Ignore invalid reverse DNS for certain hosts

Discuss here all what concerns the MailCleaner anti-spam efficiency, share your rulesets and tips for SpamAssassin !

Moderators: Pascal, mentor, FlorianB, bourgeois

cglmicro
Posts: 291
Joined: Thu Mar 07, 2013 2:12 am
How did you hear about Mailcleaner: google

Ignore invalid reverse DNS for certain hosts

Postby cglmicro » Wed May 04, 2016 3:09 am

Question: if I check REJECT INVALID REVERSE DNS, and I want MailCleaner to ignore specific hosts poorly configured so it accept mail anyway, should I just put their IP in the box under named DON'T CHECK THESE HOSTS? And should I CLEAR CACHE and restart the service it ask me after so it' effective ?

How many of you use REJECT INVALID REVERSE DNS ? Or why you don't use it ?

Thanks.
User avatar
toothycardus
Posts: 293
Joined: Fri Jul 13, 2012 11:51 am
How did you hear about Mailcleaner: Google
Location: United Kingdom

Re: Ignore invalid reverse DNS for certain hosts

Postby toothycardus » Wed May 04, 2016 9:31 am

we use reject invalid reverse dns, don't get me wrong it can be a pain because so many people don't configure their equipment properly, but at the same time it stops so much spam before it even hits the filtering stage. We do have a canned response setup for when a customer rings in and says their mail has bounced. we get them to send that canned response onto their email provider as it contains all the information they need to fix the issue. if they litterally cant fix it for some magic reason then we will reluctantly add their mail server ip to the don't check these hosts.

Be aware that the reverse dns check is a Forward Confirmed Reverse DNS check, which means the a record has to match as well.
cglmicro
Posts: 291
Joined: Thu Mar 07, 2013 2:12 am
How did you hear about Mailcleaner: google

Re: Ignore invalid reverse DNS for certain hosts

Postby cglmicro » Wed May 04, 2016 4:24 pm

I had to disable it right now.

The ISP of the sender has a rDNS, but now a FCrDNS... that is not a problem since I can ask him to add an A entry so
66.187.112.173 resolve to mail.cbrlaser.com
and mail.cbrlaser.com resolve to an A entry of 66.187.112.173.

My problem is that MailCleaner ignore the IP's I add in DON'T CHECK THIS HOST, even when I restart both services on all my nodes, and even if I try yo CLEAR CACHE. I've also tried to add their IP to ANTISPAM > TRUSTED IP/NETWORK.

Can you tell me why it's ignored ?

Any suggestion to reject the one that has no rDNS at all at stage 1, and let every thing else through, even those with invalid FCrDNS ?
Or worst case, how to set SpamAssassin to put more score on "X-MailCleaner-RDNS:invalid reverse DNS for..." ?
User avatar
toothycardus
Posts: 293
Joined: Fri Jul 13, 2012 11:51 am
How did you hear about Mailcleaner: Google
Location: United Kingdom

Re: Ignore invalid reverse DNS for certain hosts

Postby toothycardus » Wed May 04, 2016 4:31 pm

check that they dont have multiple mail servers sending the message, and add their mail server ip to configuration -> smtp -> smtp check -> dont check these hosts. then you will need to restart the incoming MTA on all machines (master and slaves if you have a cluster)
cglmicro
Posts: 291
Joined: Thu Mar 07, 2013 2:12 am
How did you hear about Mailcleaner: google

Re: Ignore invalid reverse DNS for certain hosts

Postby cglmicro » Wed May 04, 2016 6:41 pm

This is what I already did, but still rejected. I can also confirm that I've restarted INCOMING MTA service and FILTERING ENGINE many times.

Do I have too much entries in my DON'T CHECK THESE HOSTS ? Here it is:

Code: Select all

*.videotron.ca
*.bell.ca
*.bell.net
*.bellnexxia.net
mail1.maxxamanalytics.com
miss10.maxxam.ca
smtp-o-1.netrevolution.com
*.megamailservers.com
*.secureserver.net
smart.legardeur.net
ofweb1.openfacehost.com
*.mxlogic.net
*.myregisteredsite.com
65.93.76.56
*.mycloudmailbox.com
*.desjardins.com
*.exchange.telus.com
*.idig.net
*.fibrenoire.ca
*.google.com
*.rogers.com
*.electric.net
*.optilog.com
*.messagelabs.com
*.facebook.com
*.hotmail.com
*.outlook.com
*.rapidenet.ca
*.yahoo.com
*.yahoo.ca
*.ulaval.ca
*.cybercat.ca
*.perfora.net
*.orange.fr
*.dropbox.com
*.trendmicro.com
*.linkedin.com
*.9services.com
*.unifiedlayer.com
64.20.227.128/28
208.123.79.32/27
*.websitewelcome.com
*.mac.com
*.b2b2c.ca
*.dreamhost.com
*.sendgrid.net
*.exacttarget.com
*.dotcom.qc.ca
*.nerdsisp.com
*.panelboxmanager.com
*.radiant.net
*.ip4b.net
*.no-ip.com
*.one-mail.on.ca
*.bitdefender.com
*.siteprotect.com
24.37.71.78
*.mailhop.org
*.pathcom.com
*.ssha.ca
*.ismog.net
*.blackberry.com
*.primus.ca
*.csb.qc.ca
*.globetrotter.net
*.800onemail.com
*.sendlabs.com
*.bdc.ca
*.20vic.com
*.twitter.com
*.hostedemail.com
*.privateemail.com
*.uottawa.ca
*.dreamhost.com
*.websitewelcome.com
*.csjv.ca
206.41.89.6
*.tuango.ca
*.hostmei2v.com
*.domainlocalhost.com
*.ubisoft.com
*.mirazed.com
*.mcsv.net
*.createsend.com
*.satelcom.qc.ca
*.mcsignup.com
74.198.28.231
69.70.167.114
206.41.89.2
50.21.173.7
*.usherbrooke.ca
*.doodle.com
*.entreprisesgnp.com
*.emailsrvr.com
*.cargill.com
*.sepaq.com
206.167.20.44
*.amazonses.com
*.cogeco.net
*.cogeco.ca
*.xittel.net
74.208.4.194
74.208.4.196
74.208.4.197
*.vif.com
54.236.124.210
*.rsgsv.net
206.47.190.194
srv01.backop.ca
*.mimecast.com
216.239.64.153
*.paypal.com
*.e-safenet.com
*.gouv.qc.ca
*.sogetel.net
58.251.146.184
*.wordpress.org
209.221.30.150
*.163.com
*.infusionmail.com
*.audi.de
*.itinfonet.com
*.mcdlv.net
*.oricom.ca
*.nissan-usa.com
*.cbrlaser.com
*.cbrlaser.net
66.187.112.173
*.zoneplus.ca
*.astralinternet.com
*.mailchannels.net
*.telus.com
209.44.126.215
*.willardmeats.com
*.fcm.ca
*.emailhost.cn
*.neocomm.ca
*.bonnevisite.com
64.15.146.41
173.203.187.88
173.203.187.93
*.aei.ca
*.mailcontrol.com
*.jacmar.ca
*.mail2web.com
*.visa.com
*.lantic.ca
216.137.165.116
*.wixshoutout.com
smtp-out-60.livemail.co.uk
*.bstm.ca
*.squareup.com
*.elephantoutlook.com
*.ericbernard.ca
*.myhsphere.biz
*.centrefranco.org
*.mlsend3.com
*.manulife.com
*.mailgun.net
*.mailgun.info
*.cirrushosting.com
*.satelmail.com
*.inmotionhosting.com
*.reference.qc.ca
*.eigbox.net
192.95.19.190
198.100.153.195
*.transportlogipro.ca
*.freshdesk.com
*.webex.com
*.ovh.ca
*.hebergplus.com
*.surveymonkey.com
104.156.74.38
*.specialtymaterials.com
*.axorexperts.com
64.187.182.21
207.245.13.129
69.70.226.122
132.219.143.210
66.187.112.173
User avatar
toothycardus
Posts: 293
Joined: Fri Jul 13, 2012 11:51 am
How did you hear about Mailcleaner: Google
Location: United Kingdom

Re: Ignore invalid reverse DNS for certain hosts

Postby toothycardus » Thu May 05, 2016 9:14 am

wow that's a long list..... I don't think there is a limit to how long the list can be. I have only put in IP address and not hostnames in the list, it shouldn't make a difference but try using the IP address instead if your not already.

Return to “Filter efficiency”

Who is online

Users browsing this forum: No registered users and 3 guests