[CDBUG-talk] sorbs.net blacklist too aggressive? (fwd)

Fongaboo freebsd at fongaboo.com
Mon Oct 3 13:50:23 EDT 2016

This isn't anything specifically FreeBSD... But just wanted to bounce 
(no pun intended) this off you guys to see what you thought...

---------- Forwarded message ----------
Date: Mon, 3 Oct 2016 13:47:28 -0400 (EDT)
From: Fongaboo <postfix at fongaboo.com>
To: postfix-users at postfix.org
Subject: sorbs.net blacklist too aggressive?

I'm running Postfix 2.11.7 on FreeBSD 10.2-RELEASE.

Just wanted to get folks' opinions/rationale/thoughts on behavior of some of 
the RBL's.

Specifically SORBS.NET... I first set up my server using a popular FreeBSD 
tutorial. SORBS.NET was included in a list of recommended RBL's in the latest 
incarnation of that tutorial.

But it seemed like every other day I was whitelisting servers of mainstream 
providers like Gmail and Facebook. They seem to be... how do I say... extremely 
absolutist in their protocol for blacklisting? So at the end of the day it ends 
up not being practically useful.

I first tried whitelisting IP blocks as I found problems, but it's been a 
constant game of whack-a-mole (or *un*-whack-a-mole, in this context, rather?). 
So I finally decided to remove their reject_rbl_client entries in main.cf.

Every issue with misidentified rejections has been due to SORBS. Have others 
had similar experiences or different approaches?



More information about the CDBUG-talk mailing list