The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Blackhole .ru domains?

Discussion in 'General Discussion' started by HDG, Sep 1, 2007.

  1. HDG

    HDG Member

    Joined:
    Jul 26, 2007
    Messages:
    10
    Likes Received:
    0
    Trophy Points:
    1
    Is there a way I can blackhole any email coming from a *.ru domain?
     
  2. DeepakW

    DeepakW Active Member

    Joined:
    Nov 13, 2005
    Messages:
    33
    Likes Received:
    0
    Trophy Points:
    6
    Hello,

    You can set the mail filter to discard any email coming from a *.ru domain.

    Login to your cPanel >> Mail >> Email Filtering

    Now click on "Add Filter"
    Filter = From that = contains *.ru
    Destination = Discard
    Click on Activate
     
  3. HDG

    HDG Member

    Joined:
    Jul 26, 2007
    Messages:
    10
    Likes Received:
    0
    Trophy Points:
    1
    All I see under "Email is this:
     
  4. nyjimbo

    nyjimbo Well-Known Member

    Joined:
    Jan 25, 2003
    Messages:
    1,125
    Likes Received:
    0
    Trophy Points:
    36
    Location:
    New York
    I think he means you can do this at the end-user cpanel level, maybe you are looking for a server-wide fix, then that would be a ACL rule in exim, something along the lines of a deny statement.

    deny message = This TLD is not allowed to email to us
    senders= *.ru

    (can someone verify its really that simple and wont kill other ACL's?)

    Just a note if this helps, alot of spammers are not putting their domains in the spam they send so while the .ru domain is a killer, you will find they often fake the domain or use a known-good one to send. Doing a "tld" level block will help some but you still have to do the initial handshake, get the email address and then do the reject and drop the connection.

    Implementing a three-way method, that is blocking based on IP address ranges, RBL checking and a TLD reject will be the best bet.
     
    #4 nyjimbo, Sep 2, 2007
    Last edited: Sep 2, 2007
  5. HDG

    HDG Member

    Joined:
    Jul 26, 2007
    Messages:
    10
    Likes Received:
    0
    Trophy Points:
    1
    Sorry about that. I meant WHM (server wide fix, correct).
     
Loading...

Share This Page