badhelo''' is effective for blocking a complete domain. Entries follow the following format.
+
The '''qpsmtpd badhelo''' is effective in examining the SMTP HELO string and then block mail based on this string. Entries follow the following format.
 
  something.a.somehost.com
 
  something.a.somehost.com
 
To find the proper string to enter on the qpsmtp badhelo line. 1. Open an offending email. 2. Open the header of the email. 3. Look for a line that says,
 
To find the proper string to enter on the qpsmtp badhelo line. 1. Open an offending email. 2. Open the header of the email. 3. Look for a line that says,
 
(HELO something.a.somehost.com)
 
(HELO something.a.somehost.com)
{{Note box|Using qpsmtpd badhelo will stop all mail at a domain that uses that specific HELO string. It's not looking at a specific email. Also spammers generally change this field to stop this kind of detection. The advantage  however is if you do want to stop all mail from one source, it can be effective. }} Alternatively you may use the ip address. Again look in the header for the Helo line. It may look something like this,
+
Partial strings will not work, E.G. in the previous example somehost.com will not work. It must be the complete HELO string.
 +
{{Note box|Using qpsmtpd badhelo will stop all mail at a domain that uses that specific HELO string. It's not looking at a specific email. This strategy isn't always effective as spammers generally change this field to stop this kind of detection. Also companies have several SMTP gateways so you may see mail from mail1.domain.com and mail2.domain.com . You will then need to add both of these. The advantage  however is if you do want to stop all mail from one source, it can be effective. }} Alternatively you may use the ip address. Again look in the header for the Helo line. It may look something like this,
 
Received: from smtprelay0207.c.somehost.com (HELO smtprelay.c.somehost.com) '''(123.111.123.321''')
 
Received: from smtprelay0207.c.somehost.com (HELO smtprelay.c.somehost.com) '''(123.111.123.321''')
 
Now simply add the IP address you found in the HELO line.
 
Now simply add the IP address you found in the HELO line.
 
  123.111.123.321
 
  123.111.123.321
      
=== Known Issues ===
 
=== Known Issues ===
Steve288
50

edits

Retrieved from "https://wiki.koozali.org/Special:MobileDiff/16088"

Navigation menu