[Raw Msg Headers][Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: Own db of blocked IPs
Marek:
I've been thinking about doing something similar. My thought (not tested yet) shouldn't require program modifications. Instead, I'm thinking I can set myself up as my own RBL, and dynamically build a BIND configuration file, with the IP addresses reversed. E.g, I configure zmailer to use MyBadIP.SomeDomain.com in the rbl section of the smtp-policy.src, then I build MyBadIP.SomeDomain.com bind conf file so it includes the reversed IP as an A record and a TXT record for the date/reason I'm blocking them:
To block 1.2.3.4 I'll use something like this:
4.3.2.1.MyBadIP.SomeDomain.com. IN A 1.2.3.4
4.3.2.1.MyBadIP.SomeDomain.com. IN TXT Blocked 20040127 for some reason
At intervals I'll dump a new bind configuration file and restart the service. This should let me add and/or remove IPs without having to restart zmailer.
Anyway, that's what I've been thinking. Hope you find it helpful...
All the best,
Neal Morgan
-----Original Message-----
From: Marek Kowal [mailto:marek.kowal@portal.onet.pl]
Sent: Tue 1/27/2004 12:41 PM
To: ZMailer list
Cc:
Subject: Own db of blocked IPs
Hi there,
I have an external DB of the IPs to be blocked. It is very dynamic (up to
100 new entries per minute) and centralized - many servers should use it. So
the standard Zmailer mechanisms of static blocked IPs are - I guess - no
good to me. I am running out of time, so please, help me with the following:
where in the smtpserver should I implement my lookup so that I can discard
the connection in either of the places:
- in main smtpserver process, after accept() and before the fork
- in the child smtpserver process
Please, help me if you can (and I know you do!) ;-) In the meantime I am
digging through the sources myself.
Cheers,
Marek
-
To unsubscribe from this list: send the line "unsubscribe zmailer" in
the body of a message to majordomo@nic.funet.fi
�{.n++%lzwmb맲r{9W{ay�ʇڙ,j�fhqz