From owner-freebsd-security Tue Aug 27 12:23:18 2002 Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id B8BA937B405 for ; Tue, 27 Aug 2002 12:23:01 -0700 (PDT) Received: from c3po.artlogix.com (sense-mcglk-240.oz.net [216.39.168.240]) by mx1.FreeBSD.org (Postfix) with ESMTP id 4152843E6E for ; Tue, 27 Aug 2002 12:23:01 -0700 (PDT) (envelope-from mcglk@artlogix.com) Received: from ralf.artlogix.com.artlogix.com (ralf.artlogix.com [192.168.0.4]) by c3po.artlogix.com (Postfix) with ESMTP id 025751A984; Tue, 27 Aug 2002 12:24:56 -0700 (PDT) To: Mark Murray Cc: Bart Matthaei , freebsd-security@freebsd.org Subject: Re: Administrivia: Discussion - Making this list subscriber-only References: <20020827122623.GC34393@heresy.dreamflow.nl> <200208271244.g7RCiBl5019984@grimreaper.grondar.org> From: Ken McGlothlen Date: 27 Aug 2002 12:23:20 -0700 In-Reply-To: <200208271244.g7RCiBl5019984@grimreaper.grondar.org> Message-ID: <86hehgw1g7.fsf@ralf.artlogix.com> Lines: 36 User-Agent: Gnus/5.0808 (Gnus v5.8.8) XEmacs/21.1 (Cuyahoga Valley) MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Mark Murray writes: | We already have that. Spammers are very inventive when it comes to evading | filters. And ultimately, filters are not a good solution. They're easily defeatable, and the more stringent you make the filter, the more false positives you get. The only way to really deal with it is social engineering, and in general, that means blocking SMTP traffic from problematic hosts. The downside is that many of our South Korean, Chinese and Brazilian participants would no longer be able to submit mail until their ISPs start implementing anti-spam policies and secure their servers. And when their mail is blocked, people complain to their ISPs. But that's a good thing---the more responsible ISPs out there, the better. I have no problem removing blocks when ISPs become responsible netizens. I'm even willing to donate my blocklist to the FreeBSD group. It's pretty aggressive, mind you, but I'm pretty vigilant about trying hard not to block legitimate traffic. (This is occasionally a problem. For example, bn.com recently switched their mail lists over to doubleclick.net, which I've had spamming problems with in the past. So I no longer get bn.com stuff---but hopefully, bn.com will start using another provider, and then it won't be a problem. And if not, oh, well.) I update it regularly. I also think rather highly of the following RBLs: whois.rfc-ignorant.org ipwhois.rfc-ignorant.org formmail.relays.monkeys.com relays.ordb.org bl.spamcop.net My Postfix installation checks my own blocklist first, and then falls back to the RBLs listed above. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message