This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Puremessage Unix spam from .click .rocks .work getting through

We are running Puremessage for Unix version 6.  Recently a lot of spam has been getting through from .click, .rocks. and .work.  Does anyone have a rule they are using that works well to block all of these new TLDs?

:56446


This thread was automatically locked due to age.
  • We have had excellent luck doing that through Postifx. The advantage is that you can deny the connection earlier, with far less overhead.

    In main.cf we added

    -------------

    smtpd_sender_restrictions = check_helo_access pcre:/opt/zimbra/postfix/conf/cog-reject.re

    Contents of  cog-reject.re

    -------------

    ################# COG
    ## IP Addresses
    /^170\.130\.240\.*/ REJECT

    ## Domain Rejections
    /\.pryor\.com$/ REJECT

    ## TLD Rejections
    /\.xyz$/ REJECT
    /\.asia$/ REJECT
    /\.rocks$/ REJECT
    /\.click$/ REJECT
    /\.yoga$/ REJECT
    /\.eu$/ REJECT

    :57287
  • Hello GFD,

    /\.eu$/ REJECT

    might not be advisable in all parts of the world ...

    Christian

    :57297
  • For a small midwestern local government office in the US it works wonders, and stops a considerable amount of spam. Now for a small municipality in France it may be unwise, and blocking /\.us$/ may work fantastic for them.

    Know your traffic.

    :57465