_layout/page-content.html
🇩🇪 Deutsch 🇬🇧 English

Fight Boundary Line Spam

The Situation

I and all my friends which i host on my private mail server, suddenly suffer from a huge amount of similar spam. An end is not in sight.

At the spammers colluegas: do not spam me and my friends, ok?

Detail Description

There is a solution. I describe this at the example of boundary line 24, i think it is similar to other spammers.

  • the characteristic for a website, which is in bound of boundary line 24 ist the following output

  • these e-mails may look professional. but do not give a shit on it, never order anything there.

  • at first look from which domains this spam is coming. Using pflogsumm. Then redirect this to your dedicatet spamming adress. Do that in postfix:

create new blacklist main.cf

[...]
smtpd_sender_restrictions = 
     check_sender_access hash:/usr/local/etc/postfix/blacklist,
[...]

Insert all yet known spammers in this blacklist

[...]
# boundary line domains 07.01.2020

wereviewthings.com      REDIRECT spam@x-tra-designs.org
yobaat.com      REDIRECT spam@x-tra-designs.org
onvacationnow.com       REDIRECT spam@x-tra-designs.org
tamnhapho.com   REDIRECT spam@x-tra-designs.org
mehrbilit.com   REDIRECT spam@x-tra-designs.org
superacrepair.com       REDIRECT spam@x-tra-designs.org
oliviertylczak.com      REDIRECT spam@x-tra-designs.org
jovenesarrechas.com     REDIRECT spam@x-tra-designs.org
juntosms.com    REDIRECT spam@x-tra-designs.org
yxbown.com      REDIRECT spam@x-tra-designs.org
woobra.com      REDIRECT spam@x-tra-designs.org
qdzpjgc.com     REDIRECT spam@x-tra-designs.org
harihariguru.com        REDIRECT spam@x-tra-designs.org
kaanahr.com     REDIRECT spam@x-tra-designs.org
impitsol.com    REDIRECT spam@x-tra-designs.org
beautisleeprh.com       REDIRECT spam@x-tra-designs.org
wokoro.com      REDIRECT spam@x-tra-designs.org
[...]

now execute postmap blacklist and maybe service postfix restart, as every Unixer knows

  • Now you get all Boundary-Line-24-Spam-Emails at this account. Then examine headers, and add these IP-Ranges to postfix black list

This is mine looking thewn

  • the file /usr/local/etc/postfix/client_checks with your analysis 
    5.133.66.0/24   	REJECT BLOCK Your IP is blocked on this mailserver. Contact  for questions.
217.112.142.0/24        REJECT BLOCK Your IP is blocked on this mailserver. Contact  for questions.
208.187.167.0/24        REJECT BLOCK Your IP is blocked on this mailserver. Contact  for questions.
212.162.150.0/24        REJECT BLOCK Your IP is blocked on this mailserver. Contact  for questions.
63.81.87.0/24   	REJECT BLOCK Your IP is blocked on this mailserver. Contact  for questions.
209.210.24.0/24 	REJECT BLOCK Your IP is blocked on this mailserver. Contact  for questions.
204.10.160.0/22 	REJECT BLOCK Your IP is blocked on this mailserver. Contact  for questions.
134.73.51.0/24  	REJECT BLOCK Your IP is blocked on this mailserver. Contact  for questions.
45.95.32.0/24   	REJECT BLOCK Your IP is blocked on this mailserver. Contact  for questions.
63.83.78.0/24   	REJECT BLOCK Your IP is blocked on this mailserver. Contact  for questions.
208.186.113.0/24        REJECT BLOCK Your IP is blocked on this mailserver. Contact  for questions.
45.146.200.0/24 	REJECT BLOCK Your IP is blocked on this mailserver. Contact  for questions.
45.146.203.0/24 	REJECT BLOCK Your IP is blocked on this mailserver. Contact  for questions.
63.80.185.0/24 		REJECT BLOCK Your IP is blocked on this mailserver. Contact  for questions.
45.146.201.0/24 	REJECT BLOCK Your IP is blocked on this mailserver. Contact  for questions.
217.112.128.0/24        REJECT BLOCK Your IP is blocked on this mailserver. Contact  for questions.
45.82.32.0/24   	REJECT BLOCK Your IP is blocked on this mailserver. Contact  for questions.
45.146.202.0/24 	REJECT BLOCK Your IP is blocked on this mailserver. Contact  for questions.
45.82.34.0/24   	REJECT BLOCK Your IP is blocked on this mailserver. Contact  for questions.
69.94.151.0/24  	REJECT BLOCK Your IP is blocked on this mailserver. Contact  for questions.
208.187.166.0/24        REJECT BLOCK Your IP is blocked on this mailserver. Contact  for questions.
208.186.112.0/24        REJECT BLOCK Your IP is blocked on this mailserver. Contact  for questions.

postmap client_checks not forget to call

  • Enter this in main.cf nötig. After that postfix reload usw … know this
[...]
smtpd_recipient_restrictions = 
[...]
    check_client_access cidr:/usr/local/etc/postfix/client_checks,
[...]
  • Here you can see my success

  • sorry for bad English, i hope you understand principle. Im German.
Artikel erstellt am: 31 January 2020 , aktualisiert am 31 January 2020