RBL Help :(

[abcc]

I've got a problem which is simaliar to many other people on the forum - the RBL is working, however, it does not get overridden if a user has logged in (a client has an IP address that is blacklisted, but they are on a dynamic IP - the ISP has refused to bother about getting in unlisted - good old BT).

ACL is attached.

[lloyd_tennison]

Try:

Code:

# Always accept mail to postmaster & abuse for any local domain
#
accept domains = +local_domains
local_parts = postmaster:abuse

# Check sending hosts against DNS black lists.
# Reject message if address listed in blacklist.
deny message = Message rejected because $sender_fullhost \
is blacklisted at $dnslist_domain see $dnslist_text
!hosts = +relay_hosts
!authenticated = *
dnslists = combined.njabl.org : \

instead.

Also, the ISP would not be able to have the client's IP unlisted, as you are checking for dynamic IP's in your RBL and it is dynamic.

The NJABL.ORG dnsbl zones are currently available in query mode as a dnsbl format DNS zone and can be copied via rsync. Currently, all entries resolve to one of the following:

* 127.0.0.2 - open relays
* 127.0.0.3 - dial-up/dynamic IP ranges *
* 127.0.0.4 - Spam Sources
This will include both commercial spammers as well as some dial-up direct-to-mx spammers and open proxies as it's not always possible to differentiate between these sources. For commercial spammers, once we have spam on file from some of their IPs, we may add their entire IP range if it can be reliably determined.
* 127.0.0.5 - Multi-stage open relays
Before adding multi-stage open relays to our list, we make an attempt to notify the NIC contacts for their IP space and give them at least one week to fix their systems. This type is deprecated. We no longer list multi-stage open relays.
* 127.0.0.6 - Passively detected "bad hosts"
These hosts have done things a proper SMTP server should not do. They're very likely to be spam proxies. We can't say much more about this. No supporting evidence is made available for listing these IPs.
* 127.0.0.8 - Systems with insecure formmail.cgi or similar CGI scripts which turn them into open relays
This includes the output IP when a server with an insecure formmail CGI smarthosts outgoing email through another server or servers.
* 127.0.0.9 - Open proxy servers

Non-dial-up range entries will often have a descriptive TXT record which should indicate why the entry was added.


Currently, the following zones exist:

* dnsbl.njabl.org: the original NJABL zone (combination of the above 127.0.0.x types except for 127.0.0.6)