Jan πŸ³οΈβ€βš§οΈπŸ‡¨πŸ‡¦

I think I'm leaning too hard on IPs/netblocks as identifiers for spam and phishing, specifically. For those concerns, I'm going to try to adopt a more address-and-domain-based approach and see where that gets me. That being said, I think I'm also going to submit a feature request for cidr map functionality to be added to mailcow (I'm using its proper name with the lower-case 'm' now -- oops!). I just have to finish reading the existing ones to make sure I don't file a duplicate.

#SpiderGoSplat

Aug 29, 2023 at 11:40pmWeb
Show threadJan πŸ³οΈβ€βš§οΈπŸ‡¨πŸ‡¦Aug 29, 2023

This seems far less painful than trying to make mailcow listen only on localhost and then bridging with haproxy, and then figuring out how to make haproxy decline mail connections gracefully, and so on.

There is definitely an IP/netblock-based approach to be brought here, but I think the existing RBLs bring enough of what's needed.

I'm considering making spider-go-splat an RBL as well as a list of text files. I could probably teach rspam a new RBL within mailcow.

#SpiderGoSplat

Show threadCautionWIP (he/him) πŸ³οΈβ€πŸŒˆπŸ‡¨πŸ‡¦πŸ•ŽAug 30, 2023
@damnitjanet Isn’t that essentially DNSBL?
Show threadJan πŸ³οΈβ€βš§οΈπŸ‡¨πŸ‡¦Aug 30, 2023
@Caution Yes! Absolutely, it is. I'm not making any claims to invent anything here -- just looking for ways to provide the spider-go-splat data to apps that can't use it directly as a text file or whatever, but can use it via other methods.
Show threadCautionWIP (he/him) πŸ³οΈβ€πŸŒˆπŸ‡¨πŸ‡¦πŸ•ŽAug 30, 2023
@damnitjanet Ah cool, you didn’t mention it in particularly and I wanted to check and see if there was some new reputational/domain based filtering system out there.
Show threadJan πŸ³οΈβ€βš§οΈπŸ‡¨πŸ‡¦Aug 30, 2023
@Caution I think DNSBL and several others (SORBS, SpamHaus, etc.) are still out there and doing their thing. There's nothing wrong with those, save for the fact that I can't update them with new entries as I need to. πŸ™‚
Show threadCautionWIP (he/him) πŸ³οΈβ€πŸŒˆπŸ‡¨πŸ‡¦πŸ•ŽAug 30, 2023
@damnitjanet Right, I sort of forgot that the point was to be able to build a list rather than simply filter spam. Thus I was wondering why you seemed to be re-inventing the wheel as it were. My dumb, thanks for the reminder. πŸ‘
Show threadJan πŸ³οΈβ€βš§οΈπŸ‡¨πŸ‡¦Aug 30, 2023
@Caution You're definitely not dumb! Most people (unlike me!) don't regularly say "I like the functionality of $foo, so I'm going to build and run my own so I can use my own data set". πŸ˜‰ And if they did, I would probably tell them to seek counselling. πŸ˜‰
Show threadCautionWIP (he/him) πŸ³οΈβ€πŸŒˆπŸ‡¨πŸ‡¦πŸ•ŽAug 30, 2023
@damnitjanet Like the sign says β€œWe do this thing not because it is easy, but because we that it would be easy”
Show threadJan πŸ³οΈβ€βš§οΈπŸ‡¨πŸ‡¦Aug 30, 2023
@Caution Yes -- that sign probably sums up what's kept me in tech for so long. The other half of it is me being almost completely unable to let something go until I've solved it to some satisfaction. πŸ™‚