mailcow.yml aktualisiert

This commit is contained in:
olli 2023-09-25 10:50:20 +02:00
parent 1200d208ec
commit 4ee3df8d48

View File

@ -316,6 +316,106 @@
port: '993'
proto: tcp
- name: /usr/local/sbin/runchecks.d/dnsrbl.check
blockinfile:
path: /usr/local/sbin/runchecks.d/dnsrbl.check
mode: "0400"
owner: root
group: root
create: yes
marker: "# {mark} ANSIBLE MANAGED BLOCK"
block: |
rbllist="0spam-killlist.fusionzero.com
access.redhawk.org
all.s5h.net
all.spamrats.com
all.spam-rbl.fr
aspews.ext.sorbs.net
b.barracudacentral.org
backscatter.spameatingmonkey.net
badconf.rhsbl.sorbs.net
badnets.spameatingmonkey.net
ban.zebl.zoneedit.com
bb.barracudacentral.org
blacklist.woody.ch
bl.spamcop.net
bl.blocklist.de
bogons.cymru.com
bsb.spamlookup.net
cbl.abuseat.org
cdl.anti-spam.org.cn
combined.abuse.ch
db.wpbl.info
dnsbl-1.uceprotect.net
dnsbl-2.uceprotect.net
dnsbl-3.uceprotect.net
dnsbl.anticaptcha.net
dnsbl.dronebl.org
dnsbl.inps.de
dnsbl.sorbs.net
dnsbl.spfbl.net
drone.abuse.ch
duinv.aupads.org
dul.dnsbl.sorbs.net
dyna.spamrats.com
dynip.rothen.com
fresh.spameatingmonkey.net
http.dnsbl.sorbs.net
ips.backscatterer.org
ix.dnsbl.manitu.net
korea.services.net
l1.bbfh.ext.sorbs.net
mail-abuse.blacklist.jippg.org
multi.surbl.org
misc.dnsbl.sorbs.net
noptr.spamrats.com
orvedb.aupads.org
pbl.spamhaus.org
problems.dnsbl.sorbs.net
proxies.dnsbl.sorbs.net
proxy.bl.gweep.ca
psbl.surriel.com
rbl.abuse.ro
rbl.interserver.net
relays.bl.gweep.ca
relays.nether.net
sbl.spamhaus.org
short.rbl.jp
singular.ttk.pte.hu
smtp.dnsbl.sorbs.net
socks.dnsbl.sorbs.net
spam.abuse.ch
spambot.bls.digibase.ca
spam.dnsbl.anonmails.de
spam.dnsbl.sorbs.net
spamrbl.imp.ch
spamsources.fabel.dk
spam.spamrats.com
ubl.lashback.com
ubl.unsubscore.com
virus.rbl.jp
web.dnsbl.sorbs.net
wormrbl.imp.ch
xbl.spamhaus.org
zen.spamhaus.org
z.mailspike.net
zombie.dnsbl.sorbs.net"
for list in $rbllist
do
opts="$opts -s $list"
done
# only run al 6:2Xh
if date +%H:%M | egrep -q "^06:2"
then
if ! rblcheck $opts -- {{inventory_hostname}} mail.{{inventory_hostname}} $(curl -s https://checkipv4.dedyn.io) $(curl -s https://checkipv6.dedyn.io) >${g_tmp}/rbloutput 2>&1
then
g_echo_error "$(grep -v ' not listed by ' ${g_tmp}/rbloutput)"
fi
fi
backup: yes
validate: /bin/bash -n %s
handlers:
- name: Restart mailcow