The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Spam fighting solutions PLEASE!

Discussion in 'General Discussion' started by EchoHost, Jul 15, 2007.

  1. EchoHost

    EchoHost Well-Known Member

    Joined:
    Jul 27, 2003
    Messages:
    52
    Likes Received:
    0
    Trophy Points:
    6
    Ok so I'm going crazy with all the spam here! I've tried spamassasin + mailscanner and all that happened is I lost a lot of legit e-mails, some e-mails took a very long time to get delivered to my inbox and server load was much higher. So I stripped it all down and just started doing spam filtering on my side.

    I want a better solution and I don't mind paying, I've read a few things abotu ASSP. Is this worth it. What about ASSP deluxe http://www.grscripts.com/screenshots.html ?

    Thanks!
     
  2. nyjimbo

    nyjimbo Well-Known Member

    Joined:
    Jan 25, 2003
    Messages:
    1,125
    Likes Received:
    0
    Trophy Points:
    36
    Location:
    New York
    I hate to recommend this but I found that a huge percentage of spam comes from countries you could probably do without.

    We have taken to blocking wide ranges of IP's from Russia, France, Poland, etc..

    Even with spam rules or RBL services like Spamhaus or NJABL we still have to deal with the connections, handshake, rejections and all the i/o and processing it takes to do it.

    Blocking massive ranges of IP's via software or hardware firewalls just cuts off any TCP talk at all and reduces spam as well.

    So much spam is tricky enough to get around normal rule sets, at least cutting them off earlier reduces ALL traffic from the bad guys so at least a good percentage of the garbage is never even seen.
     
  3. EchoHost

    EchoHost Well-Known Member

    Joined:
    Jul 27, 2003
    Messages:
    52
    Likes Received:
    0
    Trophy Points:
    6
    Yea I'd love to do that but it's a bit too risky. A few other criteria I forgot to mention:

    1) We get a constant dictionary attack either from the same guy or multiple guys (alexa rating for the domain is ~1,100)
    2) A TON of rejected mail

    So basically I don't want a spam program that keeps a log of these because i would have to clear it every day or just get too big in general.
     
  4. Infopro

    Infopro cPanel Sr. Product Evangelist
    Staff Member

    Joined:
    May 20, 2003
    Messages:
    14,450
    Likes Received:
    195
    Trophy Points:
    63
    Location:
    Pennsylvania
    cPanel Access Level:
    Root Administrator
    Twitter:

    After reading at least three of your posts in separate forums all seeming to have to do with the same thing, I've only got 2 suggestions for you.

    1) Search these forums for the answers you seek, you're not the first that wishes to know this stuff. It's all here.

    2) If all else fails, hire a pro. http://www.configserver.com/cp/cpanel.html


    He has the answer to your problems I'm sure of it. Look around the forums a bit more. ;)
     
  5. twhiting9275

    twhiting9275 Well-Known Member

    Joined:
    Sep 26, 2002
    Messages:
    538
    Likes Received:
    15
    Trophy Points:
    18
    cPanel Access Level:
    Root Administrator
    Twitter:
    I'd say ASSP is most definitely worth it. I've used it over the past year and it's incredibly intuitive.
     
  6. Gene Steinberg

    Gene Steinberg Well-Known Member

    Joined:
    May 26, 2007
    Messages:
    157
    Likes Received:
    1
    Trophy Points:
    18
    You know, with a little judicious adjustment, SpamAssassin is just about perfect for us. The settings in WHT and cPanel 11 give us plenty of elbow room to block 99% of spam, but we check the option to create a Spam folder, so we can keep tabs on legitimate mail.

    My SpamAssassin setting is 4. And we have Exim, via WHT, adjusted to delete anything with a 10 or more rating. and we have also selected the option labeled "Reject mail at SMTP time if the sender host is in the zen.spamhaus.org, or bl.spamcop.net rbl."

    We've never lost a single e-mail we needed to receive that we are aware of, and mistakenly flagged legitimate messages are minimal with tha setting.

    FYI: We have four busy sites on a VPS system, with several hundred legitimate messages received every day. We have used dedicated e-mail hosting, with supposedly advanced spam settings, and it was no better.

    Of course, these settings might not work for you, but for the variety of mail we get, it's just fine and I have no complaints. The Spam filters are not overwhelming, and everything is manageable.

    Peace,
    Gene Steinberg
    Co-Host, "The Paracast"
    www.theparacast.com
     
    #6 Gene Steinberg, Aug 24, 2007
    Last edited: Aug 24, 2007
  7. mambovince

    mambovince Well-Known Member

    Joined:
    Jan 15, 2005
    Messages:
    192
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    London, UK
    AFAIK, most spam originates from servers hosted in the US :confused:

    - Vince
     
  8. philwebservices

    Joined:
    Jul 7, 2006
    Messages:
    12
    Likes Received:
    0
    Trophy Points:
    1
    Fighting SPAM

    i have use ConfigServer's dictionary attack tool ... just a little perl script that would deny ip's doing dictionary attack , works great for me ... i'll let you guys know tomorrow how it would turn out since most of the attacks starts Tuesday(my time) Philippines.
     
  9. _Chris_

    _Chris_ Active Member

    Joined:
    Oct 22, 2007
    Messages:
    37
    Likes Received:
    0
    Trophy Points:
    6
    Very interested in this - how did you do it please ? Is it possible on shared servers please ?

    Any help much appreciated.

    Chris.
     
  10. twhiting9275

    twhiting9275 Well-Known Member

    Joined:
    Sep 26, 2002
    Messages:
    538
    Likes Received:
    15
    Trophy Points:
    18
    cPanel Access Level:
    Root Administrator
    Twitter:
    Correct
    According to project honeypot (what a name ;)).
     
Loading...

Share This Page