From owner-freebsd-chat Fri Jul 25 08:58:55 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id IAA09698 for chat-outgoing; Fri, 25 Jul 1997 08:58:55 -0700 (PDT) Received: from kithrup.com (kithrup.com [205.179.156.40]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id IAA09692 for ; Fri, 25 Jul 1997 08:58:47 -0700 (PDT) Received: (from sef@localhost) by kithrup.com (8.6.8/8.6.6) id IAA21478; Fri, 25 Jul 1997 08:58:45 -0700 Date: Fri, 25 Jul 1997 08:58:45 -0700 From: Sean Eric Fagan Message-Id: <199707251558.IAA21478@kithrup.com> To: chat@freebsd.org Subject: Re: (over)zealous mail bouncing Newsgroups: kithrup.freebsd.chat In-Reply-To: <199707250616.XAA00554.kithrup.freebsd.chat@foo.primenet.com> References: <199707241601.LAA03086@compound.east.sun.com> <199707242035.PAA03874@compound.east.sun.com> Organization: Kithrup Enterprises, Ltd. Sender: owner-freebsd-chat@freebsd.org X-Loop: FreeBSD.org Precedence: bulk In article <199707250616.XAA00554.kithrup.freebsd.chat@foo.primenet.com> you write: >One simple defense which will *generally* corral unsolicited mass >email is to use a procmail filter which sets aside (*don't bounce or >trash*) mail which does not have your email address on the From:, Cc:, >etc. lines, and tosses it in your least favorite mailbox. As I've said before, I use route filters. I also use procmail (anything which passes through *.it.earthlink.net gets bounced, and the only way I know about it is if earthlink or uunet decide to reply. Well, their automated reply, which I should probably start junking as well). My current route filter list is: kithrup 1% netstat -rn | grep UGR 38.216.110 127.0.0.1 UGR 0 0 lo0 - - 204.119.177 127.0.0.1 UGR 0 4 lo0 - - 204.137.222 127.0.0.1 UGR 0 0 lo0 - - 204.250.46 127.0.0.1 UGR 0 24 lo0 - - 205.137.220 127.0.0.1 UGR 0 0 lo0 - - 205.164.68 127.0.0.1 UGR 0 12 lo0 - - 205.199.2 127.0.0.1 UGR 0 0 lo0 - - 205.199.4 127.0.0.1 UGR 0 19 lo0 - - 205.199.212 127.0.0.1 UGR 0 32 lo0 - - 205.254.164 127.0.0.1 UGR 0 0 lo0 - - 205.254.165 127.0.0.1 UGR 0 0 lo0 - - 205.254.166 127.0.0.1 UGR 0 0 lo0 - - 205.254.167 127.0.0.1 UGR 0 20 lo0 - - 206.85.20 127.0.0.1 UGR 0 0 lo0 - - 206.139.182 127.0.0.1 UGR 0 0 lo0 - - 207.124.160 127.0.0.1 UGR 0 0 lo0 - - 207.124.161 127.0.0.1 UGR 0 0 lo0 - - 207.211.141 127.0.0.1 UGR 0 0 lo0 - - 208.15.229 127.0.0.1 UGR 0 0 lo0 - - 208.144.211 127.0.0.1 UGR 0 0 lo0 - - 208.197.13 127.0.0.1 UGR 0 0 lo0 - - 208.216.244 127.0.0.1 UGR 0 0 lo0 - - 209.14.30 127.0.0.1 UGR 0 0 lo0 - - Most of those are AGIS customers. A couple are pre-emptive -- I haven't necessarily gotten anythign from them, but other people have, or they were registered to a known spammer, so I dropped 'em. I maintain mine manually. This is a pain. I *highly* recommend Paul Vixie's BGP feed, which is free, and he keeps it up to date with pointers from other people. I believe gated can talk eBGP, so you can run that on a FreeBSD box. Since I started doing this, the amount of email spam I've gotten has risen -- but less so than it would otherwise have done. (I know people who don't have any filters, and sometimes I'm amazed they can get anything done.)