Drop e-mails from wildcard domain

casey

casey

Well-Known Member
Jan 17, 2003
2,288
0
191
I am having a terrible time with a certain spammer. They are sending e-mails from a single domain, but they're using something like 150 subdomains all with different IP addresses to send the spam. I want to block this domain serverwide with all its subdomains as well. Is there some way I can use wildcards in an exim ACL?

I have seen the following code:
Code: 
drop senders = [email protected]
       message = Spam or Mail Bombing activity
How can I make that something like [email protected]*.baddomain.com? Can I use an asterisk in there?
 
chirpy

chirpy

Well-Known Member
Verifed Vendor
Jun 15, 2002
13,437
33
473
Go on, have a guess
Look in the exim mailing list I've seen hints that it should work with wilcarding like that. Have a go with what you've posted and see how it goes.
 
R

RickG

Well-Known Member
Feb 28, 2005
238
2
168
North Carolina
Not certain about using wildcards directly in the ACL, but you can use wildcards in an external file which should accept [email protected]*.baddomain.com

For example:

drop message = Spam or Mail Bombing activity
senders = /etc/sender_blacklist

Or put the following in the first (advanced editor) box:

addresslist sender_blacklist = wildlsearch;/etc/sender_blacklist

And then use:

drop message = Spam or Mail Bombing activity
senders = +sender_blacklist
 
casey

casey

Well-Known Member
Jan 17, 2003
2,288
0
191
Thanks Rick and chirpy. It does work with a wildcard. I used the option Rick suggested of
drop message = Spam or Mail Bombing activity
senders = /etc/sender_blacklist

Of course, I had to create /etc/sender_blacklist. I put [email protected]*.baddomain.com in the file and put the lines above after the accept hosts = : line in the ACL section of the Exim Configuration Editor.
 
mickalo

mickalo

Well-Known Member
Apr 16, 2002
782
5
318
N.W. Iowa
casey said:
Thanks Rick and chirpy. It does work with a wildcard. I used the option Rick suggested of
drop message = Spam or Mail Bombing activity
senders = /etc/sender_blacklist

Of course, I had to create /etc/sender_blacklist. I put [email protected]*.baddomain.com in the file and put the lines above after the accept hosts = : line in the ACL section of the Exim Configuration Editor.
Click to expand...
what is the format used in the "sender_blacklist" file .... one address per line ?? We've had this problem occassionally and think this may help added this. just wanted to make sure of the file format used.

thx's
Mickalo
 
You must log in or register to reply here.
Thread starter Similar threads Forum Replies Date
S Configure Exim to drop bounceback emails? Email 1
E TLD dropped from outbound mail Email 3
L Bug? Number filter drops emails without numeric data in header Email 0
W Droping mails from queue Email 0
N how to drop emails sent to non-existing account Email 8
Similar threads
Configure Exim to drop bounceback emails?
TLD dropped from outbound mail
Bug? Number filter drops emails without numeric data in header
Droping mails from queue
how to drop emails sent to non-existing account
Top Bottom