Re: FIlter

[Junk <ju...@lexoncom.com>]

I am aware of uridb blocked.
My server is in amazon cloud and uridb is blocked.
I do have private dns server caching only configured but my att dsl blocked dns port udp so I cannot use it.

I was wondering if I could add other spam filter which I asked the question about.


> On Nov 30, 2017, at 5:00 PM, Benny Pedersen <me...@junc.eu> wrote:
> 
> Junk skrev den 2017-11-30 23:46:
> 
>> Nov 30 16:45:22.663 [11935] dbg: uridnsbl: nt.ee . multi.uribl.com ->
>> 127.0.0.1, URIBL_BLOCKED, subtest:1
> 
> fix this problem first
> 
> https://wiki.apache.org/spamassassin/DnsBlocklists
> 
> read above page for more help
> 
> https://mail-archives.apache.org/mod_mbox/spamassassin-users/201201.mbox/%3C6861a6959eddf6f10ca8c96f3f65faf7@www.coochey.net%3E
> 
> old thread

RE: FIlter

[Kevin Miller <ke...@juneau.org>]

I could me misunderstanding, but it sounds like you have a DNS server on a different host than your mail server and that Amazon blocks that.  The recommendation is to install a DNS server on the *same* host as your mail server.  There will be no UDP traffic blocked between your mail server and DNS server if they're on the same host because the traffic from DNS server to mail server never leaves the box.

Normally DNS is configured to query root servers and other folks DNS servers on UPD 53; it's not clear to me if Amazon would be blocking that but I rather doubt it, as DNS is pretty much the backbone of the internet.  But even if they are, you can configure a DNS server to use TCP 53.  It's not as efficient but given that the DNS responses are cached, it's not all that burdensome either.

...Kevin
--
Kevin Miller
Network/email Administrator, CBJ MIS Dept.
155 South Seward Street
Juneau, Alaska 99801
Phone: (907) 586-0242, Fax: (907) 586-4588 Registered Linux User No: 307357

-----Original Message-----
From: Junk [mailto:junk@lexoncom.com] 
Sent: Friday, December 01, 2017 6:31 AM
To: Benny Pedersen
Cc: Junk; users@spamassassin.apache.org
Subject: Re: FIlter

> Junk skrev den 2017-12-01 05:35:
>> I understand your concern and I agree but like I said at this point I 
>> cannot get over the dns issue unless you give me a dns server ip that 
>> will respond to my queries for the uribl.
>
> apt-get install bind9
>
you did not reab my answer.
I do have the dns server running but my isp does not allow udp port, so i cannot point my amazon server to it.

> configure it to NOT forward any dns queries to any other dns server, 
> eg it should just be listing on 127.0.0.1, and recolv.conf have just 
> nameserver 127.0.0.1
>
> if amazon cant allow you to do this you should change vps hoster
>
Its not amazons fault. It is URIDB blocking amazons subnets.

>> My original question was about specific filter.
>
> i belive you would like uribl to work like junkmailfilter do
>
This still does not answer my original question.

Re: FIlter

[Junk <ju...@lexoncom.com>]

> Junk skrev den 2017-12-01 05:35:
>> I understand your concern and I agree but like I said at this point I
>> cannot get over the dns issue unless you give me a dns server ip that
>> will respond to my queries for the uribl.
>
> apt-get install bind9
>
you did not reab my answer.
I do have the dns server running but my isp does not allow udp port, so i
cannot point my amazon server to it.

> configure it to NOT forward any dns queries to any other dns server, eg
> it should just be listing on 127.0.0.1, and recolv.conf have just
> nameserver 127.0.0.1
>
> if amazon cant allow you to do this you should change vps hoster
>
Its not amazons fault. It is URIDB blocking amazons subnets.

>> My original question was about specific filter.
>
> i belive you would like uribl to work like junkmailfilter do
>
This still does not answer my original question.

Re: FIlter

[Junk <ju...@lexoncom.com>]

right, did not read it correctly.
>
>
> Am 01.12.2017 um 17:00 schrieb Junk:
>> You calling me an idiot based on what?
>
> learn to read emails!
> i repsonded to Benny's clueless "apt-get install bind9"
>
>> According to URIBL:
>>
>> Why are DNS queries from my cloud instances
>> (AmazonEC2/Softlayer/Rackspace/etc) blocked?
>
> i know that, Benny don't
>
>>> Am 01.12.2017 um 09:50 schrieb Benny Pedersen:
>>>> Junk skrev den 2017-12-01 05:35:
>>>>> I understand your concern and I agree but like I said at this point I
>>>>> cannot get over the dns issue unless you give me a dns server ip that
>>>>> will respond to my queries for the uribl.
>>>>
>>>> apt-get install bind9
>>>>
>>>> configure it to NOT forward any dns queries to any other dns server,
>>>> eg
>>>> it should just be listing on 127.0.0.1, and recolv.conf have just
>>>> nameserver 127.0.0.1
>>>>
>>>> if amazon cant allow you to do this you should change vps hoster
>>>
>>> idiot! URIBL blocks amazon in general!
>

Re: FIlter

[Junk <ju...@lexoncom.com>]

You calling me an idiot based on what?

According to URIBL:

Why are DNS queries from my cloud instances
(AmazonEC2/Softlayer/Rackspace/etc) blocked?

Large subnets owned by Amazon and other cloud providers have been blocked
due to high volume. Because amazon has so many networks, a single user may
have multiple mail exchanges on multiple networks, and we have no ability
to correlate this and block individual high volume users. We are looking
at ways of improving our query limit system for those coming from large
virtual hosting providers such as Amazon, but at this time we do not have
anything in place. We do offer discounted Datafeed over DNS rates for
low-volume, cloud hosted users who are effected by these wide ranging
blocks. See Requesting the Datafeed Service and choose 'Cloud Hosted' on
the request form.

So technically you can pay and you wont be blocked.


>
>
> Am 01.12.2017 um 09:50 schrieb Benny Pedersen:
>> Junk skrev den 2017-12-01 05:35:
>>> I understand your concern and I agree but like I said at this point I
>>> cannot get over the dns issue unless you give me a dns server ip that
>>> will respond to my queries for the uribl.
>>
>> apt-get install bind9
>>
>> configure it to NOT forward any dns queries to any other dns server, eg
>> it should just be listing on 127.0.0.1, and recolv.conf have just
>> nameserver 127.0.0.1
>>
>> if amazon cant allow you to do this you should change vps hoster
>
> idiot! URIBL blocks amazon in general!
>

Re: FIlter

[Benny Pedersen <me...@junc.eu>]

Junk skrev den 2017-12-01 05:35:
> I understand your concern and I agree but like I said at this point I
> cannot get over the dns issue unless you give me a dns server ip that
> will respond to my queries for the uribl.

apt-get install bind9

configure it to NOT forward any dns queries to any other dns server, eg 
it should just be listing on 127.0.0.1, and recolv.conf have just 
nameserver 127.0.0.1

if amazon cant allow you to do this you should change vps hoster

> My original question was about specific filter.

i belive you would like uribl to work like junkmailfilter do

Re: FIlter

[Junk <ju...@lexoncom.com>]

I understand your concern and I agree but like I said at this point I cannot get over the dns issue unless you give me a dns server ip that will respond to my queries for the uribl.

My original question was about specific filter.


> On Nov 30, 2017, at 6:59 PM, Benny Pedersen <me...@junc.eu> wrote:
> 
> Junk skrev den 2017-12-01 01:22:
>> I am aware of uridb blocked.
>> My server is in amazon cloud and uridb is blocked.
>> I do have private dns server caching only configured but my att dsl
>> blocked dns port udp so I cannot use it.
>> I was wondering if I could add other spam filter which I asked the
>> question about.
> 
> what if junkmailfilter blocks you as uribl ?
> 
> fix real problem first

Re: FIlter

[Benny Pedersen <me...@junc.eu>]

Junk skrev den 2017-12-01 01:22:
> I am aware of uridb blocked.
> My server is in amazon cloud and uridb is blocked.
> I do have private dns server caching only configured but my att dsl
> blocked dns port udp so I cannot use it.
> 
> I was wondering if I could add other spam filter which I asked the
> question about.

what if junkmailfilter blocks you as uribl ?

fix real problem first

Re: FIlter

[Junk <ju...@lexoncom.com>]

let me try if i can change the port to something else and then configure
firewall to forward from that port to the dns server on my network.

>
>
> Am 01.12.2017 um 01:22 schrieb Junk:
>> I am aware of uridb blocked.
>> My server is in amazon cloud and uridb is blocked.
>> I do have private dns server caching only configured but my att dsl
>> blocked dns port udp so I cannot use it
>
> RTFM - dns is not bound to port 53
>
> http://spamassassin.apache.org/full/3.4.x/doc/Mail_SpamAssassin_Conf.html
>
>
> dns_server ip-addr-port (default: entries provided by Net::DNS)
>
>      Specifies an IP address of a DNS server, and optionally its port
> number. The dns_server directive may be specified multiple times, each
> entry adding to a list of available resolving name servers. The
> ip-addr-port argument can either be an IPv4 or IPv6 address, optionally
> enclosed in brackets, and optionally followed by a colon and a port
> number. In absence of a port number a standard port number 53 is
> assumed. When an IPv6 address is specified along with a port number, the
> address must be enclosed in brackets to avoid parsing ambiguity
> regarding a colon separator. A scoped link-local IP address is allowed
> (assuming underlying modules allow it).
>
>      Examples : dns_server 127.0.0.1 dns_server 127.0.0.1:53 dns_server
> [127.0.0.1]:53 dns_server [::1]:53 dns_server fe80::1%lo0 dns_server
> [fe80::1%lo0]:53
>
>      In absence of dns_server directives, the list of name servers is
> provided by Net::DNS module, which typically obtains the list from
> /etc/resolv.conf, but this may be platform dependent. Please consult the
> Net::DNS::Resolver documentation for details.
>