Hello all,
I am having trouble getting my domino 6.01 server to reject blacklisted mail. Here is my exact configuration:
1 Domino 5.10 mail and directory server. Primary directory server and no relay is used to route outbound mail. Domain is company.com
1 Domino 6.01 mail server. Uses directory of Domino 5 server. Also does not use a mail relay. This is a test server with only a couple of accounts. Domain is also company.com but has a domain alias of server.dyndns.org. Server properly sends and receives mail through the Internet. Sbl.spamnhaus.org is entered in the dns blacklist field of config doc. Server verifies connecting domain in dns and is not acting as an open relay.
All mail sent to company.com goes to Domino 5 server and relays to Domino6 as needed, but that is only for company.com mail.
All mail sent to server.dyndns.org goes directly to Domino 6 server. No relay or pass-through is needed. When testing spamhaus, mail is sent from server.dyndns.org domain account.
Both servers use 2 internal dns servers that forward to our ISP. Since they both forward to the Internet, I cannot see lookups being a problem.
I cannot understand what the problem would be. When is do the spamhaus mail test from the Domino 6 server is get the “Uh-oh, your SBL block is not working!” e-mail in return. I’m not sure if my running in a mixed Domino domain could be the problem, but I would not think so. Any ideas would be appreciated.
Thanks
Subject: DNS blacklist not working
I think you might have the spamhaus address spelled incorrectly - try adding this to the RDNSBL field:
bl.spamcop.net; sbl.spamhaus.org
(Im using these two - adds a bit more coverage)
your posting said you had sbl.spamNhaus.org listed …
Subject: RE: DNS blacklist not working
Thanks for the reply.Actually my spelling of spamnhaus was a typo on my post. I did have it entered correctly in the Domino config (Doh!) I finally did get the test to pass last night (not sure what was different), but today after I added a few more sites to the list, it no longer passes. Not to mention, I received an e-mail that should have been rejected as I noticed its routing IP was listed in Spamhaus’s database. Can anyone verify that I am using the proper syntax? I believe it should just need a semicolon and a space:
sbl.spamhaus.org; relays.ordb.org; spam.dnsrbl.net; dun.dnsrbl.net
If this is incorrect, please let me know.
Subject: RE: DNS blacklist not working
Can you post some headers for us to look at (munged as you deem necessary to protect the innocent)?
Subject: RE: DNS blacklist not working
I seem to finally have it working after adding additional entries. I got it to work using commas between each entry instead of a semicolon. I’m not sure why this is since my other relay control fields are using a semicolon. I have not verified that the subsequent entries are working as I am having extreme difficulty generating spam to the one or two accounts that exist on this server. It is still just a test box. It’s ironic how difficult it can be to get spam when you actually want it. I have signed up for everything under the sun. However, on a side note, we have just discovered a way to get lots of spam quickly to legitimate addresses. Sign up for Verisign SSL certificates. Of all companies, would you expect them to sell your e-mail address to known spammers? Shame on them!