From 4ee3df8d4869ebc94b7e080e65fc966c25e5c600 Mon Sep 17 00:00:00 2001
From: olli <olli@ds9.dedyn.io>
Date: Mon, 25 Sep 2023 10:50:20 +0200
Subject: [PATCH] mailcow.yml aktualisiert

---
 mailcow.yml | 100 ++++++++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 100 insertions(+)

diff --git a/mailcow.yml b/mailcow.yml
index e088ad7..8094159 100644
--- a/mailcow.yml
+++ b/mailcow.yml
@@ -316,6 +316,106 @@
         port: '993'
         proto: tcp
 
+    - name: /usr/local/sbin/runchecks.d/dnsrbl.check
+      blockinfile:
+        path: /usr/local/sbin/runchecks.d/dnsrbl.check
+        mode: "0400"
+        owner: root
+        group: root
+        create: yes
+        marker: "# {mark} ANSIBLE MANAGED BLOCK"
+        block: |
+          rbllist="0spam-killlist.fusionzero.com
+          access.redhawk.org
+          all.s5h.net
+          all.spamrats.com
+          all.spam-rbl.fr
+          aspews.ext.sorbs.net
+          b.barracudacentral.org
+          backscatter.spameatingmonkey.net
+          badconf.rhsbl.sorbs.net
+          badnets.spameatingmonkey.net
+          ban.zebl.zoneedit.com
+          bb.barracudacentral.org
+          blacklist.woody.ch
+          bl.spamcop.net
+          bl.blocklist.de
+          bogons.cymru.com
+          bsb.spamlookup.net
+          cbl.abuseat.org
+          cdl.anti-spam.org.cn
+          combined.abuse.ch
+          db.wpbl.info
+          dnsbl-1.uceprotect.net
+          dnsbl-2.uceprotect.net
+          dnsbl-3.uceprotect.net
+          dnsbl.anticaptcha.net
+          dnsbl.dronebl.org
+          dnsbl.inps.de
+          dnsbl.sorbs.net
+          dnsbl.spfbl.net
+          drone.abuse.ch
+          duinv.aupads.org
+          dul.dnsbl.sorbs.net
+          dyna.spamrats.com
+          dynip.rothen.com
+          fresh.spameatingmonkey.net
+          http.dnsbl.sorbs.net
+          ips.backscatterer.org
+          ix.dnsbl.manitu.net
+          korea.services.net
+          l1.bbfh.ext.sorbs.net
+          mail-abuse.blacklist.jippg.org
+          multi.surbl.org
+          misc.dnsbl.sorbs.net
+          noptr.spamrats.com
+          orvedb.aupads.org
+          pbl.spamhaus.org
+          problems.dnsbl.sorbs.net
+          proxies.dnsbl.sorbs.net
+          proxy.bl.gweep.ca
+          psbl.surriel.com
+          rbl.abuse.ro
+          rbl.interserver.net
+          relays.bl.gweep.ca
+          relays.nether.net
+          sbl.spamhaus.org
+          short.rbl.jp
+          singular.ttk.pte.hu
+          smtp.dnsbl.sorbs.net
+          socks.dnsbl.sorbs.net
+          spam.abuse.ch
+          spambot.bls.digibase.ca
+          spam.dnsbl.anonmails.de
+          spam.dnsbl.sorbs.net
+          spamrbl.imp.ch
+          spamsources.fabel.dk
+          spam.spamrats.com
+          ubl.lashback.com
+          ubl.unsubscore.com
+          virus.rbl.jp
+          web.dnsbl.sorbs.net
+          wormrbl.imp.ch
+          xbl.spamhaus.org
+          zen.spamhaus.org
+          z.mailspike.net
+          zombie.dnsbl.sorbs.net"
+          
+          for list in $rbllist
+          do
+            opts="$opts -s $list"
+          done
+          # only run al 6:2Xh
+          if date +%H:%M | egrep -q "^06:2"
+          then
+            if ! rblcheck $opts -- {{inventory_hostname}} mail.{{inventory_hostname}} $(curl -s https://checkipv4.dedyn.io) $(curl -s https://checkipv6.dedyn.io) >${g_tmp}/rbloutput 2>&1
+            then
+              g_echo_error "$(grep -v ' not listed by ' ${g_tmp}/rbloutput)"
+            fi
+          fi
+        backup: yes
+        validate: /bin/bash -n %s
+
 
   handlers:
     - name: Restart mailcow