RE: Question on Blocking an ISP.

[Allan Jensen <aje () callcentereurope com>]

Chris,

Maybe you should take a different approach and try to block spam as a whole?

If your front end mailserver is *nix-based, I can recommend Spamassassin
(http://www.spamassassin.org); easy install and pretty tweakable.

On my system I now actually see 2-3% of the spams I did previously; the rest
is just archived for later review just in case there is a false positive.


Best regards,
-Allan Jensen


> -----Original Message-----
> From: Chris [mailto:chris () jynx net] 
> Sent: 30. november 2002 10:21
> To: security-basics () securityfocus com
> Subject: Question on Blocking an ISP.
>
>
> As of the last couple weeks, from 1 aol users i have gotten 
> over 1000+ virus emails. These emails are your tipical 
> freescreensaver virus that has been going around for years 
> now. It seems this person has an affected system.  This is 
> not really my question or concern.
>
> I have been scanning though all the headers getting the proxy 
> email servers aol uses, but it seems like a endless list. LOL.
>
> I'm blocking these ips though IPchains, but i really would 
> like to know how to get every class owned by aol so i can 
> block them all.
>
> Receiving mail from aol is no big thing to me, considering 
> 99.9% of the time is junk or spam.
>
> Is there some way to whois arin on a nic handle to get all 
> the classes?
>
> Thank you.
> -chris