You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@spamassassin.apache.org by Philip Prindeville <ph...@redfish-solutions.com> on 2007/07/11 19:57:01 UTC
OT: Motivating good behavior from negligent ISP's
We're seeing a lot of unwanted attempts to relay traffic through our
site by Orange.fr, and we've reported this to their Abuse contact as
well as their upstream provider (rain.fr):
Jul 11 11:30:37 mail mimedefang.pl[31610]: relay: bad tld orange.fr
Jul 11 11:30:37 mail mimedefang.pl[31610]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 11:30:37 mail sendmail[32044]: l6BHUb3j032044: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
No joy.
We'd like to take escalatory measures now. What is a good RBL site (or
as appropriate) to get them listed on until they start "playing well
with others"?
Would the FAQ's "Reporting Spam" section be a good place to mention the
various sites that you can rat out offenders?
Thanks,
-Philip
Re: OT: Motivating good behavior from negligent ISP's
Posted by Meng Weng Wong <me...@pobox.com>.
On Jul 11, 2007, at 4:17 PM, Philip Prindeville wrote:
>
> What are the websites to get them RBL blacklisted?
>
> How does one nominate them to a place of infamy?
>
I am tempted to bring up a very simple service backed by Amazon AWS,
maybe using SQS or S3, to accept blacklist submissions from
SpamAssassin users.
I could put together a plugin that does this pretty quickly.
It shouldn't be just blacklists, though. I would generalize the
plugin to take whitelist suggestions as well.
If we integrated this with automatic whitelisting, would produce a
very nice sender address whitelist corpus that I could turn around
and serve back to the community, for use with SPF+DKIM.
What do people think? Would that be useful?
You would be able to:
- submit IP addresses for blacklisting
- submit IP addresses for whitelisting
- submit email addresses / domains for blacklisting
- submit email addresses / domains for whitelisting
How to defeat gaming?
Razor and Pyzor solve gaming well enough.
Each submission would be tracked; we would apply a reputation system
to the submissions; and we would turn around the aggregated inputs as
a whitelist and blacklist for SA community to then use. Other DNSBLs
would, of course, be welcome to take a feed from this aggregation.
cheers
meng
Re: OT: Motivating good behavior from negligent ISP's
Posted by Philip Prindeville <ph...@redfish-solutions.com>.
Phil Barnett wrote:
> On Wednesday 11 July 2007, Philip Prindeville wrote:
>
>> Michele Neylon :: Blacknight wrote:
>>
>>> Philip Prindeville wrote:
>>>
>>>>>> No joy.
>>>>>>
>>>>> How long ago did you report it?
>>>>>
>>>> Which time? It happens regularly, and it's been going on over a month.
>>>>
>>> Ok. That changes things, but you didn't say anything in your post
>>> about it going on for a month ....
>>>
>> I note also that they aren't using exponential back-off with a 2 hour
>> maximum retry interval as suggested by the RFC's:
>>
>> Jul 11 00:08:19 mail mimedefang.pl[26738]: filter_relay rejected host
>> 194.250.131.236 (smtp-wifi.orange.fr)
>>
>
> (snip)
>
>
>> We've started to take defensive measures...
>>
>
> That would earn them a rule in my firewall.
>
>
But back to my original question:
What are the websites to get them RBL blacklisted?
How does one nominate them to a place of infamy?
-Philip
Re: OT: Motivating good behavior from negligent ISP's
Posted by Phil Barnett <ph...@philb.us>.
On Wednesday 11 July 2007, Philip Prindeville wrote:
> Michele Neylon :: Blacknight wrote:
> > Philip Prindeville wrote:
> >>>> No joy.
> >>>
> >>> How long ago did you report it?
> >>
> >> Which time? It happens regularly, and it's been going on over a month.
> >
> > Ok. That changes things, but you didn't say anything in your post
> > about it going on for a month ....
>
> I note also that they aren't using exponential back-off with a 2 hour
> maximum retry interval as suggested by the RFC's:
>
> Jul 11 00:08:19 mail mimedefang.pl[26738]: filter_relay rejected host
> 194.250.131.236 (smtp-wifi.orange.fr)
(snip)
> We've started to take defensive measures...
That would earn them a rule in my firewall.
--
Phil Barnett
AI4OF
SKCC #600
Re: OT: Motivating good behavior from negligent ISP's
Posted by Philip Prindeville <ph...@redfish-solutions.com>.
Michele Neylon :: Blacknight wrote:
> Philip Prindeville wrote:
>
>>>> No joy.
>>>
>>> How long ago did you report it?
>>>
>>
>> Which time? It happens regularly, and it's been going on over a month.
>
> Ok. That changes things, but you didn't say anything in your post
> about it going on for a month ....
>
I note also that they aren't using exponential back-off with a 2 hour
maximum retry interval as suggested by the RFC's:
Jul 11 00:08:19 mail mimedefang.pl[26738]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 00:08:19 mail sendmail[28318]: l6B68JK6028318: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 00:22:35 mail mimedefang.pl[26738]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 00:22:35 mail sendmail[28373]: l6B6MZ5i028373: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 00:23:51 mail mimedefang.pl[26738]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 00:23:51 mail sendmail[28383]: l6B6NpHr028383: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 00:35:38 mail mimedefang.pl[26738]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 00:35:38 mail sendmail[28427]: l6B6Zci9028427: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 00:52:33 mail mimedefang.pl[26738]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 00:52:33 mail sendmail[28492]: l6B6qXS8028492: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 01:00:43 mail mimedefang.pl[26738]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 01:00:43 mail sendmail[28519]: l6B70hk6028519: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 01:11:12 mail mimedefang.pl[26738]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 01:11:12 mail sendmail[28550]: l6B7BC6p028550: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 01:21:21 mail mimedefang.pl[26738]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 01:21:21 mail sendmail[28593]: l6B7LLpX028593: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 01:41:52 mail mimedefang.pl[26738]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 01:41:52 mail sendmail[28676]: l6B7fqW1028676: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 01:43:14 mail mimedefang.pl[26738]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 01:43:14 mail sendmail[28680]: l6B7hEV0028680: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 01:58:24 mail mimedefang.pl[26738]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 01:58:24 mail sendmail[28749]: l6B7wOT9028749: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 02:11:55 mail mimedefang.pl[26738]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 02:11:55 mail sendmail[28802]: l6B8Bt6V028802: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 02:18:59 mail mimedefang.pl[26738]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 02:18:59 mail sendmail[28849]: l6B8IxFr028849: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 02:26:58 mail mimedefang.pl[26738]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 02:26:58 mail sendmail[28866]: l6B8Qwhs028866: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 02:51:42 mail mimedefang.pl[26738]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 02:51:42 mail sendmail[28960]: l6B8pgO6028960: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 03:05:06 mail mimedefang.pl[26738]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 03:05:06 mail sendmail[29017]: l6B956Oa029017: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 03:06:44 mail mimedefang.pl[26738]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 03:06:44 mail sendmail[29021]: l6B96ilm029021: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 03:21:38 mail mimedefang.pl[26738]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 03:21:38 mail sendmail[29089]: l6B9LcDl029089: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 03:37:10 mail mimedefang.pl[26738]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 03:37:10 mail sendmail[29137]: l6B9bAs0029137: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 03:44:27 mail mimedefang.pl[27754]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 03:44:27 mail sendmail[29162]: l6B9iRdU029162: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 03:49:28 mail mimedefang.pl[27754]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 03:49:28 mail sendmail[29183]: l6B9nSZr029183: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 04:12:56 mail mimedefang.pl[27754]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 04:12:56 mail sendmail[29278]: l6BACuEZ029278: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 04:27:29 mail mimedefang.pl[27754]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 04:27:29 mail sendmail[29343]: l6BARTxo029343: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 04:29:07 mail mimedefang.pl[27754]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 04:29:07 mail sendmail[29355]: l6BAT752029355: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 04:43:48 mail mimedefang.pl[27754]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 04:43:48 mail sendmail[29403]: l6BAhm0k029403: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 04:58:00 mail mimedefang.pl[27754]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 04:58:00 mail sendmail[29446]: l6BAw0qj029446: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 05:05:41 mail mimedefang.pl[27754]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 05:05:41 mail sendmail[30049]: l6BB5fHq030049: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 05:11:57 mail mimedefang.pl[27754]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 05:11:57 mail sendmail[30078]: l6BBBvTY030078: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 05:27:35 mail mimedefang.pl[27754]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 05:27:35 mail sendmail[30161]: l6BBRZNb030161: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 05:51:40 mail mimedefang.pl[27754]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 05:51:40 mail sendmail[30250]: l6BBpew6030250: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 05:55:23 mail mimedefang.pl[27754]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 05:55:23 mail sendmail[30266]: l6BBtNC0030266: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 06:04:56 mail mimedefang.pl[27754]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 06:04:56 mail sendmail[30312]: l6BC4ud3030312: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 06:18:48 mail mimedefang.pl[27754]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 06:18:48 mail sendmail[30359]: l6BCImZY030359: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 06:29:58 mail mimedefang.pl[27754]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 06:29:58 mail sendmail[30388]: l6BCTwor030388: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 06:36:58 mail mimedefang.pl[27754]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 06:36:58 mail sendmail[30424]: l6BCawLk030424: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 06:55:05 mail mimedefang.pl[27754]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 06:55:05 mail sendmail[30505]: l6BCt56X030505: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 07:12:48 mail mimedefang.pl[27754]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 07:12:48 mail sendmail[30583]: l6BDCmvD030583: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 07:17:48 mail mimedefang.pl[27754]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 07:17:48 mail sendmail[30623]: l6BDHmgq030623: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 07:29:29 mail mimedefang.pl[30641]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 07:29:29 mail sendmail[30667]: l6BDTTvO030667: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 07:43:56 mail mimedefang.pl[29155]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 07:43:56 mail sendmail[30756]: l6BDhu1s030756: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 07:52:36 mail mimedefang.pl[29155]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 07:52:36 mail sendmail[30797]: l6BDqatl030797: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 07:59:29 mail mimedefang.pl[29155]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 07:59:29 mail sendmail[30827]: l6BDxT7J030827: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 08:17:26 mail mimedefang.pl[29155]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 08:17:26 mail sendmail[30907]: l6BEHQqN030907: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 08:37:03 mail mimedefang.pl[29155]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 08:37:03 mail sendmail[31033]: l6BEb3sk031033: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 08:40:53 mail mimedefang.pl[29155]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 08:40:53 mail sendmail[31043]: l6BEervC031043: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 08:53:28 mail mimedefang.pl[29155]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 08:53:28 mail sendmail[31106]: l6BErSF6031106: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 09:11:39 mail mimedefang.pl[29155]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 09:11:39 mail sendmail[31226]: l6BFBdEP031226: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 09:17:07 mail mimedefang.pl[29155]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 09:17:07 mail sendmail[31257]: l6BFH7JK031257: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 09:24:08 mail mimedefang.pl[29155]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 09:24:08 mail sendmail[31299]: l6BFO8DR031299: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 09:40:18 mail mimedefang.pl[29155]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 09:40:18 mail sendmail[31373]: l6BFeInM031373: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 09:59:43 mail mimedefang.pl[29155]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 09:59:43 mail sendmail[31478]: l6BFxhmA031478: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 10:02:03 mail mimedefang.pl[29155]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 10:02:03 mail sendmail[31505]: l6BG23SX031505: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 10:15:50 mail mimedefang.pl[29155]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 10:15:50 mail sendmail[31585]: l6BGFo4P031585: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 10:36:43 mail mimedefang.pl[31610]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 10:36:43 mail sendmail[31702]: l6BGahBt031702: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 10:44:42 mail mimedefang.pl[31610]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 10:44:42 mail sendmail[31747]: l6BGigFJ031747: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 10:48:57 mail mimedefang.pl[31610]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 10:48:57 mail sendmail[31784]: l6BGmvFw031784: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 11:16:00 mail mimedefang.pl[31610]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 11:16:00 mail sendmail[31972]: l6BHG01X031972: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 11:23:46 mail mimedefang.pl[31610]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 11:23:46 mail sendmail[32019]: l6BHNkgf032019: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 11:30:37 mail mimedefang.pl[31610]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 11:30:37 mail sendmail[32044]: l6BHUb3j032044: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 11:36:09 mail mimedefang.pl[31610]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 11:36:09 mail sendmail[32072]: l6BHa9ZA032072: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 11:56:51 mail mimedefang.pl[31610]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 11:56:51 mail sendmail[32162]: l6BHup4f032162: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 12:08:17 mail mimedefang.pl[30641]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 12:08:17 mail sendmail[32232]: l6BI8H6t032232: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 12:13:18 mail mimedefang.pl[30641]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 12:13:18 mail sendmail[32250]: l6BIDH0V032250: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 12:36:07 mail mimedefang.pl[30641]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 12:36:07 mail sendmail[32349]: l6BIa78k032349: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 12:42:26 mail mimedefang.pl[30641]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 12:42:26 mail sendmail[32380]: l6BIgQKF032380: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 12:52:41 mail mimedefang.pl[31610]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 12:52:41 mail sendmail[32424]: l6BIqfNa032424: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 12:56:53 mail mimedefang.pl[31610]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 12:56:53 mail sendmail[32436]: l6BIurSE032436: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 13:21:45 mail mimedefang.pl[31610]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 13:21:45 mail sendmail[32553]: l6BJLjHK032553: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 13:31:38 mail mimedefang.pl[31610]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 13:31:38 mail sendmail[32584]: l6BJVcrl032584: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 13:37:39 mail mimedefang.pl[31610]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 13:37:39 mail sendmail[32620]: l6BJbdxD032620: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 13:44:58 mail mimedefang.pl[31610]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 13:44:58 mail sendmail[32663]: l6BJiwuJ032663: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 13:57:46 mail mimedefang.pl[31610]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 13:57:46 mail sendmail[307]: l6BJvkaH000307: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 14:12:38 mail mimedefang.pl[31610]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 14:12:38 mail sendmail[470]: l6BKCcXS000470: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 14:15:48 mail mimedefang.pl[31610]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 14:15:48 mail sendmail[483]: l6BKFmak000483: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 14:46:31 mail mimedefang.pl[31610]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 14:46:31 mail sendmail[617]: l6BKkVFk000617: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 14:55:33 mail mimedefang.pl[678]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 14:55:33 mail sendmail[686]: l6BKtX7d000686: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 15:01:06 mail mimedefang.pl[678]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 15:01:06 mail sendmail[710]: l6BL16sv000710: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Jul 11 15:07:14 mail mimedefang.pl[678]: filter_relay rejected host 194.250.131.236 (smtp-wifi.orange.fr)
Jul 11 15:07:14 mail sendmail[751]: l6BL7Egj000751: Milter: connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
Yesterday was even worse, with multiple connections hitting us simultaneously rather than pipelining and connection reuse.
We've started to take defensive measures...
Re: OT: Motivating good behavior from negligent ISP's
Posted by "Michele Neylon :: Blacknight" <mi...@blacknight.ie>.
Philip Prindeville wrote:
>>> No joy.
>>
>> How long ago did you report it?
>>
>
> Which time? It happens regularly, and it's been going on over a month.
Ok. That changes things, but you didn't say anything in your post about
it going on for a month ....
--
Mr Michele Neylon
Blacknight Solutions
Hosting & Colocation, Brand Protection
http://www.blacknight.ie/
http://blog.blacknight.ie/
Tel. 1850 927 280
Intl. +353 (0) 59 9183072
UK: 0870 163 0607
Direct Dial: +353 (0)59 9183090
Fax. +353 (0) 1 4811 763
-------------------------------
Blacknight Internet Solutions Ltd, Unit 12A,Barrowside Business
Park,Sleaty Road,Graiguecullen,Carlow,Ireland Company No.: 370845
Re: OT: Motivating good behavior from negligent ISP's
Posted by Philip Prindeville <ph...@redfish-solutions.com>.
Michele Neylon :: Blacknight wrote:
> Philip Prindeville wrote:
>> We're seeing a lot of unwanted attempts to relay traffic through our
>> site by Orange.fr, and we've reported this to their Abuse contact as
>> well as their upstream provider (rain.fr):
>>
>> Jul 11 11:30:37 mail mimedefang.pl[31610]: relay: bad tld orange.fr
>> Jul 11 11:30:37 mail mimedefang.pl[31610]: filter_relay rejected host
>> 194.250.131.236 (smtp-wifi.orange.fr)
>> Jul 11 11:30:37 mail sendmail[32044]: l6BHUb3j032044: Milter:
>> connect: host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting
>> commands
>>
>>
>> No joy.
>
> How long ago did you report it?
>
Which time? It happens regularly, and it's been going on over a month.
-Philip
Re: OT: Motivating good behavior from negligent ISP's
Posted by "Michele Neylon :: Blacknight" <mi...@blacknight.ie>.
Philip Prindeville wrote:
> We're seeing a lot of unwanted attempts to relay traffic through our
> site by Orange.fr, and we've reported this to their Abuse contact as
> well as their upstream provider (rain.fr):
>
> Jul 11 11:30:37 mail mimedefang.pl[31610]: relay: bad tld orange.fr
> Jul 11 11:30:37 mail mimedefang.pl[31610]: filter_relay rejected host
> 194.250.131.236 (smtp-wifi.orange.fr)
> Jul 11 11:30:37 mail sendmail[32044]: l6BHUb3j032044: Milter: connect:
> host=smtp-wifi.orange.fr, addr=194.250.131.236, rejecting commands
>
>
> No joy.
How long ago did you report it?
--
Mr Michele Neylon
Blacknight Solutions
Hosting & Colocation, Brand Protection
http://www.blacknight.ie/
http://blog.blacknight.ie/
Tel. 1850 927 280
Intl. +353 (0) 59 9183072
UK: 0870 163 0607
Direct Dial: +353 (0)59 9183090
Fax. +353 (0) 1 4811 763
-------------------------------
Blacknight Internet Solutions Ltd, Unit 12A,Barrowside Business
Park,Sleaty Road,Graiguecullen,Carlow,Ireland Company No.: 370845