Bounce domain black list |
Post Reply |
Author | |
yapadu
Senior Member Joined: 12 May 2005 Status: Offline Points: 297 |
Post Options
Thanks(0)
Posted: 13 November 2018 at 9:45pm |
We place messages in quarantine, but was wondering if there is any option to bounce a message? The domain qq.com is really out of control. If we blacklist qq.com, mail goes into quarantine. I see there is an option to include :NULL to make the mail to into a black hole. Was wondering if there is any undocumented feature to make the message bounce, rather than accepting it? That way the spammer knows the mail was not accepted and who knows, maybe they even stop spamming that address.
|
|
--------------------------------------------------------------
I am a user of SF, not an employee. Use any advice offered at your own risk. |
|
LogSat
Admin Group Joined: 25 January 2005 Location: United States Status: Offline Points: 4104 |
Post Options
Thanks(1)
|
yapadu,
Amazing nobody asked for that option before - I was pretty certain myself we did indeed have an option to allow emails to be bounced without archiving them in the database, but it turns out this is not possible right now. There's some additional features we'll be adding to the next release of SpamFilter within the next few weeks, and it's possible that we'll be able to sneak this one in there as well.
|
|
yapadu
Senior Member Joined: 12 May 2005 Status: Offline Points: 297 |
Post Options
Thanks(0)
|
Sweet, will be looking forward to it should it make it into the next release.
|
|
--------------------------------------------------------------
I am a user of SF, not an employee. Use any advice offered at your own risk. |
|
Wilberts
Newbie Joined: 09 January 2019 Status: Offline Points: 1 |
Post Options
Thanks(0)
|
Bouncing without archiving seems like a neat feature indeed. Is it implemented at this point btw, LogSat?
|
|
LogSat
Admin Group Joined: 25 January 2005 Location: United States Status: Offline Points: 4104 |
Post Options
Thanks(0)
|
Perfect timing
Just yesterday we released a new version of SpamFilter: The release note you're looking for is this one: // New to VersionNumber = '4.7.5.257'; {TODO -cNew : Added a new "forcedelete" suffix to prevent spam emails from being quarantined anywhere the "nondr" and "null" suffixes are supported} |
|
Glanz
Newbie Joined: 07 February 2019 Status: Offline Points: 1 |
Post Options
Thanks(0)
|
Is this still the latest version of the Spamfilter btw, LogSat?
|
|
LogSat
Admin Group Joined: 25 January 2005 Location: United States Status: Offline Points: 4104 |
Post Options
Thanks(0)
|
Hi Glanz,
The latest version of SpamFilter is 4.7.6.265. The release notes are always available on our website at: https://www.logsat.com/sfi-release-notes-and-bug-fixes.asp I'm including the list that applies after build 4.7.5.257 below. The most relevant change is since that build is the following: // New to VersionNumber = '4.7.6.262'; {TODO -cNew : Replaced the GeoIP.dat country lookup with a new database format - geoip.sqlite. This should improve misdetected Countries when perfoming lookups under heavy inbound loads. Requires the inclusion of the appropriate x32/x64 sqlite3.dll file included in both the binary-only and the full installer distributions} The full list of changes is below: // New to VersionNumber = '4.7.6.265'; {TODO -cFix : With SpamFilter ISP Standard, when using the Custom Domain Filters to disable the SPF filter for individual domains, the SPF filter was still being used to check the "From:" header in an email if the option to scan the "From:" headers is enabled in the general settings} // New to VersionNumber = '4.7.6.264'; {TODO -cFix : SpamFilter attempted to scan for viruses emails being forced-delivered out of the quarantine even if the antivirus plugin was not activated, and this would cause an exception preventing delivery if the optional antivirus plugin was not installed} // New to VersionNumber = '4.7.6.263'; {TODO -cFix : SPF lookups fail to find a match if the TXT record consisted of two or more string contatenated together - ex. "v=spf1 ip4:10.11.12.1" "3 ip4:10.14.15.16 ~all"} {TODO -cFix : The AutoWhiteListForceDelivery check using the "From:" header fails to find a match if there are multiple recipients in the email} // New to VersionNumber = '4.7.6.262'; {TODO -cNew : Replaced the GeoIP.dat country lookup with a new database format - geoip.sqlite. This should improve misdetected Countries when perfoming lookups under heavy inbound loads. Requires the inclusion of the appropriate x32/x64 sqlite3.dll file included in both the binary-only and the full installer distributions} {TODO -cFix : The Blacklist Country blacklist was showing a "0" instead of the correct, real-time number of email blocked for each country} {TODO -cFix : Disabled the reporting of log events from the external AV updater SpamFilterAVUpdate.exe to SpamFilter as they were causing Access Violations. Logs from SpamFilterAVUpdate.exe are still being logged in their own logfiles} // New to VersionNumber = '4.7.5.258'; {TODO -cFix : Fixed a regression error introduced back in 2016 for these errors that might appear in the logfiles and that could in some rare cases crash SpamFilter: "Access violation at address 000000000040EBDF"} {TODO -cNew : Added a new "X-SF-SPF-Result" header in the emails indicating the result (pass/none/neutral/fail/softfail/error) of the SPF checks. It's to be noted that sometimes SPF checks are not performed if other filters have already detected the email to be spam before the SPF test is executed, or if the email is whitelisted} {TODO -cNew : Added a new "X-SF-SPF-Result-From-Header" header in the emails indicating the result (pass/none/neutral/fail/softfail/error) of the SPF checks performed on the email address specified in the "From:" header. It's to be noted that sometimes SPF checks are not performed if other filters have already detected the email to be spam before the SPF test is executed, or if the email is whitelisted} |
|
yapadu
Senior Member Joined: 12 May 2005 Status: Offline Points: 297 |
Post Options
Thanks(0)
|
Just wanted to reach out and say thanks! I spoke up about this bounce option, rather than quarantine option back in Nov. 2018. The feature was added quickly and we started using it right away along side domain blacklisting. In the past few days we have some random gmail.com user (no association with us) start forwarding every obvious spam message that gmail.com is stopping for them - to us. We are getting hundreds of messages per day. We contacted the gmail user and they said they are not doing anything, they have no idea what we are talking about. We added a blacklist and that stopped the spam, but was filling up our quarantine. We got out the powerful ::forcedelete option and the problem is gone. With any luck gmail.com will recognize that our system is now bouncing all those messages back to that sender. Thanks again for the ::forcedelete option, a life saver.
|
|
--------------------------------------------------------------
I am a user of SF, not an employee. Use any advice offered at your own risk. |
|
ik8sqi
Newbie Joined: 25 January 2005 Status: Offline Points: 14 |
Post Options
Thanks(0)
|
We are the ones actually thanking you yapadu! It is thanks to suggestions from you - the admins, that has helped us adding new features throughout the years that have benefited everyone. Thanks again! Roberto
|
|
Roberto Franceschetti
LogSat Software |
|
Post Reply | |
Tweet
|
Forum Jump | Forum Permissions You cannot post new topics in this forum You cannot reply to topics in this forum You cannot delete your posts in this forum You cannot edit your posts in this forum You cannot create polls in this forum You cannot vote in polls in this forum |
This page was generated in 0.383 seconds.