The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

UCEProtect Mail Blocking

Discussion in 'E-mail Discussions' started by web12, Dec 7, 2006.

  1. web12

    web12 Well-Known Member

    Joined:
    Nov 20, 2002
    Messages:
    240
    Likes Received:
    0
    Trophy Points:
    16
    Hi Guys

    Hoping someone else has noticed this and is able to shed some light on this.

    It seems a lot of our servers have got listed with a spam BL called UCEProtect.net

    Now this seemed like a bit of a scam to me at first as you have to wait 7 days to get removed, or can pay for instant removal. The scam part to me showed itself when I grepped my mail logs to see why they were blocking me. Below is an example:-

    Now this seems like theyve listed my servers because their mail was rejected... right?

    Well, further looking into it it seems they dont like the use of sendercallouts, as written at http://www.uceprotect.net/en/index.php?m=4&s=0

    Are callouts really such a bad thing? Ive not had any issues with any other BL because of this and it seems really unfair to list you because you are taking steps to protect your users from spam.

    Also, are callouts still needed if you have other checks in place like Dictionary Attack checks and BL and virus scans?

    Your thoughts are welcome, cus I certainly dont want to pay to get all my servers delisted from this BL.
     
  2. chirpy

    chirpy Well-Known Member

    Joined:
    Jun 15, 2002
    Messages:
    13,475
    Likes Received:
    20
    Trophy Points:
    38
    Location:
    Go on, have a guess
    TBH, reading their site, it appears to be a litany of nonsense and why anyone would use them to protect themselves against spam is beyond me. IMO, you should never ever pay anyone to delist your site from an RBL and should refer the domain using the RBL to such a shoddy practice. Personally, I'd ignore them and explain to the affected user why you're ignoring them.
     
  3. ramorse

    ramorse Well-Known Member

    Joined:
    Sep 6, 2003
    Messages:
    201
    Likes Received:
    0
    Trophy Points:
    16
    cPanel Access Level:
    Root Administrator
    My server was listed there as well. In fact, chripy, I just posted a support question to you related to this. I found their policies vigilante in nature and the idea of paying to get de-listed tantamount to blackmail.

    However, it's clear that some admins are using their list. So, no matter what my opinion of their policy, it's affecting my clients' ability to send and receive email.

    They claim my server has 'generic dns' and does 'backscatter', two terms that are new to me. So, somehow I need to deal with this.

    BTW, they participate in a google group: http://groups.google.com/group/news.admin.net-abuse.blocklisting

    lots of complaints and questions about their policies.
     
  4. zigzam

    zigzam Well-Known Member

    Joined:
    May 9, 2005
    Messages:
    206
    Likes Received:
    0
    Trophy Points:
    16
    Every server I have is listed there also. What a scam they are running.
     
  5. Branko

    Branko Active Member
    PartnerNOC

    Joined:
    Sep 16, 2005
    Messages:
    36
    Likes Received:
    0
    Trophy Points:
    6
    cPanel Access Level:
    DataCenter Provider
    Reading the site http://www.uceprotect.net and the newsgroups, backscatter apears to be everything that bounce to sender, including:
    user excides mail quota
    Sender verification
    etc...

    Also "too generic" ptr records will get you to the list, and as "too generic" they mean almost every ptr that major datacenters set to users.

    So baesicly UCEProtect is trying to make us
    1) disable Out of office auto responders to users
    2) handle those bounces of users over quota on SMPT rcpt time (http://www.timj.co.uk/linux/rcpt-time-quota-maildir.php)
    Other informations about backscatter http://spamlinks.net/prevent-secure-backscatter.htm

    In some point it make sense, but one backscatter to cause blacklisting is IMHO not acceptable.

    Sad thing is that I saw in my log retuned recipients from some remote mailserver about not delivering my mail because my mail server is listed at uceprotect because backscatter :confused:

    The new problem is that many spambots are now aware of this policy, and now they use uceprotect spamtrap mails to blacklist servers. So it seams that solution is to disable sender verify, discourage users from using autoresponders.

    Also it seams very unprofessional to charge 50€ for delisting, and receive payment only trough paypal and moneybookers.

    As I saw on news thread the reason for billing the 50€ is damage your server has caused to other sysadmins wtf:confused:
     
    #5 Branko, Dec 15, 2006
    Last edited: Dec 15, 2006
Loading...

Share This Page