Koozali.org: home of the SME Server

Obsolete Releases => SME 7.x Contribs => Topic started by: shawnbishop on December 09, 2009, 10:23:34 AM

Title: smeserver as a spam snake in front of exchange
Post by: shawnbishop on December 09, 2009, 10:23:34 AM

Good day

Is this still valid..

http://distro.ibiblio.org/pub/linux/distributions/smeserver/contribs/rmitchell/smeserver/howto/Spam%20blocking%20HOWTO%20using%20qpsmtpd%20&%20RBL%20for%20sme%20server.htm

or must we use the email-WBL contrib??

Shawn

Title: Re: smeserver as a spam snake in front of exchange
Post by: mmccarn on December 09, 2009, 01:15:22 PM

The Sonoracomm howto is more up-to-date: http://www.sonoracomm.com/support/19-inet-support/49-spam-filter-configuration-for-sme-7

I have 3 SME servers setup as spam filters. 

I do the following on each server:

Enable DNSBL and RHSBL (http://wiki.contribs.org/Email#Real-time_Blackhole_List_.28RBL.29) filtering

Enable Bayesian Autolearning (http://wiki.contribs.org/Email#Bayesian_Autolearning)

Setup 'LearnAsSpam' and 'LearnAsHam' using either these manual instructions: http://bugs.contribs.org/show_bug.cgi?id=1701#c36 or using the Learn (http://wiki.contribs.org/Learn) contrib (alright - I always use the manual instructions, and have never personally used or tested the Learn contrib -- but it should work fine!)

Since my users can't easily move emails into the 'LearnAsHam' or 'LearnAsSpam' folders, I create public folders on the Exchange Server for 'LearnAsHam' and 'LearnAsSpam', and teach my users to drag or copy appropriate messages into each folder.

I then create a mailbox on the server called 'spamfilter' and do one of the following:
 
- Add an IMAP account into Outlook for a few select users, and allow them to train the spam filter by moving the user-filed messages from 'LearnAsHam' and 'LearnAsSpam' in Public Folders into the corresponding folders for the user 'spamfilter' on the SME server.

- Install and configure ImapSync (http://wiki.contribs.org/Imapsync#Advanced_Example:_Exchange_Public_Folders) to automatically suck the messages from the exchange server into the LearnAs... folders on the SME server every 15 minutes or so.

I monitor the SME spam filtering behavior using qplogtail (http://wiki.contribs.org/Email_Statistics#qplogtail) and qploggrep (http://wiki.contribs.org/Email_Statistics#qploggrep).

I use rather permissive settings for DNSBL and RHSBL servers to avoid blocking too much traffic (The default settings are very likely to generate false positives, in my experience).  My SBList is set to rhsbl.sorbs.net, and my RBLList is set to zen.spamhaus.org:combined.njabl.org.

Following these procedures, I have never needed to whitelist anything on the SME server itself.  When users start baying about "I need to whitelist xyz!" I teach them how to use 'LearnAsHam'.