You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@spamassassin.apache.org by ram <ra...@netcore.co.in> on 2007/07/18 12:50:49 UTC

is there a whitelist rhswl available

There are quite a few domain you can trust not to send spam. 
For example the airlines, the banks , and a lot others like
spamassassin.apache.org :-) 

If mails from these domains gets an SPF/DK pass we can simply pass the
mails. Today I manually maintain a list of whitelist_from_auth 

Is there a global DNS WL available somewhere. So that I dont have to
keep tracking myself for maintaining which new bank has put up SPF
records 


Thanks
Ram

Re: is there a whitelist rhswl available

Posted by Matthias Leisi <ma...@leisi.net>.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

[Disclosure: I'm involved with dnswl.org]

ram wrote:

>> http://www.dnswl.org/
>> http://wiki.ctyme.com/index.php/Spam_DNS_Lists
>>
>> Both work well IMHO
>>
> These are ip lists.  
> I think there would be some spamassassin rule already
> ( RCVD_IN_DNSWL ???) . Need to google again :-) 

It depends on the version of SpamAssassin you're using. If you are on
3.2.0 and using sa-update, you have the full ruleset. The original 3.2.0
was missing one rule (add it to local.cf or some similar file, warp on
one line):

header __RCVD_IN_DNSWL eval:check_rbl('dnswl-firsttrusted',
  'list.dnswl.org.')

The whole bunch of rules (useable for any version of SA that can do RBL
lookups) can be found here:

	http://www.dnswl.org/tech#spamassassin

> On the other hand 
> Can I get domain lists because that would be a far smaller number than
> IP's  and much easier to whitelist  with confidence
> 
> for eg mail from citibank.co.in with SPF_PASS can be whitelisted , but
> from its IP I will still have to make sure the list is well maintained

We are currently evaluating options to combine our current IP- with
domain name-based listings. Stay tuned ;)

- -- Matthias

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)

iD8DBQFGnk1AxbHw2nyi/okRAjfvAJ9PL9jGvbzb99b0aZFkK7VqArrC9ACdETqb
cYQdbn/NENEvs2D2Bf9dpPs=
=F5pc
-----END PGP SIGNATURE-----

Re: is there a whitelist rhswl available

Posted by Meng Weng Wong <me...@pobox.com>.

On Jul 19, 2007, at 1:33 AM, Meng Weng Wong wrote:
>
> the following RHSWL is alpha only and not ready for production.  in  
> production the name will change.
>
> % dig +short prudential.com.mengwong.manywl- 
> v1.dnswl.karmasphere.com @query.karmasphere.com
> 127.0.0.2
>

oops, I forgot the url that describes that RHSWL in more detail.

https://my.karmasphere.com/app/store/composite/composite_view_feeds? 
composite_id=mengwong.manywl-v1

I want to offer a big thank-you to Matthias Leisi for DNSWL.

Because Karmasphere tries to avoid generating original data, it is  
data providers like him who make it all possible.

If you have RHSWL data to contribute, please
1. publish a feed of domain names to KS
2. join the karmasphere-users mailing list
3. tell me about it and I will add your feed to the feedset.

I'm working on a comparison document that shows how Karmasphere can  
be used to complement the stuff that's already in SA 3.2.1.

Re: is there a whitelist rhswl available

Posted by Meng Weng Wong <me...@pobox.com>.

i'm working on the rules you described, and will upload working  
versions soon.

i posted about this a few days ago, with a prototype ruleset.

http://www.gossamer-threads.com/lists/spf/discuss/32160

they will be integrated with SPF and DKIM in the appropriate manner.

the following RHSWL is alpha only and not ready for production.  in  
production the name will change.

% dig +short prudential.com.mengwong.manywl-v1.dnswl.karmasphere.com  
@query.karmasphere.com
127.0.0.2

i am going to add all the SA 60_* whitelisted domains to that feedset.

On Jul 18, 2007, at 10:22 PM, ram wrote:

> On Wed, 2007-07-18 at 06:24 -0700, OliverScott wrote:
>> http://www.dnswl.org/
>> http://wiki.ctyme.com/index.php/Spam_DNS_Lists
>>
>> Both work well IMHO
>>
> These are ip lists.
> I think there would be some spamassassin rule already
> ( RCVD_IN_DNSWL ???) . Need to google again :-)
>
>
> On the other hand
> Can I get domain lists because that would be a far smaller number than
> IP's  and much easier to whitelist  with confidence
>
> for eg mail from citibank.co.in with SPF_PASS can be whitelisted , but
> from its IP I will still have to make sure the list is well maintained
>
>
> Thanks
> Ram
>
>
>
>
>

Re: is there a whitelist rhswl available

Posted by ram <ra...@netcore.co.in>.

On Wed, 2007-07-18 at 06:24 -0700, OliverScott wrote:
> http://www.dnswl.org/
> http://wiki.ctyme.com/index.php/Spam_DNS_Lists
> 
> Both work well IMHO
> 
These are ip lists.  
I think there would be some spamassassin rule already
( RCVD_IN_DNSWL ???) . Need to google again :-) 


On the other hand 
Can I get domain lists because that would be a far smaller number than
IP's  and much easier to whitelist  with confidence

for eg mail from citibank.co.in with SPF_PASS can be whitelisted , but
from its IP I will still have to make sure the list is well maintained


Thanks
Ram

Re: is there a whitelist rhswl available

Posted by OliverScott <ol...@fhsinternet.com>.

http://www.dnswl.org/
http://wiki.ctyme.com/index.php/Spam_DNS_Lists

Both work well IMHO



Ramprasad wrote:
> 
> There are quite a few domain you can trust not to send spam. 
> For example the airlines, the banks , and a lot others like
> spamassassin.apache.org :-) 
> 
> If mails from these domains gets an SPF/DK pass we can simply pass the
> mails. Today I manually maintain a list of whitelist_from_auth 
> 
> Is there a global DNS WL available somewhere. So that I dont have to
> keep tracking myself for maintaining which new bank has put up SPF
> records 
> 
> 
> Thanks
> Ram
> 
> 
> 
> 
> 
> 

-- 
View this message in context: http://www.nabble.com/is-there-a-whitelist-rhswl-available-tf4102536.html#a11668610
Sent from the SpamAssassin - Users mailing list archive at Nabble.com.