The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Quick Start Your Own Blacklist - MailScanner

Discussion in 'E-mail Discussions' started by bennet, Sep 3, 2003.

  1. bennet

    bennet Well-Known Member

    Joined:
    Apr 25, 2002
    Messages:
    68
    Likes Received:
    0
    Trophy Points:
    6
    Location:
    Brazil
    cPanel Access Level:
    Root Administrator
    I told this orientation for those that are not able to or don't want to use DNS blocklists in the exim.conf

    First I followed the orientations of Mahmoud Kassem's tutorial in http://www.cpanelplus.com/staticpages/index.php?page=2003073009541160

    If everything is perfectly working, make the following:

    1 - Edit /etc/MailScanner/MailScanner.conf
    In the line 773 set
    Spam Checks = yes

    In the line 780 set
    # Spam List = ORDB-RBL Infinite-Monkeys # MAPS-RBL+ costs money (except .ac.uk)
    Spam List =

    In the line 818 set
    # Spam Blacklist:
    # Make this point to a ruleset, and anything in that ruleset whose value
    # is "yes" will *always* be marked as spam.
    # This can also be the filename of a ruleset (default is "no").
    Is Definitely Spam = %rules-dir%/spam.blacklist.rules

    In the line 913 set
    # What to do with spam
    # It can be any combination of the following:
    # deliver delete store bounce forward user@domain.com striphtml attachment
    Spam Actions = bounce

    2 - Creating the file spam.blacklist.rules:
    cp /etc/MailScanner/rules/spam.whitelist.rules /etc/MailScanner/rules/spam.blacklist.rules

    Editing the file spam.blacklist.rules:
    Edit /etc/MailScanner/rules/spam.blacklist.rules (clear all content)

    Copy the following lines:
    # Set addresses to be blacklisted using rules such as
    # From: user@nasty.domain.com yes
    # From: *@spammers.com yes
    # Mark an entire network used by spammers
    # From: 123.231.3. yes
    # FromOrTo: default no
    From: marketing@spammers.com yes


    The pattern describes what messages should match this rule.
    Some examples are:
    user@sub.domain.com # Individual address
    user@* # 1 user at any domain
    *@sub.domain.com # Any user at 1 domain
    *@*.domain.com # Any user at any sub-domain of "domain.com"
    *@domain.com # Any user at 1 specific domain

    Attention: Use this blacklist with plenty of criterion!



    3 - Restart MailScanner:

    service MailScanner restart

    You should see:
    Shutting down MailScanner daemons:
    MailScanner: [ OK ]
    Starting MailScanner daemons:
    MailScanner: [ OK ]



    4 - If at any time you want to disable this blacklist:

    Edit /etc/MailScanner/MailScanner.conf
    In the line 773 set
    Spam Checks = no

    service MailScanner restart

    5 - If at any time you want to edit this blacklist:

    Edit /etc/MailScanner/rules/spam.blacklist.rules

    service MailScanner restart


    Thank you Julian of MailScanner for the example files, and also to Mahmoud Kassem's tutorial.
    Please, if I am mistaken in some thing, this is the place for us to discuss.

    cPanel.net Support Ticket Number:
     
  2. goodmove

    goodmove Well-Known Member

    Joined:
    May 12, 2003
    Messages:
    624
    Likes Received:
    0
    Trophy Points:
    16
    Does MailScanner do the RBL checks before scanning the emails for viruses?

    It would be worthless, not to mention put unnecessary load on the server resources, if it did the scanning before the RBL test!
     
  3. chirpy

    chirpy Well-Known Member

    Joined:
    Jun 15, 2002
    Messages:
    13,475
    Likes Received:
    20
    Trophy Points:
    38
    Location:
    Go on, have a guess
    Please do not set it to bounce. If you don't want it delivered set it to delete. Nearly all spam these days have a From: header of an innocent victim and bouncing back to them (which is what MailScanner does) is pointless and indeed increases the spam problem. If you're lucky enough to bounce back to the spammer, expereince shows they ignore it.
     
  4. Spokuz

    Spokuz Well-Known Member
    PartnerNOC

    Joined:
    Apr 24, 2003
    Messages:
    119
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Lisbon - Portugal
    cPanel Access Level:
    Root Administrator
  5. chirpy

    chirpy Well-Known Member

    Joined:
    Jun 15, 2002
    Messages:
    13,475
    Likes Received:
    20
    Trophy Points:
    38
    Location:
    Go on, have a guess
    In my package the configuration file is in /usr/mailscanner/etc/MailScanner.conf
     
Loading...

Share This Page