Evan wrote:

>
> "Clemens Fischer" <ino-qc@spotteswoode.dnsalias.org> wrote in message
> news:brodlbhw.fsf@ID-23066.news.dfncis.de...
>> * Tony Hogarty:
>>
>> > I would like to reject email from anybody in the .kr or .tw domains.
>>
>> there are RBL servers listing entire country IP ranges. the problem
>> with them is up-to-date-ness, of course.
>>
>> > Take out the garbage to reply
>>
>> take it out yourself :)
>>
>> clemens
>
>
>
> Hi,
>
> This is what I use in my Posfix config to kill spam. This along with
> SpamAssassin and header/body/mime checks blocks around 90% of all SPAM:
>
> smtpd_recipient_restrictions =
> reject_invalid_hostname,
> reject_non_fqdn_sender,
> reject_non_fqdn_recipient,
> reject_unknown_sender_domain,
> reject_unknown_recipient_domain,
> reject_unauth_pipelining,
> reject_unauth_destination,
> permit_mynetworks,
> check_recipient_access hash:/usr/local/etc/postfix/access,
> check_sender_access hash:/usr/local/etc/postfix/access,
> check_client_access hash:/usr/local/etc/postfix/access,
> reject_rhsbl_client blackhole.securitysage.com,
> reject_rhsbl_sender blackhole.securitysage.com,
> reject_rhsbl_recipient blackhole.securitysage.com,
> reject_rbl_client relays.ordb.org,
> reject_rbl_client list.dsbl.org,
> reject_rbl_client sbl.spamhaus.org,
> reject_rbl_client blackholes.easynet.nl,
> reject_rbl_client cbl.abuseat.org,
> reject_rbl_client bl.spamcop.net,
> reject_rbl_client proxies.relays.monkeys.com,
> permit
>
>
> Along with the rbl's the key file here to block individual domains is the
> access file.
> In the access file put something like:
> tw REJECT
> @kr REJECT
> test@test.com REJECT
> Then issue postmap access to make hash and then postfix reload.
> To use mime/body and header blocking check out this site which a excellent
> resource
> http://www.securitysage.com/guides/postfix_uce.html
>
> Cheers
> Evan

Thanks Evan I'll try these.
--
Take out the garbage to reply

Regards
Tony Hogarty