Spamcop blocking Cogeco mailservers again Page 2
Links: home · search · speed test · login · more ·
 
Links: Reply New Topic
Forums » Canadian » Cogeco » Spamcop blocking Cogeco mailservers again
page: 1 · 2
jeisenberg @ 23rd Oct 11:49AM:
Re: Spamcop blocking Cogeco mailservers again

said by Krispy :

If you have any suggestions on what more to do I'm all ears but we can't control spamcop's listing criteria no more then we can control remote mail administrator's choice in querying spamcop.
This is just a suggestion. I'm not sure how feasible it is to implement...

Cogeco has the means currently to determine whether machines are infected (some of my clients have been recipients of the Cogeco security email).

Rather than blocking access to the internet in general, is it possible to block the outgoing email ports on a temporary basis, until it can be determined that the system has been corrected? This would involve throttling the outgoing email ports, and checking the content of outgoing emails to ensure they are clean. Once an appropriate interval has passed with only clean messages being sent, the throttling could be removed. And during the time when the infection still existed, Cogeco might send reminder emails and continue to display the warning screen at certain intervals.
reply
Krispy @ 23rd Oct 12:54PM:
Re: Spamcop blocking Cogeco mailservers again

said by jeisenberg :

said by Krispy :

If you have any suggestions on what more to do I'm all ears but we can't control spamcop's listing criteria no more then we can control remote mail administrator's choice in querying spamcop.
This is just a suggestion. I'm not sure how feasible it is to implement...

Cogeco has the means currently to determine whether machines are infected (some of my clients have been recipients of the Cogeco security email).

Rather than blocking access to the internet in general, is it possible to block the outgoing email ports on a temporary basis, until it can be determined that the system has been corrected? This would involve throttling the outgoing email ports, and checking the content of outgoing emails to ensure they are clean. Once an appropriate interval has passed with only clean messages being sent, the throttling could be removed. And during the time when the infection still existed, Cogeco might send reminder emails and continue to display the warning screen at certain intervals.
We actually do this already so yes, it's possible!
--
you can lead a horse to the water but you cannot make him drink...you can put a man through school but you cannot make him think --ben harper

reply
Snickerdo @ 23rd Oct 12:55PM:
Re: Spamcop blocking Cogeco mailservers again

They already block outgoing Port 25 on residential connections. You can't just go blocking/throttling random ports, and by the time Cogeco would figure this out to implement counter-measures, they'll already have you in the walled garden.
--
Give a man a hooker and he'll have fun for a night. Teach a man how to hire a hooker and he'll have fun for a lifetime.
reply
Krispy @ 23rd Oct 01:01PM:
Re: Spamcop blocking Cogeco mailservers again

FYI 216.221.81.28 is listed again, »www.spamcop.net/w3m?action=check···21.81.28

I'm currently waiting for word back from Spamcop as they list the reason as,

System has sent mail to SpamCop spam traps in the past week (spam traps are secret, no reports or evidence are provided by SpamCop)

Now I'm loathe to criticize any RBL and I've been a staunch supporter of Spamcop for many many years but I must admit that I'm frustrated with them right now as the listing reason is 'spamtrap' with no evidence provided - this could mean a single email or 1,000,000 emails but given that the spam stats I'm seeing show no great surge I'm leaning towards less rather than more. And while I totally understand discretion is necessary in the anti-spam community the reality is our anti-spam appliance is provided by the same vendor that owns Spamcop so pretty clear that we're not evil spammers looking for intel to thwart filters.

So anyway...I'm working on it again but at this point I'm not convinced this isn't caused by an email or two ending up at a spamtrap which would be very discouraging if that were the case.
--
you can lead a horse to the water but you cannot make him drink...you can put a man through school but you cannot make him think --ben harper

reply
Snickerdo @ 23rd Oct 01:17PM:
Re: Spamcop blocking Cogeco mailservers again

You know, if Spamcop was smart, they would offer some sort of "validation" program where they speak with an ISP's security team, evaluate their spam protection measures and equipment, and then whitelist those servers on their system so that they don't get automatically blocked (instead, maybe an email to the security team with details of what happened?), since they would know that the administration behind those servers is trustworthy and able to rectify any issues that they may bring up.

The fact that they don't do this -really- makes me have a very low opinion of Spamcop as a whole, especially with how quickly they'll blacklist an entire ISP and provide no details to justify their actions.
--
Give a man a hooker and he'll have fun for a night. Teach a man how to hire a hooker and he'll have fun for a lifetime.
reply
jeisenberg @ 24th Oct 02:06AM:
Re: Spamcop blocking Cogeco mailservers again

said by Krispy :

We actually do this already so yes, it's possible!
I thought Cogeco suspends the accounts of people whose systems have been infected and are causing a problem with spamming. What I was suggesting was throttling and continued monitoring, with no suspension of service. But, if I'm wrong about the suspension, then I apologize.
reply
jeisenberg @ 24th Oct 02:11AM:
Re: Spamcop blocking Cogeco mailservers again

said by Krispy :

FYI 216.221.81.28 is listed again, »www.spamcop.net/w3m?action=check···21.81.28

I'm currently waiting for word back from Spamcop ...[SNIP]
I just clicked on that link, and it reports the IP as not being listed!
reply
Asawulf @ 24th Oct 02:14AM:
Re: Spamcop blocking Cogeco mailservers again

Usually 24 hours listing OR when Krispy can bring them to their senses lol
reply

Thank you for using lo-fi dslreports.com - report bugs
© 99-2009 silver matrix LLC