ajout d'infos pour SpamHaus / DQS
This commit is contained in:
Gregory Colpart
parent
646ca255c8
commit
40a24a08c7
|
|
@ -765,8 +765,112 @@ Pour supprimer des entrées particulières :
|
|||
SpamAssassin auto-whitelist: removing address: foo@bar
|
||||
~~~
|
||||
|
||||
## SpamHaus
|
||||
|
||||
## ClamAV
|
||||
[SpamHaus](https://www.spamhaus.com/) propose un certains nombres d'outils pratiques pour l'antispam.
|
||||
Il s'agit principalement de données pour identifier les adresses IP ou noms de domaine problématiques.
|
||||
|
||||
Une bonne partie des données sont gratuites via [SpamHaus.org](https://www.spamhaus.org/) :
|
||||
|
||||
* [zen.spamhaus.org](https://www.spamhaus.org/zen/) : combinaisons de plusieurs DNSBL : SBL+CSS+XBL+PBL
|
||||
* [dbl.spamhaus.org](https://www.spamhaus.org/dbl/) : URIBL
|
||||
|
||||
> Note : la gratuité est réservée à un usage non-commercial et pour un nombre de requêtes limité, cf les [Terms Of Use](https://www.spamhaus.org/organization/dnsblusage/). Si vous faites trop de requêtes, SpamHaus vous renverra [des codes 127.255.255.25X (rate-limiting)](https://www.spamhaus.org/news/article/807/using-our-public-mirrors-check-your-return-codes-now) et un commercial vous contactera ;)
|
||||
|
||||
### SpamHaus.org via Postfix
|
||||
|
||||
`main.cf` :
|
||||
|
||||
~~~
|
||||
smtpd_recipient_restrictions = [...]
|
||||
reject_rhsbl_sender dbl.spamhaus.org=127.0.1.[2..99],
|
||||
reject_rhsbl_helo dbl.spamhaus.org=127.0.1.[2..99],
|
||||
reject_rhsbl_reverse_client dbl.spamhaus.org=127.0.1.[2..99],
|
||||
reject_rbl_client zen.spamhaus.org=127.0.0.[2..255],
|
||||
warn_if_reject reject_rbl_client zen.spamhaus.org=127.255.255.[1..255],
|
||||
~~~
|
||||
|
||||
|
||||
### DQS
|
||||
|
||||
<https://www.spamhaus.com/product/data-query-service/>
|
||||
|
||||
Il s'agit d'un service payant fourni par SpamHaus, mais sous certaines conditions vous pouvez [demander un accès gratuit](https://www.spamhaus.com/free-trial/sign-up-for-a-free-data-query-service-account/). Pour mieux comprendre, lisez ce [tableau comparatif](https://www.spamhaus.com/custom-content/uploads/2023/03/DQS-Legacy-DNSBL-comparison-table_D2.png) entre SpamHaus.org, DQS gratuit et DQS payant.
|
||||
|
||||
Voici ce que propose DQS :
|
||||
|
||||
* un accès plus rapide (temps réel et TTL à 1s) à la DNSBL Zen et l'URIBL DBL
|
||||
* un accès plus complet à la DNSBL SBL (inclus dans Zen) et l'URIBL DBL
|
||||
* un accès à l'URIBL ZRD pour les noms de domaine créés récemment
|
||||
* un accès à HBL (Hash Block List) pour bloquer des emails en fonction du contenu
|
||||
|
||||
Cela s'utilise notamment via Postfix/Postscreen, Postfix ou SpamAssassin.
|
||||
|
||||
### DQS via Postscreen
|
||||
|
||||
`main.cf` :
|
||||
|
||||
~~~
|
||||
postscreen_dnsbl_sites = KEY.zen.dq.spamhaus.net=127.0.0.[2..255]
|
||||
postscreen_dnsbl_reply_map = texthash:/etc/postfix/dnsbl_reply
|
||||
~~~
|
||||
|
||||
`dnsbl_reply` :
|
||||
|
||||
~~~
|
||||
KEY.zen.dq.spamhaus.net zen.spamhaus.org
|
||||
~~~
|
||||
|
||||
#### DQS via Postfix
|
||||
|
||||
`main.cf` :
|
||||
|
||||
~~~
|
||||
smtpd_recipient_restrictions = [...]
|
||||
reject_rhsbl_sender KEY.dbl.dq.spamhaus.net=127.0.1.[2..99],
|
||||
reject_rhsbl_helo KEY.dbl.dq.spamhaus.net=127.0.1.[2..99],
|
||||
reject_rhsbl_reverse_client KEY.dbl.dq.spamhaus.net=127.0.1.[2..99],
|
||||
reject_rhsbl_sender KEY.zrd.dq.spamhaus.net=127.0.2.[2..24],
|
||||
reject_rhsbl_helo KEY.zrd.dq.spamhaus.net=127.0.2.[2..24],
|
||||
reject_rhsbl_reverse_client KEY.zrd.dq.spamhaus.net=127.0.2.[2..24],
|
||||
reject_rbl_client KEY.zen.dq.spamhaus.net=127.0.0.[2..255]
|
||||
|
||||
rbl_reply_maps = hash:/etc/postfix/dnsbl-reply-map
|
||||
~~~
|
||||
|
||||
`dnsbl-reply-map` :
|
||||
|
||||
~~~
|
||||
KEY.dbl.dq.spamhaus.net=127.0.1.[2..99] $rbl_code Service unavailable; $rbl_class [$rbl_what] blocked using private dbl.spamhaus.org${rbl_reason?; $rbl_reason}
|
||||
KEY.zrd.dq.spamhaus.net=127.0.2.[2..24] $rbl_code Service unavailable; $rbl_class [$rbl_what] blocked using private zrd.spamhaus.org${rbl_reason?; $rbl_reason}
|
||||
KEY.zen.dq.spamhaus.net=127.0.0.[2..255] $rbl_code Service unavailable; $rbl_class [$rbl_what] blocked using private zen.spamhaus.org${rbl_reason?; $rbl_reason}
|
||||
~~~
|
||||
|
||||
#### DQS via SpamAssassin
|
||||
|
||||
<https://github.com/spamhaus/spamassassin-dqs>
|
||||
|
||||
~~~
|
||||
$ git clone https://github.com/spamhaus/spamassassin-dqs
|
||||
|
||||
$ sh hbltest.sh
|
||||
Please input your DQS key: KEY
|
||||
|
||||
$ sed -i -e 's/your_DQS_key/KEY/g' sh.cf
|
||||
$ sed -i -e 's/your_DQS_key/KEY/g' sh_hbl.cf
|
||||
|
||||
$ vim sh.pre
|
||||
|
||||
# cp sh.cf /etc/spamassassin/
|
||||
# cp sh_hbl.cf /etc/spamassassin/
|
||||
# cp sh_hbl_scores.cf /etc/spamassassin/
|
||||
# cp SH.pm /etc/spamassassin/
|
||||
# cp sh_scores.cf /etc/spamassassin/
|
||||
# cp sh.pre /etc/spamassassin/
|
||||
~~~
|
||||
|
||||
|
||||
# ClamAV
|
||||
|
||||
<http://www.clamav.net/index.html>
|
||||
|
||||
|
|
|
|||
Loading…
Reference in a new issue