RE: Filtering SPAM with Linux

["Wayne Ash" <wayne () ibsinfotech com au>]

Ivan,

If you wish to have a simple solution, install postfix and enable the
maps_rbl_list command to lookup the connecting mail server for
blacklisting.

(this assumes you have exchange 2000 installed, as exchange 2003
supports RBL blacklisting)

When enabled this will reduce your spam, and if you are still not happy
then enable SpamAssassin.

Wayne


-----Original Message-----
From: Chris Santerre [mailto:csanterre () MerchantsOverseas com] 
Sent: Wednesday, 28 April 2004 3:56 AM
To: 'ivan.hernandez () globalsis com ar'; security-basics () securityfocus com
Subject: RE: Filtering SPAM with Linux



> -----Original Message-----
> From: ivan.hernandez () globalsis com ar
> [mailto:ivan.hernandez () globalsis com ar]
> Sent: Tuesday, April 27, 2004 10:29 AM
> To: security-basics () securityfocus com
> Subject: Filtering SPAM with Linux
>
>
> Hello. I have a box with linux that is acting as NAT and Firewall (also

> cache with squid and reverse proxy with pound).
> I have an internal MS Exchange server that goes to internet via NAT, 
> and i dont have any chance of removing it, but i would like to filter 
> the incoming traffic to remove spam.
> My net looks something like this:
>
>
> INTERNET <---> x.x.x.x LINUX BOX 10.1.20.100 <---> 10.1.20.1 MS 
> Exchange
>
> What can i use in the linux box? I have found things like MessageWall 
> and so, but i need better recomendations from people that already doed 
> it.
>
> Thanks!!
> Ivan Hernandez

You want to use SpamAssassin. Here are some links:

www.spamassassin.org
www.rulesemporium.com
www.exit0.us
http://wiki.apache.org/spamassassin/
www.surbl.org
http://news.gmane.org/gmane.mail.spam.spamassassin.general

Hope that Helps,

Chris Santerre
System Admin and SARE Ninja
http://www.rulesemporium.com
'It is not the strongest of the species that survives, not the most
intelligent, but the one most responsive to change.'
Charles Darwin Charles Darwin 

------------------------------------------------------------------------
---
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545
off any course! All of our class sizes are guaranteed to be 10 students
or less to facilitate one-on-one interaction with one of our expert
instructors. 
Attend a course taught by an expert instructor with years of
in-the-field pen testing experience in our state of the art hacking lab.
Master the skills of an Ethical Hacker to better assess the security of
your organization. 
Visit us at: 
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
------------------------------------------------------------------------
----





DISCLAIMER:
Important Disclaimer and Warning 
IBS InfoTech does not represent or warrant that any attached files are free
from computer viruses or other defects. The attached files are provided, and mayonly be used, on the basis that the 
user assumes all responsibility for any loss,
damage or consequences resulting directly or indirectly from use of the attached
files. The liability of IBS InfoTech in any event is limited to either the
resupply of the attached files or the cost of having the attached files resupplied.

NOTE: The views expressed by the individual in this message do not necessarily
reflect those of the organisation.

The information contained in this message is confidential and may be legally
privileged. The message is intended solely for the addressee(s). If you are not
the intended recipient, you are hereby notified that any use, dissemination, or
reproduction is strictly prohibited and may be unlawful. If you are not the
intended recipient, please contact the sender by return e-mail and destroy all
copies of the original message.


---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off
any course! All of our class sizes are guaranteed to be 10 students or less
to facilitate one-on-one interaction with one of our expert instructors.
Attend a course taught by an expert instructor with years of in-the-field
pen testing experience in our state of the art hacking lab. Master the skills
of an Ethical Hacker to better assess the security of your organization.
Visit us at:
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------