[Raw Msg Headers][Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re[2]: Own db of blocked IPs

To: "Neal Morgan" <Neal@Morgan-Systems.com>
Subject: Re[2]: Own db of blocked IPs
From: Robert Kurjata <rkurjata@ire.pw.edu.pl>
Date: Tue, 27 Jan 2004 23:36:38 +0100
CC: "Marek Kowal" <marek.kowal@portal.onet.pl>,"ZMailer list" <zmailer@nic.funet.fi>
In-Reply-To: <5A817D700A9D8A4EB75FB7E12A29B95CE4C5@server-04.morgansys.net>
Original-Recipient: rfc822;zmailer-log@nic.funet.fi
References: <5A817D700A9D8A4EB75FB7E12A29B95CE4C5@server-04.morgansys.net>
Reply-To: Robert Kurjata <rkurjata@ire.pw.edu.pl>
Sender: zmailer-owner@nic.funet.fi

Witaj Neal,

W Twoim liœcie datowanym 27 stycznia 2004 (21:58:31) mo¿na przeczytaæ:

NM> Marek:
 
NM> I've been thinking about doing something similar.  My thought
NM> (not tested yet) shouldn't require program modifications. 
NM> Instead, I'm thinking I can set myself up as my own RBL, and
NM> dynamically build a BIND configuration file, with the IP addresses
NM> reversed.  E.g, I configure zmailer to use MyBadIP.SomeDomain.com
NM> in the rbl section of the smtp-policy.src, then I build
NM> MyBadIP.SomeDomain.com bind conf file so it includes the reversed
NM> IP as an A record and a TXT record for the date/reason I'm
NM> blocking them:
 
NM> To block 1.2.3.4 I'll use something like this:
 
NM> 4.3.2.1.MyBadIP.SomeDomain.com. IN A 1.2.3.4
NM> 4.3.2.1.MyBadIP.SomeDomain.com. IN TXT Blocked 20040127 for some reason
 
NM> At intervals I'll dump a new bind configuration file and
NM> restart the service.  This should let me add and/or remove IPs
NM> without having to restart zmailer.
 
NM> Anyway, that's what I've been thinking.  Hope you find it helpful...
 
 
NM> All the best,
 
NM> Neal Morgan


Just use a ready-to-go rbldns :) http://cr.yp.to/djbdns/rbldns.html
It's great, but still slightly static for Marek's problem. I thought
about modification of this program to use sql bindings for updates
instead of static file-to-file conversion (slow).

greetings
Robert Kurjata
 
 
NM> -----Original Message----- 
NM> From: Marek Kowal [mailto:marek.kowal@portal.onet.pl] 
NM> Sent: Tue 1/27/2004 12:41 PM 
NM> To: ZMailer list 
NM> Cc: 
NM> Subject: Own db of blocked IPs



NM> 	Hi there,
	
NM> 	I have an external DB of the IPs to be blocked. It is very dynamic (up to
NM> 	100 new entries per minute) and centralized - many servers should use it. So
NM> 	the standard Zmailer mechanisms of static blocked IPs are - I guess - no
NM> 	good to me. I am running out of time, so please, help me with the following:
NM> 	where in the smtpserver should I implement my lookup so that I can discard
NM> 	the connection in either of the places:
	
NM> 	 - in main smtpserver process, after accept() and before the fork
NM> 	 - in the child smtpserver process
	
NM> 	Please, help me if you can (and I know you do!) ;-) In the meantime I am
NM> 	digging through the sources myself.
	
NM> 	Cheers,
NM> 	Marek
NM> 	-
NM> 	To unsubscribe from this list: send the line "unsubscribe zmailer" in
NM> 	the body of a message to majordomo@nic.funet.fi
	

NM>  ±?m?ka??2?zwm???²±?m?)^— !?}©?2Oz?j:+v?¨?x?  



-- 
Pozdrowienia,
 Robert Kurjata
-
To unsubscribe from this list: send the line "unsubscribe zmailer" in
the body of a message to majordomo@nic.funet.fi

Follow-Ups:
- Re: Re[2]: Own db of blocked IPs
  - From: "Mariano Absatz" <zmailer@lists.com.ar> (Wed, 28 Jan 2004 01:46:29 +0200)

References:
- RE: Own db of blocked IPs
  - From: "Neal Morgan" <Neal@Morgan-Systems.com>

Prev by Date: Re: Own db of blocked IPs
Next by Date: Re: message tagging...
Prev by thread: RE: Own db of blocked IPs
Next by thread: Re: Re[2]: Own db of blocked IPs
Index(es):
- Date
- Thread