Solved

DNSBL bl.spamcop.net>

Posted on 2004-09-23
6
519 Views
Last Modified: 2008-03-06
we ve been experiencing mail problem with the following DNSBL bl.spamcop.net>
it looks like a settings on the symantec mail securuty for exchange
it is dns black list do i need to disable or enable something in symantec
does any one know how to resolved this?
0
Comment
Question by:franckmottin
  • 2
  • 2
6 Comments
 
LVL 8

Expert Comment

by:Jeff Rodgers
ID: 12133548
What version of Exchange?  Exchange 2003 will allow utilization of DNSBL.

If the issue is Symantec Mail Security than you can remove the Block list by opening up the Mail Security Web interface and going to Configuration ->Spam Prevention and deleting the bl.spamcop.net.

Alternatively in Exchnage 2003 go into System Manager, look in Global Settings,Message Delivery Properties. Look under Connection Filtering and Delete bl.spamcop.net .

Hope that helps!
0
 

Author Comment

by:franckmottin
ID: 12133652
i am using exchange2000, i can not see spam prevention option under configuration and unless mistaken there is no record bl.spamcop.net anywhere
i did find out that we have been black listed by www.spamcop.net 
any other ideas are welcome
thx
0
 
LVL 8

Accepted Solution

by:
Jeff Rodgers earned 500 total points
ID: 12133913
My Condolences... SPAMCOP can be brutal when attempting to remove your name from their list.  You will need to contact them directly.

I have had clients who were on the list.  Spamcop refused their email ( their domain was on the spamlist...)

As for the settings for SPAM PREVENTION you may have to dig a little deeper...I am using the latest version(4.5.2), older versions had it located elsewhere...
ALso, I don't know that Exchange 2000 had any features for Block Lists as SPAM wasn't as big an issue back in 99 when they were developing it.
As far as SPAMCOP is concerned ...here is what they have to say;

If you have stopped the spam, you will be delisted automatically a maximum of 48 hours from the most recent spam complaint. Please do not write asking to be delisted sooner unless you believe there is some error in SpamCop's logic. Systems known to send spam are listed for up to 48 hours even if there is a "resolution" to the "issue". Often, what happens once can happen again.

Stop the spam (reports). Barring any unusual circumstances (you receive erroneous spam reports), this is your only option. Secure open relays and kick the spammers off your servers - and keep them off!

If you have recently closed an open relay, check to see if it is listed with www.ordb.org (off site link). If it is listed, ask for a re-test. Once ordb has certified your relay as secure, return to http://spamcop.net/bl.shtml to expedite the removal of your server from the list. Or just wait the 48 hours and it will be delisted automatically.

If your server is still open to relaying spam, SpamCop's blocking is probably the least of your problems. First fix the security problem, close the relay! This alone will eventually result in all sane blocking lists delisting your server automatically (including SpamCop). See above.

If people report your site as a source of spam, it will be listed. If people stop reporting your site as a source of spam, it will be de-listed after 48 hours. The only way you can be removed from this list is to avoid users reporting your site as a source of spam - either by changing your behavior, or by negotiating a cease-fire with the unhappy users.

If you need specific information about how to avoid spam complaints (and thus being listed), see:
How can I avoid spam reports?
Perform the am I listed lookup on your mailserver IP and consider the evidence presented.

If you have done all of the above and still have questions or problems, you may email bl@admin.spamcop.net for further information. Please be sure to include the IP involved. Please do not ask to be delisted unless you feel SpamCop has made some mistake.


Good Luck
0
 

Author Comment

by:franckmottin
ID: 12134062
yes i read that text but it is linked to 2 users here which i know send spam, very weird
relay is open on our server
anyway thanks for that i ll wait a bit longer to see what happen
0

Featured Post

Ransomware: The New Cyber Threat & How to Stop It

This infographic explains ransomware, type of malware that blocks access to your files or your systems and holds them hostage until a ransom is paid. It also examines the different types of ransomware and explains what you can do to thwart this sinister online threat.  

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article outlines the process to identify and resolve account lockout in an Active Directory environment.
The related questions "How do I recover the passwords for my Q-See DVR" and "How can I reset my Q-See DVR to eliminate a password" are seen several times a week.  Here we discuss the grim reality of the situation.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

821 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question