HOWTO: using the list to protect you own mailserver

Back to home  

HOWTO: Use blackholes.uceb.org

The name of the zone is "blackholes.uceb.org".

If you realy want to use this list you can do this by configuring you mailserver for DNS-block. Have a look at ordb.org how to configure your mailserver. Just replace the zone name "relays.ordb.org" by "blackholes.uceb.org". Replace 'http://ORDB.org/lookup/?host="$&{client_addr}" ' by 'http://www.uceb.org/php-bin/lookup.php'.

Example for sendmail (m4 configuration):
FEATURE(`dnsbl',`blackholes.uceb.org',` Mail from $&{client_addr} rejected; see http://www.uceb.org/php-bin/lookup.php')dnl
Example for sendmail (sendmail.cf file);
# DNS based IP address spam list blackholes.uceb.org
R$* $: $&{client_addr}
R$-.$-.$-.$- $: <?> $(host $4.$3.$2.$1.blackholes.uceb.org. $: OK $)
R<?>OK $: OKSOFAR
R<?>$+<TMP> $: TMPOK
R<?>$+ $#error $@ 5.7.1 $: Mail from $&{client_addr} rejected; see http://www.uceb.org/php-bin/lookup.php

Remember: First I block, then I talk!

HOWTO: Configure a SPAM-save sendmail server

Find here an example how to configure sendmail (sendmail.org) using m4 macros.

  1. Use blacklists to stop unwanted mail traffic.

    2. FEATURE(`dnsbl',`blackholes.uceb.org',`550 Mail from $&{client_addr} rejected; see http://www.uceb.org/php-bin/lookup.php')dnl

  2. Don't allow connections from hosts without valid reverse DNS translation (most of all spam from hosts within the apnic network ranges don't have a reverse translation).

    3. HACK(`require_rdns')dnl

HOWTO: Contribute new SPAM sources

You can't.

HOWTO: Remove an entry listed in the database

  1. First test, if your mailservers IP address is listed in the database. You can use the query interface found on this site.
  2. If your mailservers IP address is listed in the database and you think it has to be removed, send an email messages to requesting this removal. Don't forget to send the IP address in your mail. Even if your mailserver is blocked my the database you still can send the mails to the mentioned address.

Question: What are the return values the database sends?

The DNS server returns the following values upon a found address entry:

Question: How big is the database of blocked ip addresses?

Huge! The in-core ISC BIND server database is about 200MB.

Question: Is your blacklist against the law? Is it legal to use it?

According the laws in switzerland, europe, where I live and my servers are running this blacklist is absolutely legal and not against any law.

2000-06-23 the swiss upper house of parliament ("Bundesrat") was requested by the national council to provide effective measures to the protection from unsolicited electronic mass email and the associated annoyances, personality injuries, costs and dangers for the users and the operators of the systems of the Internets and other communications systems. 2000-10-02 the upper house of parliament has accepted this "Motion".

As of April 1st, 2007 spam is against the swiss law.

Act Against Unfair Practices
UWG - SR 241
Art. 3, Bst o
Unlauter handelt insbesondere, wer:
Massenwerbung ohne direkten Zusammenhang mit einem angeforderten Inhalt fernmeldetechnisch sendet oder solche Sendungen veranlasst und es dabei unterlässt, vorher die Einwilligung der Kunden einzuholen, den korrekten Absender anzugeben [...].

Art. 231, Abs 1
Wer vorsätzlich unlauteren Wettbewerb nach Artikel 3, 4, 4a, 5 oder 6 begeht, wird auf Antrag mit Gefängnis oder mit Busse bis zu 100 000 Franken bestraft.

If the usage of this list in your mailserver configuration to prevent spam, you do it at your own risk. You have to know yourself if it is legal in your country or not.