petzl
-
Posts
2,987 -
Joined
-
Last visited
Content Type
Profiles
Forums
Events
Posts posted by petzl
-
-
How is this greylist arranged? I see no particular logic to how each entry is filed. I just went in to check that nothing legit was caught in the rejected entries by accident and if the most recent items were filed on page 1 onwards then it would have been a lot easier to check.
My understanding is that Greylisting is configurable around a whitelisting of email address (or domain) and mail server IP/s (?)
A blacklist of email addresses ad IP can also be configured
(I think in a time out of 2 hours?)
As everything in greylisting is configurable
A main disadvantage of greylisting is the 30 minute wait that becomes part of greylisting. SpamCop Email no doubt are using what is the best set-up, but have to keep cards to chest as spammers read this newsgroup
JeffT last update and is still looking
-
I just noticed that in 'rejected entries' that greylisting is blocking a few gmail addresses trying to email my account. Looking at the source IP they are indeed coming from gmail servers.
Greylisting works for me (and a major majority of users) that is not to say it will be everyone's cup of tea
As for Gmail I only see it as good for recieving email not sending. (Hotmail is a better choice as it is competently set-up)
That said I did a test from Gmail and recieved it in 30 minutes
-
We added greylist management pages. See the first post in this thread for more information.
Click Options->Spamcop Tools->Manage Greylist - ... to view your greylist entries. From these pages you can manually unblock senders.
Is there anyway the SMTP "HELO" command can be enhanced to block spam or use with a greylist? All the spam I see getting through has
"Received: from unknown (HELO gwlrtjk) (201.38.214.16)"
I would like to know if one could also get an option to reject/hold email on a improper HELO response?
Or are there to many incompetent providers out there (A reason not to auto accept an email account from a ISP?)
Perhaps at first one should just tag such email as ???
-
If you're asking for a blacklist to be created automatically from your reported spam, this will never happen. Spammers rarely reuse the same email address, so there is really no point. And, how are you going to manage this data? Over months, we'd end up with millions of email addresses on this "blacklist". Your own blacklist would have thousands of entries (assuming you report spam a lot), pretty much none of which will ever email you again.
The same email address is reused for a few hours though (probably the same spam run) Where the spammer is sending again and again? I'm suggesting a blacklist be made and then reset/expire every two/three hours. Greylisting can maybe still send "try again"?
Just trying to get spam passing down to zero It may be in too hard basket but just suggesting. I do see you are improving things as we speak (trevorb's post). If whitelisting can be succesfully implemented the retry time can be increased/doubled meaning even less spam should get past
-
Petzl asked why spam is still getting through and it is simply because the spammers are retrying. For spammers willing to retry, this method doesn't help at all. However, there is evidence that a large number of spammers do not retry.
Thanks for the info
One feature, now disabled, was for spamcop VER reporting was to add to a "From" Blacklist. Can this be re-enabled for "SpamCop Greylist"? Idealy to make a fingerprint of both "From and IP address"?
-
Yes but there is that set time interval before SpamCop graylisting will let any more with the same "From:" through.
spam I see being sent is multiple of same spams sent again again again etc (e.g Canadian pharm)
It is though then trapped by SpamCop emails spam filters.
The spam getting held is in greatly reduced numbers than before turning GeyListing on
Just wondering how this is getting past Greylisting in first place?
As GreyListing stops the reporting of that spam it "retries" without response I see these lists getting weakened (So my/the idea is to make SpamCops GreyListing 100% perfect and better than the rest)
If however GreyListing stops spammers without need for reporting this becomes a good thing
Although initially slow but less than a hour before I received test emails from colleagues?
Is there also a over time limit for GreyList reply?). Importantly no test emails sent have disappeared (no false positives)
I wonder if the GreyListing "whitelist" can be compared to the SCBL with entries removed periodically or even immediately. So far all IP's I checked and have made it through to my spam folder were listed on the SCBL and not mail servers(the SCBL is reluctant to list mail servers)
Can SpamCop email customers add to the "SpamCop GreyList whitelist" in WebMail options (with email "from" field) Ideally my existing whitelist
-
I suspect the way for spammers to get through GreyListing is to simply send two (or more) spams
The first will be sent for "retry". The spammers second spam (from same IP) is then passed by SpamCop as a "response" to first spam and whitelisted
-
http://www.spamcop.net/sc?id=z1414845532zd...2875ec5dc920dbz
IP source 84.229.49.9
http://www.spamcop.net/sc?id=z1414845542zd...f8f63cbb327ff4z
IP source 218.7.192.70
Turned on GreyListing and leave spam filters active
There are still some getting to my held mail? None seem to be mail servers? Why are they getting through
I only use SpamCop email no forwarding or POP
spam is greatly reduced however
Others
http://www.spamcop.net/sc?id=z1414845551z1...3a6a3abfabd784z
http://www.spamcop.net/sc?id=z1414845559zc...6b7eff90311223z
http://www.spamcop.net/sc?id=z1414845571za...16f3a6da5cb47ez
http://www.spamcop.net/sc?id=z1414845580zd...088ae7057b4b07z
Not sure yet if "innocent' but incompetent providers are getting bounced but it is worth a try
-
ummmm ... this Topic is for 'outgoing' stuff ....
Though admitting that I did check, and yes, my IMAP connectin os SSL via port 993
Sorry to be off topic but 993 is for IMAP
-
Looking through that page (several times) it may boil down to that only one port can be assigned for the particular instance of an SSL server.
Noting that some laughing was done when seeing that 'gopher' is (still) on the list of 'authorized' port/standard names .....
Then for/to retrieval a secure connection (SSL)' under 'Incoming mail (POP3).' The port will need changing to 995 (instead of 110)
-
OK .. thanks .. of all the things I checked/unchecked/etc. ....
for future use;
SSL on port 25 works fine
SSL on port 587 does not work
I vaguely recall SSL will only work on "port 465"? (and or port 25)
("port 465" is not an option for SpamCop email)
-
I will assume your sparsely commented message is indicating messages are not being delivered. I just tested it and my message was delivered within seconds.
There are lots of reasons for delivery delay, often related to the receiving side. We know the sending side is attempting the delivery.
Thought it may of been our email!!! But you are right after re-Reading bounce
Seems OK now
Supports my argument about NEVER accepting an email address an ISP dumps on you if you consider email important. A SpamCop email address is the only email addres you ill ever need
-
**********************************************
** THIS IS A WARNING MESSAGE ONLY **
** YOU DO NOT NEED TO RESEND YOUR MESSAGE **
**********************************************
The original message was received at Sun, 29 Oct 2006 10:22:20 +1100
from c60.cesmail.net [216.154.195.49]
----- Transcript of session follows -----
Warning: message still undelivered after 4 hours
Will keep trying until message is 5 days old
-
I think it might be a type on your part, but the port should be 587
Thanks Steven working now (Outlook Express latest)
First, all the caveats:- This service is beta. It could go away or be unavailable at any time. However, if we accept your email, we'll definitely deliver it. No email will disappear.
- Outgoing service is not to be used for high volumes. Please don't put your whole office on it, send to your 1000-user mailing list, etc. It's a privilege, not a right. Any abuse will result in your access being cut off instantly with no warnings.
To use it, use the following settings:
SMTP server: smtp.cesmail.net
SMTP port: 25 (default) or 587 if your ISP blocks port 25
SMTP authentication must be enabled. Use your regular spamcop.net username and password you always use.
-
Working just fine with Thunderbird here as well
I cant get it to work?
I'm trying port 557 as port 25 is blocked by my provider
My password is between 25 and 30 alphanumeric letters long (I suspect this may be the cause)
-
I just tried to delete unwanted entries in my SC Mail whitelist. Each entry I deleted took me back to page 1. When you have over 35 pages to deal with this makes it a very slow process. It should at least remain on the page you are dealing with. It would also help if each item had a date attached as to when it was placed there.
I agree The whitelist is hard to update
I try to whitelist domains and only use specific domain addresses when it becomes a problem to keep the list shorter
New Feature: Greylisting *UPDATED*
in SpamCop Email System & Accounts
Posted
Configurability I were referring to was what administration can do not the user
And keep up the good work Thanks