Adeus à 90% De Spam!
#1
Posted 03/09/2005, 21:00
Comigo ele funcionou perfeitamente, pra ter uma idéia a cada 2 segundos meus servidores recebia um e-mail contendo algum tipo de spam (vi nos logs de bloqueio), melhorou muito o desempenho dos servidores após isso, e a transferência mensal diminuiu bastante, apenas as menssagens válidas são enviadas e recebidas.
As RBL, são listas que contem um TOP Servidores Spammers, ou seja, a qualquer envio ou recebimento de uma menssagem ele verifica se o servidor que está te enviando ou que você vai enviar um e-mail se ele está em alguma das listas, se estiver ele bloqueia a mensagem e apaga, a maioria dos administradores de redes evitam que seus servidores sejam listados nessas RBL, e para sair depois que está listado é muito difícil, cerca de 20 dias depois de notificada a RBL e depois de a RBL conferir se realmente ele resolveu o problema dos spams. Está técnica lhe ajudará bastante a evitar esses tipos de problemas.
1º - Logue-se no SSH, e crie os arquivos:
/etc/rblblacklist # Rejeita alguns domínios especificados no arquivo.
/etc/rblbypass # Dominios que devem solicitar o SPAM ASSASSIN para verificar
/etc/rblwhitelist # Lista de servidores que podem lhe enviar e-mails sem verificação
Os arquivos acima devem contar 1 domínio por linha, também é permitido usar o *
Para criar os arquivos o comando é "touch".
No caso:
touch /etc/rblblacklist
touch /etc/rblbypass
touch /etc/rblwhitelist
2º - Para quem usa o WHM, entre como "root" clique no menu "Exim Configuration Editor", depois em "Switch to Advanced Mode" (Ele vai abrir o editor das configurações do Exim). Ou você pode fazer isso pelo shell (Editar o arquivo /etc/exim.conf).
Bem no começo do arquivo de configuração (na segunda linha), acrescente:
domainlist rbl_blacklist = lsearch;/etc/rblblacklist
domainlist rbl_bypass = lsearch;/etc/rblbypass
hostlist rbl_whitelist = lsearch;/etc/relayhosts : partial-lsearch;/etc/rblwhitelist
Depois procure por "begin acl", logo após em "accept hosts = :" Acrescente:
#**#
#**# RBL List Begin
#**#
#
# Always accept mail to postmaster & abuse for any local domain
#
accept domains = +local_domains
local_parts = postmaster:abuse
#
# Check sending hosts against DNS black lists.
# Accept all locally generated messages
# Reject message if address listed in blacklist.
deny message = Mesagem rejeitada porque $sender_fullhost \
esta listado em $dnslist_domain veja $dnslist_text
!hosts = +relay_hosts
!authenticated = *
dnslists = dnsbl.njabl.org : \
bl.spamcop.net : \
sbl.spamhaus.org : \
list.dsbl.org : \
cbl.abuseat.org : \
relays.ordb.org
# RBL Bypass Local Domain List
!domains = +rbl_bypass
# RBL Whitelist incoming hosts
!hosts = +rbl_whitelist
#**#
#**# RBL List End
#**#
Novamente procure pela sequencia
require verify = sender
accept domains = +local_domains
endpass
Essa sequencia também está em ACL
E após essa linha acrescente:
#**#
#**# Reject Email to Invalid Recipient
#**#
endpass
message = unknown user
verify = recipient
#**#
Depois vá para a seção "ROUTERS CONFIGURATION", utilize a busca novamente.
Logo no começo da seção acrescente:
# Deny and send notice to list of rejected domains.
reject_domains:
driver = redirect
# RBL Blacklist incoming hosts
domains = +rbl_blacklist
allow_fail
data = :fail: Connection rejected: SPAM source $domain is manually blacklisted.
Após isso salve e reinicie o EXIM.
Para testar se está funcionando, apenas envie um e-mail para "nelson-sbl-test@crynwr.com", o e-mail deve partir de uma conta que esteja em seu servidor, se você receber um e-mail do tipo:
Testing your SBL block. See http://www.crynwr.com/spam/ for more info.
Please note that this test will not tell you if your server is open for
relaying. Instead, it tests to see if your server blocks email from IP
addresses listed in various blocking lists; in this case, the SBL list.
Here's how the conversation looked from sbl.crynwr.com.
Note that some sites don't apply the SBL block to postmaster, so
I use your envelope sender as the To: address.
I connected to XXX.XXX.XXX.XXX and here's the conversation I had:
220-XZY.XXXXXX.com ESMTP Exim 4.24 #1 Thu, 16 Oct 2005 08:23:23 -0700
220-We do not authorize the use of this system to transport unsolicited,
220 and/or bulk e-mail.
helo sbl.crynwr.com
250 XZY.XXXXXX.com Hello sbl.crynwr.com [XXX.XXX.XXX.XXX]
mail from:<>
250 OK
rcpt to:<eMtnMan@yourdomain.com>
550-Message rejected because sbl.crynwr.com [XXX.XXX.XXX.XXX] is blacklisted at
550 sbl.spamhaus.org see http://www.spamhaus....o?query=SBLTEST
Terminating conversation
Está funcionando, caso receba 2 e-mails de nelson-sbl-test@crynwr.com, é por que não está funcionando.
Para verificar, logue no ssh e faça:
Verificar erros do Exim:
tail -50 /var/log/exim_paniclog
Verificar os SPAM:
tail -50 /var/log/exim_rejectlog
VOU PEDIR QUE VOCÊS CONTRIBUAM COM NOSSOS FILTROS, PRESCISAMOS APENAS ACRESCENTAR MAIS PALAVRAS PARA QUE FIQUE CADA VEZ MAIS FUNCIONAL, EU SIMPLESMENTE PODERIA GUARDAR ESTA TÉCNICA SOMENTE PARA MIM E SE POR ACASO APARECE-SE $$$ EU PODERIA FALAR, MAS ESTOU FAZENDO ISSO SEM RECEBER NADA, ENTÃO POR FAVOR, DE SUA CONTRIBUIÇÃO!
NÃO TIRO DÚVIDAS POR E-MAIL, MSN OU ICQ, A NÃO SER QUE $$$, SE NÃO PUDER $$$ POSTE AQUI QUE RESPONDEREMOS.
Hospedagem de Sites // Revenda de Hospedagem // Streaming & Web Rádio // Domínios // Vps
Hospedagem Ilimitada -> R$ 15,00 ao Mês + 30 Dias Grátis
Outros Sites: Jogos Loucos em Flash | Divulgue seu site Gratis | Web Masters Dicas & Tutoriais
#2
Posted 03/09/2005, 21:04
#!/bin/bash
#### Cria a lista de palavras a serem bloqueadas
cat > /home/.filter << "EOF"
$message_headers contains "agnetismo"+++++++/dev/null
$message_headers contains "Arte da Conquista"+++++++/dev/null
$message_headers contains "Promoção Colorida"+++++++/dev/null
$message_headers contains "1ium"+++++++/dev/null
$message_headers contains "67.19.186"+++++++/dev/null
$message_headers contains "A.exe"+++++++/dev/null
$message_headers contains "a.exe"+++++++/dev/null
$message_headers contains "a.scr"+++++++/dev/null
$message_headers contains "acettoluide"+++++++/dev/null
$message_headers contains "acormack"+++++++/dev/null
$message_headers contains "acridity"+++++++/dev/null
$message_headers contains "adquira ja"+++++++/dev/null
$message_headers contains "adquira já"+++++++/dev/null
$message_headers contains "ala direta"+++++++/dev/null
$message_headers contains "alco-h"+++++++/dev/null
$message_headers contains "ALlS"+++++++/dev/null
$message_headers contains "alternance"+++++++/dev/null
$message_headers contains "ama-zing"+++++++/dev/null
$message_headers contains "amazing"+++++++/dev/null
$message_headers contains "Amor Esta no Ar"+++++++/dev/null
$message_headers contains "amor.scr"+++++++/dev/null
$message_headers contains "ank"+++++++/dev/null
$message_headers contains "archvillainy"+++++++/dev/null
$message_headers contains "arthrophyma"+++++++/dev/null
$message_headers contains "atch"+++++++/dev/null
$message_headers contains "AUMENTE SEU"+++++++/dev/null
$message_headers contains "aumente seu"+++++++/dev/null
$message_headers contains "B.exe"+++++++/dev/null
$message_headers contains "b.exe"+++++++/dev/null
$message_headers contains "b.scr"+++++++/dev/null
$message_headers contains "B@mm"+++++++/dev/null
$message_headers contains "BANK"+++++++/dev/null
$message_headers contains "bank"+++++++/dev/null
$message_headers contains "Berlinize"+++++++/dev/null
$message_headers contains "bluelight"+++++++
$message_headers contains "bluelight"+++++++/dev/null
$message_headers contains "Bugbear"+++++++/dev/null
$message_headers contains "bwbypandal"+++++++/dev/null
$message_headers contains "C-ALLIS"+++++++/dev/null
$message_headers contains "c-ar"+++++++/dev/null
$message_headers contains "C.exe"+++++++/dev/null
$message_headers contains "c.exe"+++++++/dev/null
$message_headers contains "c.scr"+++++++/dev/null
$message_headers contains "c1al"+++++++/dev/null
$message_headers contains "C1ALlS"+++++++/dev/null
$message_headers contains "camera"+++++++/dev/null
$message_headers contains "canet"+++++++/dev/null
$message_headers contains "cartao especial"+++++++/dev/null
$message_headers contains "cartao TERRA"+++++++/dev/null
$message_headers contains "cartão especial"+++++++/dev/null
$message_headers contains "cartão TERRA"+++++++/dev/null
$message_headers contains "cashew"+++++++/dev/null
$message_headers contains "casiino"+++++++/dev/null
$message_headers contains "chur"+++++++/dev/null
$message_headers contains "Ci-alis"+++++++/dev/null
$message_headers contains "Ci-ialis"+++++++/dev/null
$message_headers contains "CiAllis"+++++++/dev/null
$message_headers contains "CiALlS"+++++++/dev/null
$message_headers contains "cJ3Q"+++++++/dev/null
$message_headers contains "ClALiS"+++++++/dev/null
$message_headers contains "colegial.bmp"+++++++/dev/null
$message_headers contains "commodious"+++++++/dev/null
$message_headers contains "constituent"+++++++/dev/null
$message_headers contains "croix"+++++++/dev/null
$message_headers contains "curso completo"+++++++/dev/null
$message_headers contains "d-rive"+++++++/dev/null
$message_headers contains "D.exe"+++++++/dev/null
$message_headers contains "d.exe"+++++++/dev/null
$message_headers contains "d.scr"+++++++/dev/null
$message_headers contains "deepthroat"+++++++/dev/null
$message_headers contains "dizz-y"+++++++/dev/null
$message_headers contains "doit"+++++++/dev/null
$message_headers contains "drug"+++++++/dev/null
$message_headers contains "dvgmail"+++++++/dev/null
$message_headers contains "e-rectiions"+++++++/dev/null
$message_headers contains "E.exe"+++++++/dev/null
$message_headers contains "e.exe"+++++++/dev/null
$message_headers contains "e.scr"+++++++/dev/null
$message_headers contains "earthmoving"+++++++/dev/null
$message_headers contains "emagrecer"+++++++/dev/null
$message_headers contains "emagreça"+++++++/dev/null
$message_headers contains "ertinho de Voce"+++++++/dev/null
$message_headers contains "ertinho de Você"+++++++/dev/null
$message_headers contains "ertinho de você"+++++++/dev/null
$message_headers contains "esta no ap"+++++++/dev/null
$message_headers contains "esta no ape"+++++++/dev/null
$message_headers contains "eu chamo de"+++++++/dev/null
$message_headers contains "eventospatriani"+++++++/dev/null
$message_headers contains "evestimentos com"+++++++/dev/null
$message_headers contains "F.exe"+++++++/dev/null
$message_headers contains "f.exe"+++++++/dev/null
$message_headers contains "f.scr"+++++++/dev/null
$message_headers contains "fas-ter"+++++++/dev/null
$message_headers contains "fe-ct"+++++++/dev/null
$message_headers contains "fellipe.info"+++++++/dev/null
$message_headers contains "Foto do Colégio"+++++++/dev/null
$message_headers contains "free"+++++++/dev/null
$message_headers contains "G.exe"+++++++/dev/null
$message_headers contains "g.exe"+++++++/dev/null
$message_headers contains "g.scr"+++++++/dev/null
$message_headers contains "galeon"+++++++/dev/null
$message_headers contains "girl"+++++++/dev/null
$message_headers contains "grant"+++++++/dev/null
$message_headers contains "green car"+++++++/dev/null
$message_headers contains "greenca"+++++++/dev/null
$message_headers contains "guy"+++++++/dev/null
$message_headers contains "H.exe"+++++++/dev/null
$message_headers contains "h.exe"+++++++/dev/null
$message_headers contains "h.scr"+++++++/dev/null
$message_headers contains "hairpin"+++++++/dev/null
$message_headers contains "halito"+++++++/dev/null
$message_headers contains "alito"+++++++/dev/null
$message_headers contains "álito"+++++++/dev/null
$message_headers contains "hall"+++++++/dev/null
$message_headers contains "elebrity"+++++++/dev/null
$message_headers contains "adalaf"+++++++/dev/null
$message_headers contains "alcohol"+++++++/dev/null
$message_headers contains "harmac"+++++++/dev/null
$message_headers contains "ho-urs"+++++++/dev/null
$message_headers contains "hoebe"+++++++/dev/null
$message_headers contains "hzcjqshowugg"+++++++/dev/null
$message_headers contains "i Meu Amor"+++++++/dev/null
$message_headers contains "i Meu amor"+++++++/dev/null
$message_headers contains "i meu Amor"+++++++/dev/null
$message_headers contains "i meu amor"+++++++/dev/null
$message_headers contains "i-agra"+++++++/dev/null
$message_headers contains "i-ck"+++++++/dev/null
$message_headers contains "I.exe"+++++++/dev/null
$message_headers contains "i.exe"+++++++/dev/null
$message_headers contains "i.scr"+++++++/dev/null
$message_headers contains "iagra"+++++++/dev/null
$message_headers contains "ialis"+++++++/dev/null
$message_headers contains "icatriz-reparacao"+++++++/dev/null
$message_headers contains "icatriz-reparacão"+++++++/dev/null
$message_headers contains "icatriz-reparaçao"+++++++/dev/null
$message_headers contains "icatriz-reparação"+++++++/dev/null
$message_headers contains "internet.e"+++++++/dev/null
$message_headers contains "is sera que"+++++++/dev/null
$message_headers contains "iverjoice"+++++++/dev/null
$message_headers contains "J.exe"+++++++/dev/null
$message_headers contains "j.exe"+++++++/dev/null
$message_headers contains "j.scr"+++++++/dev/null
$message_headers contains "Jared Tovar"+++++++/dev/null
$message_headers contains "Jared tovar"+++++++/dev/null
$message_headers contains "jared Tovar"+++++++/dev/null
$message_headers contains "jared tovar"+++++++/dev/null
$message_headers contains "K.exe"+++++++/dev/null
$message_headers contains "k.exe"+++++++/dev/null
$message_headers contains "k.scr"+++++++/dev/null
$message_headers contains "L.exe"+++++++/dev/null
$message_headers contains "l.exe"+++++++/dev/null
$message_headers contains "l.scr"+++++++/dev/null
$message_headers contains "L1UM"+++++++/dev/null
$message_headers contains "Lençol Termico"+++++++/dev/null
$message_headers contains "lençol Termico"+++++++/dev/null
$message_headers contains "lençol termico"+++++++/dev/null
$message_headers contains "lev-it-ra"+++++++/dev/null
$message_headers contains "lippin"+++++++/dev/null
$message_headers contains "lisst"+++++++/dev/null
$message_headers contains "lium"+++++++/dev/null
$message_headers contains "LlUM"+++++++/dev/null
$message_headers contains "lood"+++++++/dev/null
$message_headers contains "loschuzos"+++++++/dev/null
$message_headers contains "lquem que nao esqueceu"+++++++/dev/null
$message_headers contains "lquem que não esqueceu"+++++++/dev/null
$message_headers contains "M.exe"+++++++/dev/null
$message_headers contains "m.exe"+++++++/dev/null
$message_headers contains "m.scr"+++++++/dev/null
$message_headers contains "magreca dormindo"+++++++/dev/null
$message_headers contains "magreça dormindo"+++++++/dev/null
$message_headers contains "mai-lling"+++++++/dev/null
$message_headers contains "marketweighton"+++++++/dev/null
$message_headers contains "melhores usam"+++++++/dev/null
$message_headers contains "melhores usam"+++++++/dev/null
$message_headers contains "milhoes de emails"+++++++/dev/null
$message_headers contains "milhões de emails"+++++++/dev/null
$message_headers contains "minutes"+++++++/dev/null
$message_headers contains "mojaposta"+++++++/dev/null
$message_headers contains "MOMENTUM"+++++++/dev/null
$message_headers contains "mor Esta no Ar"+++++++/dev/null
$message_headers contains "mor Esta no ar"+++++++/dev/null
$message_headers contains "mor esta no ar"+++++++/dev/null
$message_headers contains "MORTGAGE"+++++++/dev/null
$message_headers contains "N.exe"+++++++/dev/null
$message_headers contains "n.exe"+++++++/dev/null
$message_headers contains "n.scr"+++++++/dev/null
$message_headers contains "nanight"+++++++/dev/null
$message_headers contains "naoresponda"+++++++/dev/null
$message_headers contains "nosso curso"+++++++/dev/null
$message_headers contains "nvitation"+++++++/dev/null
$message_headers contains "o-ut"+++++++/dev/null
$message_headers contains "O.exe"+++++++/dev/null
$message_headers contains "o.exe"+++++++/dev/null
$message_headers contains "o.scr"+++++++/dev/null
$message_headers contains "Oi Meu Amor"+++++++/dev/null
$message_headers contains "olex"+++++++/dev/null
$message_headers contains "ORÇAMENTO PZ"+++++++/dev/null
$message_headers contains "osseously"+++++++/dev/null
$message_headers contains "oth-e"+++++++/dev/null
$message_headers contains "oto do Colegio"+++++++/dev/null
$message_headers contains "oto do colegio"+++++++/dev/null
$message_headers contains "p-op"+++++++/dev/null
$message_headers contains "P.exe"+++++++/dev/null
$message_headers contains "p.exe"+++++++/dev/null
$message_headers contains "p.scr"+++++++/dev/null
$message_headers contains "pare-de fumar-agora"+++++++/dev/null
$message_headers contains "peni"+++++++/dev/null
$message_headers contains "penni"+++++++/dev/null
$message_headers contains "Pertinho de voce"+++++++/dev/null
$message_headers contains "Pfizer"+++++++/dev/null
$message_headers contains "pianos semi"+++++++/dev/null
$message_headers contains "pianoszimmermann"+++++++/dev/null
$message_headers contains "polobras"+++++++/dev/null
$message_headers contains "porn"+++++++/dev/null
$message_headers contains "porpnefgddftnainter"+++++++/dev/null
$message_headers contains "provenance"+++++++/dev/null
$message_headers contains "puss"+++++++/dev/null
$message_headers contains "Q.exe"+++++++/dev/null
$message_headers contains "q.exe"+++++++/dev/null
$message_headers contains "q.scr"+++++++/dev/null
$message_headers contains "questionamento"+++++++/dev/null
$message_headers contains "R.exe"+++++++/dev/null
$message_headers contains "r.exe"+++++++/dev/null
$message_headers contains "r.scr"+++++++/dev/null
$message_headers contains "raffic magnet"+++++++/dev/null
$message_headers contains "re ["+++++++/dev/null
$message_headers contains "Re["+++++++/dev/null
$message_headers contains "re["+++++++/dev/null
$message_headers contains "ready"+++++++/dev/null
$message_headers contains "relax"+++++++/dev/null
$message_headers contains "Relogio"+++++++/dev/null
$message_headers contains "relogio"+++++++/dev/null
$message_headers contains "Relógio"+++++++/dev/null
$message_headers contains "relógio"+++++++/dev/null
$message_headers contains "Rememb"+++++++/dev/null
$message_headers contains "remkttg0"+++++++/dev/null
$message_headers contains "renda adicional"+++++++/dev/null
$message_headers contains "rivertoys"+++++++/dev/null
$message_headers contains "répli"+++++++/dev/null
$message_headers contains "S.exe"+++++++/dev/null
$message_headers contains "s.exe"+++++++/dev/null
$message_headers contains "s.scr"+++++++/dev/null
$message_headers contains "s0ft"+++++++/dev/null
$message_headers contains "Salary"+++++++/dev/null
$message_headers contains "SammyMccarty"+++++++/dev/null
$message_headers contains "se-xual"+++++++/dev/null
$message_headers contains "selecionar.c"+++++++/dev/null
$message_headers contains "selecionar.n"+++++++/dev/null
$message_headers contains "selecionar.o"+++++++/dev/null
$message_headers contains "selecionar.z"+++++++/dev/null
$message_headers contains "sensat-ion"+++++++/dev/null
$message_headers contains "sex"+++++++/dev/null
$message_headers contains "sinuca.net"+++++++/dev/null
$message_headers contains "siteagoraemfoco"+++++++/dev/null
$message_headers contains "Softabs"+++++++/dev/null
$message_headers contains "sorghum"+++++++/dev/null
$message_headers contains "squeca as dificuldades"+++++++/dev/null
$message_headers contains "squeça as dificuldades"+++++++/dev/null
$message_headers contains "ste curso voc"+++++++/dev/null
$message_headers contains "superzille"+++++++/dev/null
$message_headers contains "T.exe"+++++++/dev/null
$message_headers contains "t.exe"+++++++/dev/null
$message_headers contains "t.scr"+++++++/dev/null
$message_headers contains "t0ck"+++++++/dev/null
$message_headers contains "Traffic Magnet"+++++++/dev/null
$message_headers contains "Traffic magnet"+++++++/dev/null
$message_headers contains "traffic Magnet"+++++++/dev/null
$message_headers contains "treinar dirigir"+++++++/dev/null
$message_headers contains "treinar e dirigir"+++++++/dev/null
$message_headers contains "U.exe"+++++++/dev/null
$message_headers contains "u.exe"+++++++/dev/null
$message_headers contains "u.scr"+++++++/dev/null
$message_headers contains "uaaraantees"+++++++/dev/null
$message_headers contains "UAIG"+++++++/dev/null
$message_headers contains "uck"+++++++/dev/null
$message_headers contains "uesc"+++++++/dev/null
$message_headers contains "UPBP"+++++++/dev/null
$message_headers contains "upbp"+++++++/dev/null
$message_headers contains "v-i-a-gra"+++++++/dev/null
$message_headers contains "V.exe"+++++++/dev/null
$message_headers contains "v.exe"+++++++/dev/null
$message_headers contains "v.scr"+++++++/dev/null
$message_headers contains "Vallium"+++++++/dev/null
$message_headers contains "Viiagrra"+++++++/dev/null
$message_headers contains "VlAGRA"+++++++/dev/null
$message_headers contains "vmqgnmomh"+++++++/dev/null
$message_headers contains "voce esta no meio encostado na arvore"+++++++/dev/null
$message_headers contains "voce esta no meio encostado na árvore"+++++++/dev/null
$message_headers contains "voce está no meio encostado na árvore"+++++++/dev/null
$message_headers contains "você esta no meio encostado na árvore"+++++++/dev/null
$message_headers contains "você está no meio encostado na arvore"+++++++/dev/null
$message_headers contains "você está no meio encostado na árvore"+++++++/dev/null
$message_headers contains "voxcar"+++++++/dev/null
$message_headers contains "Voç"+++++++/dev/null
$message_headers contains "voç"+++++++/dev/null
$message_headers contains "W.exe"+++++++/dev/null
$message_headers contains "w.exe"+++++++/dev/null
$message_headers contains "w.scr"+++++++/dev/null
$message_headers contains "W32"+++++++/dev/null
$message_headers contains "wanessa.info"+++++++/dev/null
$message_headers contains "WATCH"+++++++/dev/null
$message_headers contains "weather"+++++++/dev/null
$message_headers contains "X.exe"+++++++/dev/null
$message_headers contains "x.exe"+++++++/dev/null
$message_headers contains "x.scr"+++++++/dev/null
$message_headers contains "xoomer"+++++++/dev/null
$message_headers contains "Y.exe"+++++++/dev/null
$message_headers contains "y.exe"+++++++/dev/null
$message_headers contains "y.scr"+++++++/dev/null
$message_headers contains "yeshiva"+++++++/dev/null
$message_headers contains "Z.exe"+++++++/dev/null
$message_headers contains "z.exe"+++++++/dev/null
$message_headers contains "z.scr"+++++++/dev/null
EOF
cd /var/cpanel/users
for user in $(find *); do
if cp -rf /home/.filter /home/$user/.filter && chown $user.$user /home/$user/.filter; then
echo "Filtro aplicado em: $user"
fi
done
rm -rf /home/.filter
echo "Filtro aplicado com sucesso!"
- DonaldIdem likes this
Hospedagem de Sites // Revenda de Hospedagem // Streaming & Web Rádio // Domínios // Vps
Hospedagem Ilimitada -> R$ 15,00 ao Mês + 30 Dias Grátis
Outros Sites: Jogos Loucos em Flash | Divulgue seu site Gratis | Web Masters Dicas & Tutoriais
#3
Posted 14/06/2007, 11:34
Achei muito interessante isso ... porém quero ver se consigo fazer isso em meu servidor e não tenho nem ideia de como fazer pode me ajudar, tipo o que que eu posso ler para poder fazer isso, não que esteje pedindo para você me ajudar mas para me dar um caminho..
que tipo de programa que uso para fazer isso ...
se pude me ajudar fico muito grato!
#4
Posted 14/06/2007, 15:38
Hospedagem de Sites // Revenda de Hospedagem // Streaming & Web Rádio // Domínios // Vps
Hospedagem Ilimitada -> R$ 15,00 ao Mês + 30 Dias Grátis
Outros Sites: Jogos Loucos em Flash | Divulgue seu site Gratis | Web Masters Dicas & Tutoriais
#5
Posted 14/06/2007, 15:45
Poderia publica-lo no forumcpanel?
http://www.forumcpanel.com.br
La tem os experts no assunto.
#6
Posted 14/06/2007, 17:52
Mas gostei tb das curiosidades do texto.. hehe
Como as principais palavras que devo evitar no proximo envio de emails (a)
e a duvida q ficou...
q spam q manda esta frase "voce esta no meio encostado na arvore"
hauhau
* Administração e Configuração de Servidores;
* Combinação Perfeita: NGINX + PHP + VARNISH + HAPROXY
* otavio*iporto.com ~ Tel: +55 51 3366 0177 | +55 51 4063 7343 |
* @iporto
#7
Posted 12/04/2011, 15:35
Você está cansado de ficar recebendo milhares de spam todos os dias em seus servidores? E seus clientes estão reclamando direto sobre isso? Essa técnica pode ajudar muito você a combater esses spammers ****
Comigo ele funcionou perfeitamente, pra ter uma idéia a cada 2 segundos meus servidores recebia um e-mail contendo algum tipo de spam (vi nos logs de bloqueio), melhorou muito o desempenho dos servidores após isso, e a transferência mensal diminuiu bastante, apenas as menssagens válidas são enviadas e recebidas.
As RBL, são listas que contem um TOP Servidores Spammers, ou seja, a qualquer envio ou recebimento de uma menssagem ele verifica se o servidor que está te enviando ou que você vai enviar um e-mail se ele está em alguma das listas, se estiver ele bloqueia a mensagem e apaga, a maioria dos administradores de redes evitam que seus servidores sejam listados nessas RBL, e para sair depois que está listado é muito difícil, cerca de 20 dias depois de notificada a RBL e depois de a RBL conferir se realmente ele resolveu o problema dos spams. Está técnica lhe ajudará bastante a evitar esses tipos de problemas.
1º - Logue-se no SSH, e crie os arquivos:
/etc/rblblacklist # Rejeita alguns domínios especificados no arquivo.
/etc/rblbypass # Dominios que devem solicitar o SPAM ASSASSIN para verificar
/etc/rblwhitelist # Lista de servidores que podem lhe enviar e-mails sem verificação
Os arquivos acima devem contar 1 domínio por linha, também é permitido usar o *
Para criar os arquivos o comando é "touch".
No caso:
touch /etc/rblblacklist
touch /etc/rblbypass
touch /etc/rblwhitelist
2º - Para quem usa o WHM, entre como "root" clique no menu "Exim Configuration Editor", depois em "Switch to Advanced Mode" (Ele vai abrir o editor das configurações do Exim). Ou você pode fazer isso pelo shell (Editar o arquivo /etc/exim.conf).
Bem no começo do arquivo de configuração (na segunda linha), acrescente:
domainlist rbl_blacklist = lsearch;/etc/rblblacklist
domainlist rbl_bypass = lsearch;/etc/rblbypass
hostlist rbl_whitelist = lsearch;/etc/relayhosts : partial-lsearch;/etc/rblwhitelist
Depois procure por "begin acl", logo após em "accept hosts = :" Acrescente:
#**#
#**# RBL List Begin
#**#
#
# Always accept mail to postmaster & abuse for any local domain
#
accept domains = +local_domains
local_parts = postmaster:abuse
#
# Check sending hosts against DNS black lists.
# Accept all locally generated messages
# Reject message if address listed in blacklist.
deny message = Mesagem rejeitada porque $sender_fullhost \
esta listado em $dnslist_domain veja $dnslist_text
!hosts = +relay_hosts
!authenticated = *
dnslists = dnsbl.njabl.org : \
bl.spamcop.net : \
sbl.spamhaus.org : \
list.dsbl.org : \
cbl.abuseat.org : \
relays.ordb.org
# RBL Bypass Local Domain List
!domains = +rbl_bypass
# RBL Whitelist incoming hosts
!hosts = +rbl_whitelist
#**#
#**# RBL List End
#**#
Novamente procure pela sequencia
require verify = sender
accept domains = +local_domains
endpass
Essa sequencia também está em ACL
E após essa linha acrescente:
#**#
#**# Reject Email to Invalid Recipient
#**#
endpass
message = unknown user
verify = recipient
#**#
Depois vá para a seção "ROUTERS CONFIGURATION", utilize a busca novamente.
Logo no começo da seção acrescente:
# Deny and send notice to list of rejected domains.
reject_domains:
driver = redirect
# RBL Blacklist incoming hosts
domains = +rbl_blacklist
allow_fail
data = :fail: Connection rejected: SPAM source $domain is manually blacklisted.
Após isso salve e reinicie o EXIM.
Para testar se está funcionando, apenas envie um e-mail para "nelson-sbl-test@crynwr.com", o e-mail deve partir de uma conta que esteja em seu servidor, se você receber um e-mail do tipo:
Testing your SBL block. See http://www.crynwr.com/spam/ for more info.
Please note that this test will not tell you if your server is open for
relaying. Instead, it tests to see if your server blocks email from IP
addresses listed in various blocking lists; in this case, the SBL list.
Here's how the conversation looked from sbl.crynwr.com.
Note that some sites don't apply the SBL block to postmaster, so
I use your envelope sender as the To: address.
I connected to XXX.XXX.XXX.XXX and here's the conversation I had:
220-XZY.XXXXXX.com ESMTP Exim 4.24 #1 Thu, 16 Oct 2005 08:23:23 -0700
220-We do not authorize the use of this system to transport unsolicited,
220 and/or bulk e-mail.
helo sbl.crynwr.com
250 XZY.XXXXXX.com Hello sbl.crynwr.com [XXX.XXX.XXX.XXX]
mail from:<>
250 OK
rcpt to:<eMtnMan@yourdomain.com>
550-Message rejected because sbl.crynwr.com [XXX.XXX.XXX.XXX] is blacklisted at
550 sbl.spamhaus.org see http://www.spamhaus....o?query=SBLTEST
Terminating conversation
Está funcionando, caso receba 2 e-mails de nelson-sbl-test@crynwr.com, é por que não está funcionando.
Para verificar, logue no ssh e faça:
Verificar erros do Exim:
tail -50 /var/log/exim_paniclog
Verificar os SPAM:
tail -50 /var/log/exim_rejectlog
VOU PEDIR QUE VOCÊS CONTRIBUAM COM NOSSOS FILTROS, PRESCISAMOS APENAS ACRESCENTAR MAIS PALAVRAS PARA QUE FIQUE CADA VEZ MAIS FUNCIONAL, EU SIMPLESMENTE PODERIA GUARDAR ESTA TÉCNICA SOMENTE PARA MIM E SE POR ACASO APARECE-SE $$$ EU PODERIA FALAR, MAS ESTOU FAZENDO ISSO SEM RECEBER NADA, ENTÃO POR FAVOR, DE SUA CONTRIBUIÇÃO!
NÃO TIRO DÚVIDAS POR E-MAIL, MSN OU ICQ, A NÃO SER QUE $$$, SE NÃO PUDER $$$ POSTE AQUI QUE RESPONDEREMOS.
Caro amigo, 7 anos se passaram usamos a configuração acima a 4 anos, funcionando perfeitamente ate o momento, porem foi necessario a troca de HD de algumas maquinas e infelizmente perdemos a configuração. A pergunta é esse tutorial ainda funciona ? Pois tentei fazer a configuração e não obtive existo.
Aguardo resposta Meu msn dinoronha@msn.com ou poste por aqui mesmo.
#8
Posted 20/09/2017, 21:48
Aclepsa Buy Propecia cialis online Tadalafil Generic 4 All
Cephalexin And Drugs To Treat Mrsa
Propecia How To Take <a href=http://cialtobuy.com>cialis</a> Order Levitra Online
#10
Posted 22/10/2017, 15:16
Come Acquistare Il Cialis viagra Viagra Frau Tabletten Stendra Online Zithromax Z Pak For Sale
Discount Secure Ordering Acticin Direct cialis Cialis Viagra Tadalafil Viagra Generique En France
#11
Posted 15/06/2021, 09:21
Attached Files
0 user(s) are reading this topic
0 membro(s), 0 visitante(s) e 0 membros anônimo(s)