dnsbl: xml/dnsbl.in comparison

comparison xml/dnsbl.in @ 259:be939802c64e

add recipient rate limits by email from address or domain

author	Carl Byington <carl@five-ten-sg.com>
date	Sat, 21 Jul 2012 08:34:04 -0700
parents	d6d5c50b9278
children	92a98e661a0b

comparison

equal deleted inserted replaced

-:7a16904fec66
+:be939802c64e
 unless previously whitelisted.  This milter also counts the number of
 invalid HTML tags, and can reject mail if that count exceeds your
 specified limit.
 </para>
 <para>
-This milter can also impose hourly rate limits on the number of
+This milter can also impose hourly and daily rate
-recipients accepted from SMTP AUTH connections, that would otherwise be
+limits on the number of recipients accepted from SMTP
-allowed to relay thru this mail server with no spam filtering.
+AUTH connections, that would otherwise be allowed to
+relay thru this mail server with no spam filtering. If
+the connection does not use SMTP AUTH, the rate limits
+may be specified by the mail from email address or
+domain.
 </para>
 <para>
 Consider the case of a message from A to B passing thru this milter.  If
 that message is not blocked, then we might eventually see a reply
 message from B to A. If the filtering context for A includes an
 // outbound content filtering to prevent our own customers from sending spam
 content on {
 filter    sbl-xbl.spamhaus.org        "Mail containing %s rejected - sbl; see http://www.spamhaus.org/query/bl?ip=%s";
 uribl     multi.surbl.org             "Mail containing %s rejected - surbl; see http://www.rulesemporium.com/cgi-bin/uribl.cgi?bl0=1&domain0=%s";
-#uribl    black.uribl.com             "Mail containing %s rejected - uribl; see http://l.uribl.com/?d=%s";
+#uribl    multi.uribl.com             "Mail containing %s rejected - uribl; see http://l.uribl.com/?d=%s";
 ignore    { include "hosts-ignore.conf"; };
 tld       { include "tld.conf"; };
 cctld     { include "cctld.conf"; };
 html_tags { include "html-tags.conf"; };
 html_limit on 20 "Mail containing excessive bad html tags rejected";
 // we only send bounces to our own customers
 env_from unknown {
 "<>"    black;
 };
-// hourly recipient rate limit by smtp auth client id
+// hourly recipient rate limit by smtp auth client id,
+// or unauthenticated mail from address
 // default hourly limit is 30
 // daily limits are 4 times the hourly limit
 rate_limit 30 4 { // default
 #fred 100;   // override default limits
 #joe  10;    // ""
+#sam@somedomain.tld  500;
+#@otherdomain.tld    100;
 };
 };
 context main {
 dnsbl   localp  partial.blackholes.five-ten-sg.com  "Mail from %s rejected - local; see http://www.five-ten-sg.com/blackhole.php?%s";
 dnswl_list  dnswl.org;
 content on {
 filter    sbl-xbl.spamhaus.org        "Mail containing %s rejected - sbl; see http://www.spamhaus.org/query/bl?ip=%s";
 uribl     multi.surbl.org             "Mail containing %s rejected - surbl; see http://www.rulesemporium.com/cgi-bin/uribl.cgi?bl0=1&domain0=%s";
-#uribl    black.uribl.com             "Mail containing %s rejected - uribl; see http://l.uribl.com/?d=%s";
+#uribl    multi.uribl.com             "Mail containing %s rejected - uribl; see http://l.uribl.com/?d=%s";
 ignore    { include "hosts-ignore.conf"; };
 tld       { include "tld.conf"; };
 cctld     { include "cctld.conf"; };
 html_tags { include "html-tags.conf"; };
 html_limit off;
 };
 generic "^dsl.static.*ttnet.net.tr$|(^|[x.-])(ppp|h|host)?([0-9]{1,3}[x.-](Red-|dynamic[x.-])?){4}"
 "your mail server %s seems to have a generic name";
-white_regex ".*=example.com=user@yourhostingaccount.com";
+white_regex "=example.com=user@yourhostingaccount.com$";
 env_to {
 # !! replace this with your domain names
 # child contexts are not allowed to specify recipient addresses outside these domains
 # if this is a backup-mx, you need to include here domains for which you relay to the primary mx

Mercurial > dnsbl

comparison xml/dnsbl.in @ 259:be939802c64e