[98907] in North American Network Operators' Group
Re: SpamHaus Drop List
daemon@ATHENA.MIT.EDU (Peter Dambier)
Thu Aug 23 14:54:33 2007
Date: Thu, 23 Aug 2007 20:53:00 +0200
From: Peter Dambier <peter@peter-dambier.de>
Reply-To: peter@peter-dambier.de
To: nanog@merit.edu
In-Reply-To: <Pine.GSO.4.64.0708231327230.2777@clifden.donelan.com>
Errors-To: owner-nanog@merit.edu
I hope this mail does not go out twice.
Accidently used the wrong mailer.
Sean Donelan wrote:
>
> On Thu, 23 Aug 2007, Paul Vixie wrote:
>
>>> Does anyone use spamhaus drop list ?
>>> http://www.spamhaus.org/drop/index.lasso
>>
>>
>> i do.
>>
>>> I'm glad to listen opinions or experience.
>>
>>
>> no false positives yet. mostly seems to drop inbound tcp/53.
>
>
> Waving a dead chicken over your computer will have no false positives too.
>
> Is it a placebo or does it actually have an effect?
>
> Although very little good or bad will come from those networks, just
> like the various BOGON lists, the Spamhause DROP list does require
> maintenance. If you don't have a process in place to maintain it
> even after you are gone, proceed with caution.
>
> If you do have a process in place, not only for routing but also for
> your new customer order process, it is a useful source of information.
I had to get rid of some people who notoriously brought my exim down.
Here is my personal list:
212.22.0.0 * 255.255.255.0 U 0 0 0 eth0
218.174.212.0 * 255.255.255.0 U 0 0 0 eth0
218.167.73.0 * 255.255.255.0 U 0 0 0 eth0
62.227.222.0 * 255.255.255.0 U 0 0 0 eth0
219.91.64.0 * 255.255.255.0 U 0 0 0 eth0
219.91.92.0 * 255.255.255.0 U 0 0 0 eth0
122.116.17.0 * 255.255.255.0 U 0 0 0 eth0
Dont copy it without knowing what you are doing.
I did not mind losing something. I lost all spammers using my system as a relay.
I did not find any of my routes in the DROP list. No good for me.
I remember friends telling me they got rid of SpamHaus because it killed
too many legal emails - but that was not the DROP list.
My router keeps telling me - the more routes, the slower it gets.
I guess with 120 routes it gets slowly enough for all spammers to time out :)
Remember the US is a republic.
The UK is an old-fashioned monarchy and their legal system might not be
compatible with what you expect :)
Kind regards
Peter and Karin
--
Peter and Karin Dambier
Cesidian Root - Radice Cesidiana
Rimbacher Strasse 16
D-69509 Moerlenbach-Bonsweiher
+49(6209)795-816 (Telekom)
+49(6252)750-308 (VoIP: sipgate.de)
mail: peter@echnaton.serveftp.com
mail: peter@peter-dambier.de
http://iason.site.voila.fr/
https://sourceforge.net/projects/iason/
http://www.cesidianroot.com/
