The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

How do you add new RBL to Cpanel exim config

Discussion in 'E-mail Discussions' started by nyjimbo, Aug 24, 2007.

  1. nyjimbo

    nyjimbo Well-Known Member

    Joined:
    Jan 25, 2003
    Messages:
    1,125
    Likes Received:
    0
    Trophy Points:
    36
    Location:
    New York
    We used to use a different RBL setup/ACL for our servers but decided to dump them when Cpanel 11 came out with their own in the new Exim configurator. However with their setup you can use spamhaus and/or spamcop only.

    I would like to add a third RBL to the server but am not sure if we can without breaking the config OR if we do that the new addition might be lost on the next upcp or major update.

    Does anyone know if you can add more RBL's to the current standard exim without breaking it or losing that change in the future ???
     
  2. bsasninja

    bsasninja Well-Known Member

    Joined:
    Sep 2, 2004
    Messages:
    528
    Likes Received:
    0
    Trophy Points:
    16
    Well I have the same problem, I want to use webhostgear.com tutorial of RBL but there are some fields that are missing in the new exim.

    Could anybody post a working rbl config for cpanel 11?

    Thanks
     
  3. nyjimbo

    nyjimbo Well-Known Member

    Joined:
    Jan 25, 2003
    Messages:
    1,125
    Likes Received:
    0
    Trophy Points:
    36
    Location:
    New York
    If you just want a basic RBL you can use the default EXIM config but then be sure to go into the WHM EXIM configurator and check it to do spamhaus and spamcop. I decided to dump my own config and use theirs, this way if something gets munged up in the future I can just blame the cpanel team as it's their configuration. :eek:
     
  4. bosen

    bosen Member

    Joined:
    Apr 12, 2007
    Messages:
    9
    Likes Received:
    0
    Trophy Points:
    1
    hope this would help

    i use this way
    Code:
    [% ACL_RBL_BLOCK %]
    example
    Code:
    [% ACL_RBL_BLOCK %]
     deny message = JunkMail rejected - $sender_fullhost is in an RBL, see $dnslist_text
         dnslists = list.dsbl.org : sbl.spamhaus.org : cbl.abuseat.org : opm.blitzed.org
         hosts = +backupmx_hosts
    
     warn
         dnslists = list.dsbl.org : sbl.spamhaus.org : cbl.abuseat.org : opm.blitzed.org
         set acl_m8 = 1
         set acl_m9 = "JunkMail rejected - $sender_fullhost is in an RBL, see $dnslist_text"
     
    
     warn
         ratelimit = 0 / 1h / strict / per_conn
         condition = ${if eq {${acl_m8}}{1}{1}{0}}
    
     drop
        condition = ${if eq {${acl_m8}}{1}{1}{0}}
        message = ${acl_m9}
    
    might that help
     
  5. cPanelNick

    cPanelNick Administrator
    Staff Member

    Joined:
    Mar 9, 2015
    Messages:
    3,426
    Likes Received:
    2
    Trophy Points:
    38
    cPanel Access Level:
    DataCenter Provider
    /usr/local/cpanel/etc/exim/acls/ACL_RBL_BLOCK # ls
    spamcop_rbl spamhaus_spamcop_rbl
    spamhaus_rbl



    Make a copy of one of those in the same dir and change the name and the dns lists
    then run /scripts/buildeximconf
     
  6. bosen

    bosen Member

    Joined:
    Apr 12, 2007
    Messages:
    9
    Likes Received:
    0
    Trophy Points:
    1
    nice one .. thx you

    at last, thank you
     
  7. bosen

    bosen Member

    Joined:
    Apr 12, 2007
    Messages:
    9
    Likes Received:
    0
    Trophy Points:
    1
    not working after update

    not working after updating to WHM 11.11.0 cPanel 11.15.0-C18347

    i have create bosen_rbl in acl dir .. but not updated in /etc/exim.conf or elsewhere

    please advise, it work before update
     
  8. darkelder

    darkelder Well-Known Member

    Joined:
    Oct 8, 2004
    Messages:
    74
    Likes Received:
    0
    Trophy Points:
    6
  9. AndyReed

    AndyReed Well-Known Member
    PartnerNOC

    Joined:
    May 29, 2004
    Messages:
    2,222
    Likes Received:
    3
    Trophy Points:
    38
    Location:
    Minneapolis, MN
    Thank you Nick. Allow me to refer cPanel avid users to this article: http://servertune.com/kbase/entry/199/ which explains this process in a little more details.
     
  10. sneader

    sneader Well-Known Member

    Joined:
    Aug 21, 2003
    Messages:
    1,126
    Likes Received:
    21
    Trophy Points:
    38
    Location:
    La Crosse, WI
    cPanel Access Level:
    Root Administrator
    OK, that part was easy enough.... thanks Nick. But when we reject mail, we provide an error like this:

    123.123.123.123 is in an RBL, see http://www.spamhaus.org/query/bl?ip=123.123.123.123

    exim.conf says:

    deny message = JunkMail rejected - $sender_fullhost is in an RBL, see $dnslist_text
    dnslists = zen.spamhaus.org
    hosts = +backupmx_hosts

    So, for the new RBLs that I want to add... I will need to add my own "$dnslist_text", right? Where is $dnslist_text stored?

    - Scott
     
  11. 10101

    10101 Well-Known Member

    Joined:
    Sep 4, 2003
    Messages:
    151
    Likes Received:
    0
    Trophy Points:
    16
    Does using the RBL in WHM whitelist users on the server against the blacklists?
     
  12. yayyo

    yayyo Well-Known Member

    Joined:
    Jul 10, 2004
    Messages:
    61
    Likes Received:
    0
    Trophy Points:
    6
    Location:
    London, UK
    cPanel Access Level:
    Root Administrator
    Hi bosen,

    Please note that opm.blitzed.org closed in May 2006 and should not be used.
    http://wiki.blitzed.org/OPM_status

    Also, zen.spamhaus.org includes cbl.abuseat.org and the new pbl.spamhaus.org so I find it more effective to use zen than sbl and cbl.
    HTH YMMV
     
    #12 yayyo, Dec 13, 2007
    Last edited: Dec 13, 2007
  13. yayyo

    yayyo Well-Known Member

    Joined:
    Jul 10, 2004
    Messages:
    61
    Likes Received:
    0
    Trophy Points:
    6
    Location:
    London, UK
    cPanel Access Level:
    Root Administrator
    Hi Scott,

    $dnslist_text is a variable provided by exim. It contains the TXT record corresponding to the reverse DNS lookup at the relevant RBL.

    eg: (at the time of writing, they may get delisted later!)

    # dig 24.47.223.89.sbl-xbl.spamhaus.org txt | grep TXT
    ;24.47.223.89.sbl-xbl.spamhaus.org. IN TXT
    24.47.223.89.sbl-xbl.spamhaus.org. 1569 IN TXT "http://www.spamhaus.org/query/bl?ip=89.223.47.24"

    or:
    # dig 126.13.41.70.bl.spamcop.net txt | grep TXT
    ;126.13.41.70.bl.spamcop.net. IN TXT
    126.13.41.70.bl.spamcop.net. 279 IN TXT "Blocked - see http://www.spamcop.net/bl.shtml?70.41.13.126"

    The part in quotes is returned in $dnslist_text

    HTH,
    Marty
     
  14. RickG

    RickG Well-Known Member

    Joined:
    Feb 28, 2005
    Messages:
    238
    Likes Received:
    2
    Trophy Points:
    18
    Location:
    North Carolina
    Nick: Is there anyway to control the order in which entries in the directory are added into exim.conf during the rebuild? New files appear to be randomly inserted along with spamhaus and spamcop (if selected through WHM). Or should one use the combined format where appropriate.

    On a similar note, what controls the RBLs in the ACL section of the Exim Configuration Editor in WHM? On one system it shows spamhaus and spamcop seperately; on another it listed the combined file (even though all 3 are in the directory). Thx -
     
  15. 10101

    10101 Well-Known Member

    Joined:
    Sep 4, 2003
    Messages:
    151
    Likes Received:
    0
    Trophy Points:
    16
    Hi,

    I've followed this guide and I don't see the new RBL's to tick in the exim editor like I can see the default ones, have I missunderstood how this works?

    Thanks.
     
  16. cPanelNick

    cPanelNick Administrator
    Staff Member

    Joined:
    Mar 9, 2015
    Messages:
    3,426
    Likes Received:
    2
    Trophy Points:
    38
    cPanel Access Level:
    DataCenter Provider
    With 18499+ they will be sorted in abc order.
     
  17. cPanelNick

    cPanelNick Administrator
    Staff Member

    Joined:
    Mar 9, 2015
    Messages:
    3,426
    Likes Received:
    2
    Trophy Points:
    38
    cPanel Access Level:
    DataCenter Provider
    It will not appear in whm, only exim.conf. You would have to add it to /usr/local/cpanel/Whostmgr/TweakSettings/Mail.pm to get it to appear in whm (and it would just get overwritten anyways)
     
  18. 10101

    10101 Well-Known Member

    Joined:
    Sep 4, 2003
    Messages:
    151
    Likes Received:
    0
    Trophy Points:
    16
    But as long as I add the RBL's as instructed they will be used in exim?
     
  19. nickp666

    nickp666 Well-Known Member

    Joined:
    Jan 28, 2005
    Messages:
    770
    Likes Received:
    2
    Trophy Points:
    18
    Location:
    /dev/null
    I would also like to know the answer to this question, as I would like to use spamhaus's zen list but obviously thats a no go if smtp auth/pop before smtp clients arent whitelisted from checks
     
  20. SageBrian

    SageBrian Well-Known Member

    Joined:
    Jun 1, 2002
    Messages:
    415
    Likes Received:
    2
    Trophy Points:
    18
    Location:
    NY/CT (US)
    cPanel Access Level:
    Root Administrator
    Good question... are authorized smtp clients whitelisted, so we can use Zen?
     
Loading...

Share This Page