Spam Filter ISP Support Forum

  New Posts New Posts RSS Feed - Bounce domain black list
  FAQ FAQ  Forum Search   Register Register  Login Login

Bounce domain black list

 Post Reply Post Reply
Author
yapadu View Drop Down
Senior Member
Senior Member


Joined: 12 May 2005
Status: Offline
Points: 297
Post Options Post Options   Thanks (0) Thanks(0)   Quote yapadu Quote  Post ReplyReply Direct Link To This Post Topic: Bounce domain black list
    Posted: 13 November 2018 at 9:45pm
We place messages in quarantine, but was wondering if there is any option to bounce a message?

The domain qq.com is really out of control.

If we blacklist qq.com, mail goes into quarantine.  I see there is an option to include :NULL to make the mail to into a black hole.

Was wondering if there is any undocumented feature to make the message bounce, rather than accepting it?   That way the spammer knows the mail was not accepted and who knows, maybe they even stop spamming that address.
--------------------------------------------------------------
I am a user of SF, not an employee. Use any advice offered at your own risk.
Back to Top
LogSat View Drop Down
Admin Group
Admin Group
Avatar

Joined: 25 January 2005
Location: United States
Status: Offline
Points: 4104
Post Options Post Options   Thanks (1) Thanks(1)   Quote LogSat Quote  Post ReplyReply Direct Link To This Post Posted: 14 November 2018 at 5:33pm
yapadu,

Amazing nobody asked for that option before - I was pretty certain myself we did indeed have an option to allow emails to be bounced without archiving them in the database, but it turns out this is not possible right now.

There's some additional features we'll be adding to the next release of SpamFilter within the next few weeks, and it's possible that we'll be able to sneak this one in there as well.
Roberto Franceschetti

LogSat Software

Spam Filter ISP
Back to Top
yapadu View Drop Down
Senior Member
Senior Member


Joined: 12 May 2005
Status: Offline
Points: 297
Post Options Post Options   Thanks (0) Thanks(0)   Quote yapadu Quote  Post ReplyReply Direct Link To This Post Posted: 15 November 2018 at 10:34pm
Sweet, will be looking forward to it should it make it into the next release.
--------------------------------------------------------------
I am a user of SF, not an employee. Use any advice offered at your own risk.
Back to Top
Wilberts View Drop Down
Newbie
Newbie
Avatar

Joined: 09 January 2019
Status: Offline
Points: 1
Post Options Post Options   Thanks (0) Thanks(0)   Quote Wilberts Quote  Post ReplyReply Direct Link To This Post Posted: 10 January 2019 at 7:05am
Bouncing without archiving seems like a neat feature indeed. Is it implemented at this point btw, LogSat?
Back to Top
LogSat View Drop Down
Admin Group
Admin Group
Avatar

Joined: 25 January 2005
Location: United States
Status: Offline
Points: 4104
Post Options Post Options   Thanks (0) Thanks(0)   Quote LogSat Quote  Post ReplyReply Direct Link To This Post Posted: 10 January 2019 at 4:47pm
Perfect timing Smile

Just yesterday we released a new version of SpamFilter:

The release note you're looking for is this one:

// New to VersionNumber = '4.7.5.257';
{TODO -cNew : Added a new "forcedelete" suffix to prevent spam emails from being quarantined anywhere the "nondr" and "null" suffixes are supported}

Roberto Franceschetti

LogSat Software

Spam Filter ISP
Back to Top
Glanz View Drop Down
Newbie
Newbie
Avatar

Joined: 07 February 2019
Status: Offline
Points: 1
Post Options Post Options   Thanks (0) Thanks(0)   Quote Glanz Quote  Post ReplyReply Direct Link To This Post Posted: 08 February 2019 at 12:39pm
Is this still the latest version of the Spamfilter btw, LogSat?
Back to Top
LogSat View Drop Down
Admin Group
Admin Group
Avatar

Joined: 25 January 2005
Location: United States
Status: Offline
Points: 4104
Post Options Post Options   Thanks (0) Thanks(0)   Quote LogSat Quote  Post ReplyReply Direct Link To This Post Posted: 08 February 2019 at 5:42pm
Hi Glanz,

The latest version of SpamFilter is 4.7.6.265. The release notes are always available on our website at:
https://www.logsat.com/sfi-release-notes-and-bug-fixes.asp

I'm including the list that applies after build 4.7.5.257 below. The most relevant change is since that build is the following:

// New to VersionNumber = '4.7.6.262';
{TODO -cNew : Replaced the GeoIP.dat country lookup with a new database format - geoip.sqlite. This should improve misdetected Countries when perfoming lookups under heavy inbound loads. Requires the inclusion of the appropriate x32/x64 sqlite3.dll file included in both the binary-only and the full installer distributions}


The full list of changes is below:

// New to VersionNumber = '4.7.6.265';

{TODO -cFix : With SpamFilter ISP Standard, when using the Custom Domain Filters to disable the SPF filter for individual domains, the SPF filter was still being used to check the "From:" header in an email if the option to scan the "From:" headers is enabled in the general settings}


// New to VersionNumber = '4.7.6.264';

{TODO -cFix : SpamFilter attempted to scan for viruses emails being forced-delivered out of the quarantine even if the antivirus plugin was not activated, and this would cause an exception preventing delivery if the optional antivirus plugin was not installed}


// New to VersionNumber = '4.7.6.263';

{TODO -cFix : SPF lookups fail to find a match if the TXT record consisted of two or more string contatenated together - ex. "v=spf1 ip4:10.11.12.1" "3 ip4:10.14.15.16 ~all"}

{TODO -cFix : The AutoWhiteListForceDelivery check using the "From:" header fails to find a match if there are multiple recipients in the email}


// New to VersionNumber = '4.7.6.262';

{TODO -cNew : Replaced the GeoIP.dat country lookup with a new database format - geoip.sqlite. This should improve misdetected Countries when perfoming lookups under heavy inbound loads. Requires the inclusion of the appropriate x32/x64 sqlite3.dll file included in both the binary-only and the full installer distributions}

{TODO -cFix : The Blacklist Country blacklist was showing a "0" instead of the correct, real-time number of email blocked for each country}

{TODO -cFix : Disabled the reporting of log events from the external AV updater SpamFilterAVUpdate.exe to SpamFilter as they were causing Access Violations. Logs from SpamFilterAVUpdate.exe are still being logged in their own logfiles}


// New to VersionNumber = '4.7.5.258';

{TODO -cFix : Fixed a regression error introduced back in 2016 for these errors that might appear in the logfiles and that could in some rare cases crash SpamFilter: "Access violation at address 000000000040EBDF"}

{TODO -cNew : Added a new "X-SF-SPF-Result" header in the emails indicating the result (pass/none/neutral/fail/softfail/error) of the SPF checks. It's to be noted that sometimes SPF checks are not performed if other filters have already detected the email to be spam before the SPF test is executed, or if the email is whitelisted}

{TODO -cNew : Added a new "X-SF-SPF-Result-From-Header" header in the emails indicating the result (pass/none/neutral/fail/softfail/error) of the SPF checks performed on the email address specified in the "From:" header. It's to be noted that sometimes SPF checks are not performed if other filters have already detected the email to be spam before the SPF test is executed, or if the email is whitelisted}



Roberto Franceschetti

LogSat Software

Spam Filter ISP
Back to Top
yapadu View Drop Down
Senior Member
Senior Member


Joined: 12 May 2005
Status: Offline
Points: 297
Post Options Post Options   Thanks (0) Thanks(0)   Quote yapadu Quote  Post ReplyReply Direct Link To This Post Posted: 05 May 2020 at 11:41pm
Just wanted to reach out and say thanks!

I spoke up about this bounce option, rather than quarantine option back in Nov. 2018.

The feature was added quickly and we started using it right away along side domain blacklisting.

In the past few days we have some random gmail.com user (no association with us) start forwarding every obvious spam message that gmail.com is stopping for them - to us.

We are getting hundreds of messages per day.

We contacted the gmail user and they said they are not doing anything, they have no idea what we are talking about.

We added a blacklist and that stopped the spam, but was filling up our quarantine.

We got out the powerful ::forcedelete option and the problem is gone.  With any luck gmail.com will recognize that our system is now bouncing all those messages back to that sender.

Thanks again for the ::forcedelete option, a life saver.
--------------------------------------------------------------
I am a user of SF, not an employee. Use any advice offered at your own risk.
Back to Top
ik8sqi View Drop Down
Newbie
Newbie


Joined: 25 January 2005
Status: Offline
Points: 14
Post Options Post Options   Thanks (0) Thanks(0)   Quote ik8sqi Quote  Post ReplyReply Direct Link To This Post Posted: 06 May 2020 at 10:14pm
We are the ones actually thanking you yapadu!

It is thanks to suggestions from you - the admins, that has helped us adding new features throughout the years that have benefited everyone.

Thanks again!

Roberto
Roberto Franceschetti
LogSat Software
Back to Top
 Post Reply Post Reply
  Share Topic   

Forum Jump Forum Permissions View Drop Down



This page was generated in 0.383 seconds.