Some thoughts for you in no particular order.
Why are you listing an RFC1918 intranet address (10.0.1.11)? And just one address too, not [10.*.*.*].
This thread from the Domino 4 and 5 Forum is relevant
- in particular, note what I say about the value of blocking using IP, not domain. There are many more spamming domains than spammers; if you block one domain, your pet spammer will simply morph to another.Where you do list IP, you list only one address - a tiny drop in the ocean of IPV4. If you want to stop die hard spammers, you need to block blocks of addresses. Why, just this morning I blocked an entire /16 (e.g. [127.0.*.*], not [127.0.0.1]) when a porn spam hit one of my spamtraps. Tracing the source of the spam, it was clear that an existing spammer had moved from a SPEWS listed ISP to one that is not. SPEWS has not caught up yet, but it will.
A quick browse around SPEWS finds a good proportion of your blocked domains. (SPEWS works on IP, but you can find an IP to look up by finding the MX, or sometimes the name server, for one of your blocked domains.) - therefore, turn on DNSRBL and use SPEWS. Most of your entries in your connection denial list are then redundant.
HTH
Return to top
. . RE: SPAM-Prevention and Deny Connec... (~Kelly Zekwebur... 22.Jan.03) 
Print this page
