I've added my notes to the site on how to locally mirror RBL zone
files using rbldnsd with BIND on FreeBSD:
http://www.surbl.org/rbldnsd-bind-freebsd.html
Feel free to send me any corrections, updates, suggestions,
questions, etc.
Jeff C.
--
Jeff Chan
mailto:jeffc@surbl.org
http://www.surbl.org/
Just released SpamCopURI 0.17. This is basically a bugfix release.
Upgrade if you see something you need:
0.17 Mon May 24 18:23:55 PDT 2004
- added code to handle hex encoded and base 10 encoded
IP addresses
- added backslash handling in urls (http:/\www.google.com)
- handling case when host of a URL is a '.'
- calling env_proxy on LWP::UserAgent to support proxied
users (thanks to bluebanana )
http://sourceforge.net/projects/spamcopuri/
--eric
Eric Kolve has released SpamCopURI version 0.16 which fixes the
handling of the few URIs which use numeric IP addresses.
http://sourceforge.net/projects/spamcopuri
If you're using SpamCopURI, please upgrade to this new version.
Thanks all,
Jeff C.
--
Jeff Chan
mailto:jeffc@surbl.org
http://www.surbl.org/
I have just released SpamCopURI 0.15. I have fixed a few bugs
that were reported and also added some url extraction so open_redirect
resolution isn't need any longer for urls that redirect through
google.com, msn.com, yahoo.com or any site that redirects based
on a url being passed in the query or path portion.
The install *should* be smoother. The Makefile.PL now attempts
to detect where SpamAssassin was installed and place itself in
that directory. See the Changes file for a complete list.
https://sourceforge.net/projects/spamcopuri/
--eric
We are now removing any subdomains (third or greater level
domains or host names) from generic TLDs:
http://www.icann.org/tlds/
using a "new"-style regular expression:
s/^([^\.]*\.)+([^\.]*)\.(com|net|org|edu|mil|biz|info|int|arpa|name|museum|coop|aero|pro)$/\2.\3/
It seems to do the right thing, both on test cases and the actual
data, so it's now live on all the SURBL lists. If anyone sees any
problems with this regex, please let me know.
Bill's domains from sa-blacklist are already in the correct form :-)
and have no subdomains on these gTLD domains going into
ws.surbl.org. I added it also to sc.surbl.org and be.surbl.org
which did get rid of a few errant records. Subdomains are now
properly removed in be and sc, as they should have been.
This may result in slightly better matching on both be and sc
since the clients are supposed to be doing similar things with
domains found in message URIs.
Jeff C.
--
Jeff Chan
mailto:jeffc@surbl.org
http://www.surbl.org/
1. We'd like to welcome and thank our two new public name
server administrators and hosts:
Dave Burke and esat.net
Bjorn Jensen and info-connect.dk
Without the help of all of our public nameservers, SURBLs
would not be possible. Thanks Dave, Bjorn and all the
administrators and networks of our nameservers!
2. We've added some documents about using rbldnsd, rsync, dnscache
and BIND to locally cache SURBL (and any other RBL) zone files.
Bob Cottrell describes setting up rbldnsd and rsync on top
of an existing BIND server:
http://www.surbl.org/rbldnsd-howto.html
Rick Macdougall writes up how he set up rbldnsd to run on
the same name server as dnscache from djbdns:
http://www.surbl.org/dnscache-rbldnsd.html
I've written up how to use rsync with BIND to cache RBL
zone files, though rbldnsd is a better solution for many
reasons.
http://www.surbl.org/bind-rsync.html
In addition, NJABL has some helpful tips on setting up
rbldnsd and rsync to serve RBL zone files locally:
http://njabl.org/rsync.html
Kind thanks to Bob Cottrell and Rick Macdougall for preparing
and sharing their notes for everyone's benefit! Please let me
know if you have any comments on these. Any errors are probably
due to my transcriptions.
*****************************************************************
Anyone running a high-volume mail system (i.e., more than 250,000
inbound messages per day) is strongly encouraged to set up local
caching of their RBL zone files including SURBLs. The benefits
are improved mail performance, reduced network traffic, and
offloading of the public nameservers. rbldnsd and rsync is the
preferred way to do it, but BIND will also work (slower ;-).
Also if you are using a version of SpamCopURI prior to the
current 0.14, please upgrade it. Some earlier versions do not
support DNS caching, which can result in excessive DNS traffic.
http://sourceforge.net/projects/spamcopuri/
*****************************************************************
3. We have lowered the refresh times on ws.surbl.org and
be.surbl.org zone files to 20 minutes. This change should not
affect most SURBL users. Refresh times of 10 minutes remain
unchanged on sc.surbl.org. Retry times are programatically half
of the refresh times (i.e. 10 and 5 minutes respectively).
Jeff C.
--
Jeff Chan
mailto:jeffc@surbl.org
http://www.surbl.org/
http://www.surbl.org/news.html
Ask Bjørn Hansen of develooper.com is using SURBL data to block
spammer domains in the Metamark Shorten Service URI shortening
and redirection service. This is the first use of SURBL data to
prevent abuse of a redirection site that we've heard of! Great
going!
Ask explains his motivation as: "I mostly did it to make it less
likely that I'll have to deal with abusers of the service
manually. Hopefully the other redirection services will realize
that benefit soon as well."
To anyone who knows how to contact the other redirection sites:
please feel free to write them with this news and possibly the
open letter to redirectors:
http://www.surbl.org/redirect.html
Cheers,
Jeff C.
--
Jeff Chan
mailto:jeffc@surbl.org
http://www.surbl.org/