Announce

announce@lists.surbl.org

187 discussions

[SURBL-Announce] ANNOUNCE: be.surbl.org deprecated, please use ws.surbl.org instead
by Jeff Chan 30 Jun '04

30 Jun '04

As part of an ongoing effort to consolidate spam message body URIs that were in sa-blacklist and BigEvil and MidEvil SpamAssassin rulesets, we have frozen be.surbl.org and merged its records into ws.surbl.org. Eventually the contents of be.surbl.org (and the list itself) may go away, so we ask that anyone using: be.surbl.org switch to: ws.surbl.org instead. ws.surbl.org, in addition to getting the old be.surbl.org data and Bill Stearns' locally found data is also receiving spam URI domains from Chris Santerre and others. ws.surbl.org is becoming a collection point for those anti-spam efforts. For those who wish to continue using SpamAssassin ruleset versions, Chris Santerre and the SARE Ninjas will let us know about future versions of BigEvil.cf and a successor wildcarded ruleset for use with SpamAssassin. (Chris, when you announce, please be sure to mention the relationships between the SURBL and ruleset versions of things so folks don't end up using both versions of the same data.) For those looking for more efficient use of the sa-blacklist and old BigEvil and MidEvil rulesets, the SURBL version of most of their domains: ws.surbl.org may be a good solution. Using this data as SURBLs greatly reduces the server memory footprint over the ruleset versions, for example. That can make the data more practical to use on smaller computers, or generally make more efficient use of system resources on larger, busier servers. Using DNS for distributing the data, however, SURBLs do require network access. For a relatively few situations, this may be an issue. More information about SURBLs can be found at: http://www.surbl.org/ Please feel free to ask questions or leave comments about SURBLs on our discussion list at: http://lists.surbl.org/mailman/listinfo/discuss Please let us know about any false positives at: whitelist at surbl dot org Jeff C. -- Jeff Chan mailto:jeffc@surbl.org http://www.surbl.org/

1 0

[SURBL-Announce] Welcoming three public name servers, checking with others, lists
by Jeff Chan 16 Jun '04

16 Jun '04

We'd like to welcome and thank three new public name servers administered by: Jake Zack of avalonworks.com Tony Copeland of uncw.edu Joe Boyce of shasta.com I think some other people may have offered to serve up the SURBL zones publically, and any help spreading the load around further will be appreciated. It looks like use of SURBLs could take off especially as SpamAssassin 3.0 has built in support for them using urirhsbl. If anyone else would like to serve zones publically, please contact Raymond and I at rsync at surbl.org . I should mention that we are now adding a zone with about 40k entries, ob.surbl.org, and we will also ask to serve a combined list multi.surbl.org soon. Multi will have the same number of entries as the largest list. Currently that's ws.surbl.org with under 20k entries, but multi will go to 40k when we add in ob in. sc.surbl.org remains at around 500 entries but could change when I get around to working on the new data engine. We will try to deprecate be.surbl.org since its domains are now in ws. We're still working out the details of what happens to be after that happens. More information on the lists can be found at: http://www.surbl.org/lists.html though I have not documented ob there yet. We are also looking into some other potential spam URI data sources such as proxypots, etc.: http://proxypot.org/ Cheers, Jeff C. -- Jeff Chan mailto:jeffc@surbl.org http://www.surbl.org/

1 0

ANNOUNCE: Brief SURBL maintenance outage
by Jeff Chan 13 Jun '04

13 Jun '04

The SURBL web site may be offline for a couple hours during the window from 23:30 to 02:30 U.S. Central time 12 June 2004 while the hosting provider upgrades their power equipment. SURBLs will continue to operate normally using the existing zone files, though updates may be delayed for an hour or two. Jeff C. -- Jeff Chan mailto:jeffc@surbl.org http://www.surbl.org/

1 0

[SURBL-Announce] ANNOUNCE: How to set up rbldnsd with BIND under FreeBSD
by Jeff Chan 26 May '04

26 May '04

I've added my notes to the site on how to locally mirror RBL zone files using rbldnsd with BIND on FreeBSD: http://www.surbl.org/rbldnsd-bind-freebsd.html Feel free to send me any corrections, updates, suggestions, questions, etc. Jeff C. -- Jeff Chan mailto:jeffc@surbl.org http://www.surbl.org/

1 0

ANNOUNCE: Mail::SpamAssassin::SpamCopURI 0.17
by Eric Kolve 26 May '04

26 May '04

Just released SpamCopURI 0.17. This is basically a bugfix release. Upgrade if you see something you need: 0.17 Mon May 24 18:23:55 PDT 2004 - added code to handle hex encoded and base 10 encoded IP addresses - added backslash handling in urls (http:/\www.google.com) - handling case when host of a URL is a '.' - calling env_proxy on LWP::UserAgent to support proxied users (thanks to bluebanana ) http://sourceforge.net/projects/spamcopuri/ --eric

1 1

ANNOUNCE: Mail::SpamAsssassin::SpamCopURI 0.16
by Jeff Chan 15 May '04

15 May '04

Eric Kolve has released SpamCopURI version 0.16 which fixes the handling of the few URIs which use numeric IP addresses. http://sourceforge.net/projects/spamcopuri If you're using SpamCopURI, please upgrade to this new version. Thanks all, Jeff C. -- Jeff Chan mailto:jeffc@surbl.org http://www.surbl.org/

1 0

ANNOUNCE: Mail::SpamAsssassin::SpamCopURI 0.15
by Eric Kolve 07 May '04

07 May '04

I have just released SpamCopURI 0.15. I have fixed a few bugs that were reported and also added some url extraction so open_redirect resolution isn't need any longer for urls that redirect through google.com, msn.com, yahoo.com or any site that redirects based on a url being passed in the query or path portion. The install *should* be smoother. The Makefile.PL now attempts to detect where SpamAssassin was installed and place itself in that directory. See the Changes file for a complete list. https://sourceforge.net/projects/spamcopuri/ --eric

1 0

gTLD subdomains removed from SURBLs
by Jeff Chan 06 May '04

06 May '04

We are now removing any subdomains (third or greater level domains or host names) from generic TLDs: http://www.icann.org/tlds/ using a "new"-style regular expression: s/^([^\.]*\.)+([^\.]*)\.(com|net|org|edu|mil|biz|info|int|arpa|name|museum|coop|aero|pro)$/\2.\3/ It seems to do the right thing, both on test cases and the actual data, so it's now live on all the SURBL lists. If anyone sees any problems with this regex, please let me know. Bill's domains from sa-blacklist are already in the correct form :-) and have no subdomains on these gTLD domains going into ws.surbl.org. I added it also to sc.surbl.org and be.surbl.org which did get rid of a few errant records. Subdomains are now properly removed in be and sc, as they should have been. This may result in slightly better matching on both be and sc since the clients are supposed to be doing similar things with domains found in message URIs. Jeff C. -- Jeff Chan mailto:jeffc@surbl.org http://www.surbl.org/

1 0

[SURBL-Announce] RBL caching howtos, 2 new public nameservers, minor refresh time chage
by Jeff Chan 06 May '04

06 May '04

1. We'd like to welcome and thank our two new public name server administrators and hosts: Dave Burke and esat.net Bjorn Jensen and info-connect.dk Without the help of all of our public nameservers, SURBLs would not be possible. Thanks Dave, Bjorn and all the administrators and networks of our nameservers! 2. We've added some documents about using rbldnsd, rsync, dnscache and BIND to locally cache SURBL (and any other RBL) zone files. Bob Cottrell describes setting up rbldnsd and rsync on top of an existing BIND server: http://www.surbl.org/rbldnsd-howto.html Rick Macdougall writes up how he set up rbldnsd to run on the same name server as dnscache from djbdns: http://www.surbl.org/dnscache-rbldnsd.html I've written up how to use rsync with BIND to cache RBL zone files, though rbldnsd is a better solution for many reasons. http://www.surbl.org/bind-rsync.html In addition, NJABL has some helpful tips on setting up rbldnsd and rsync to serve RBL zone files locally: http://njabl.org/rsync.html Kind thanks to Bob Cottrell and Rick Macdougall for preparing and sharing their notes for everyone's benefit! Please let me know if you have any comments on these. Any errors are probably due to my transcriptions. ***************************************************************** Anyone running a high-volume mail system (i.e., more than 250,000 inbound messages per day) is strongly encouraged to set up local caching of their RBL zone files including SURBLs. The benefits are improved mail performance, reduced network traffic, and offloading of the public nameservers. rbldnsd and rsync is the preferred way to do it, but BIND will also work (slower ;-). Also if you are using a version of SpamCopURI prior to the current 0.14, please upgrade it. Some earlier versions do not support DNS caching, which can result in excessive DNS traffic. http://sourceforge.net/projects/spamcopuri/ ***************************************************************** 3. We have lowered the refresh times on ws.surbl.org and be.surbl.org zone files to 20 minutes. This change should not affect most SURBL users. Refresh times of 10 minutes remain unchanged on sc.surbl.org. Retry times are programatically half of the refresh times (i.e. 10 and 5 minutes respectively). Jeff C. -- Jeff Chan mailto:jeffc@surbl.org http://www.surbl.org/

1 0

[SURBL-Announce] NEWS: Metamark.net URI shortening and redirection service using SURBL data to deny spammers
by Jeff Chan 01 May '04

01 May '04

http://www.surbl.org/news.html Ask Bjørn Hansen of develooper.com is using SURBL data to block spammer domains in the Metamark Shorten Service URI shortening and redirection service. This is the first use of SURBL data to prevent abuse of a redirection site that we've heard of! Great going! Ask explains his motivation as: "I mostly did it to make it less likely that I'll have to deal with abusers of the service manually. Hopefully the other redirection services will realize that benefit soon as well." To anyone who knows how to contact the other redirection sites: please feel free to write them with this news and possibly the open letter to redirectors: http://www.surbl.org/redirect.html Cheers, Jeff C. -- Jeff Chan mailto:jeffc@surbl.org http://www.surbl.org/

1 0

Jump to page:

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

Announce