From owner-freebsd-questions@FreeBSD.ORG  Tue Jan 15 15:45:30 2008
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id DBEEE16A473
	for <freebsd-questions@freebsd.org>;
	Tue, 15 Jan 2008 15:45:30 +0000 (UTC)
	(envelope-from cpghost@cordula.ws)
Received: from fw.farid-hajji.net (fw.farid-hajji.net [213.146.115.42])
	by mx1.freebsd.org (Postfix) with ESMTP id 7BF8613C4D5
	for <freebsd-questions@freebsd.org>;
	Tue, 15 Jan 2008 15:45:30 +0000 (UTC)
	(envelope-from cpghost@cordula.ws)
Received: from epia-2.farid-hajji.net (epia-2 [192.168.254.11])
	by fw.farid-hajji.net (Postfix) with ESMTP id 327B5DFD13;
	Tue, 15 Jan 2008 16:45:28 +0100 (CET)
Date: Tue, 15 Jan 2008 16:45:27 +0100
From: cpghost <cpghost@cordula.ws>
To: John Almberg <jalmberg@identry.com>
Message-ID: <20080115154527.GA15932@epia-2.farid-hajji.net>
References: <87A9631B-EAC5-41B8-B4C2-001C3ADBA486@identry.com>
	<200801150237.m0F2bqEg000116@banyan.cs.ait.ac.th>
	<360AB6AE-B3C1-4CA6-AFC1-378B48B3C6DF@identry.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <360AB6AE-B3C1-4CA6-AFC1-378B48B3C6DF@identry.com>
User-Agent: Mutt/1.5.16 (2007-06-09)
Cc: freebsd-questions@freebsd.org
Subject: Re: No spam???
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 15 Jan 2008 15:45:31 -0000

On Tue, Jan 15, 2008 at 08:48:32AM -0500, John Almberg wrote:
> I've been doing some more digging since my last post, and have figured out 
> that the spam is not being blocked by pf, as I suspected (since it wasn't 
> showing up in my spam folder), but by spamassassin blacklists.
> 
> The smtp log file has lots of entries like:
> 
> 2008-01-14 09:30:37.074087500 rblsmtpd: 123.20.89.67 pid 72121: 451 
> http://www.spamhaus.org/query/bl?ip=123.20.89.67
> 2008-01-14 09:31:05.271514500 rblsmtpd: 58.227.241.97 pid 72122: 451 
> Dynamic IP Addresses See: http://www.sorbs.net/lookup.shtml?58.227.241.97
> 2008-01-14 09:31:17.404943500 rblsmtpd: 41.196.155.56 pid 72123: 451 
> http://www.spamhaus.org/query/bl?ip=41.196.155.56
> 2008-01-14 09:31:18.304682500 rblsmtpd: 123.20.89.67 pid 72124: 451 
> http://www.spamhaus.org/query/bl?ip=123.20.89.67
> 
> So raises the same point that Oliver makes: how trustworthy are these 
> blacklists?

YMMV, of course!

I'm using spamhaus.org's blacklists for quite some time (many years)
to block spam in postfix and they've been VERY trustworthy so far.

But I can't say the same for the others, which seem occasionally a
little bit too eager/aggressive and accumulate way too many false
positives.

-cpghost.

-- 
Cordula's Web. http://www.cordula.ws/