[GH-ISSUE #1496] Private DNSBL listed in DNSBL check: dnsbl.cyberlogic.net #1176

New issue

Open

opened 2026-02-27 11:15:42 +03:00 by kerem · 18 comments

kerem commented 2026-02-27 11:15:42 +03:00

Owner

Copy link

Originally created by @whyscream on GitHub (May 26, 2018).
Original GitHub issue: https://github.com/modoboa/modoboa/issues/1496

Impacted versions

• Modoboa: git HEAD
• Installer used: irrelevant
• Webserver: irrelevant

Steps to reproduce

Look at email box, see that I have received various emails from the Modoboa MX checks about a DNSBL that is broken, badly maintained , irrelevant, and I never knew existed.

Current behavior

The list of DNSBLs defined at modoboa/admin/constants.py includes "dnsbl.cyberlogic.net", which is currently broken (see: https://www.dnsbl.com/2018/05/status-of-dnsblcyberlogicnet-broken.html). I never heard of this DNSBL, and the author of referenced article hasn't either. Based on his findings I'm assuming that this DNSBL was actually private.

Expected behavior

1. I would not expect Modoboa to include such obscure DNSBLs by default, just a list of widely accepted and properly supported lists. Please remove the mentioned DNSBL from the modoboa defaults, and any other non-public DNSBLs too. For instance: cyberlogic doesn't have a website listed at https://www.dnsbl.info/dnsbl-details.php?dnsbl=dnsbl.cyberlogic.net, so performing manual lookups, reading about listing policy and/or getting a removal is a pain to say the least.
2. Proper documentation on how to remove DNSBLs from the list. I now found out (by reading the code) that Modoboa actually has quite nice support for removing/customizing this list. I fixed my issue by adding the following snippet to my settings.py, but this should be available for anyone reading documentation.

# fix broken DNSBLs
from modoboa.admin.constants import DNSBL_PROVIDERS
DNSBL_PROVIDERS.remove("dnsbl.cyberlogic.net")

Originally created by @whyscream on GitHub (May 26, 2018). Original GitHub issue: https://github.com/modoboa/modoboa/issues/1496 # Impacted versions * Modoboa: git HEAD * Installer used: irrelevant * Webserver: irrelevant # Steps to reproduce Look at email box, see that I have received various emails from the Modoboa MX checks about a DNSBL that is broken, badly maintained , irrelevant, and I never knew existed. # Current behavior The list of DNSBLs defined at `modoboa/admin/constants.py` includes `"dnsbl.cyberlogic.net"`, which is currently broken (see: https://www.dnsbl.com/2018/05/status-of-dnsblcyberlogicnet-broken.html). I never heard of this DNSBL, and the author of referenced article hasn't either. Based on his findings I'm assuming that this DNSBL was actually private. # Expected behavior 1) I would not expect Modoboa to include such obscure DNSBLs by default, just a list of widely accepted and properly supported lists. Please remove the mentioned DNSBL from the modoboa defaults, and any other non-public DNSBLs too. For instance: cyberlogic doesn't have a website listed at https://www.dnsbl.info/dnsbl-details.php?dnsbl=dnsbl.cyberlogic.net, so performing manual lookups, reading about listing policy and/or getting a removal is a pain to say the least. 2) Proper documentation on how to remove DNSBLs from the list. I now found out (by reading the code) that Modoboa actually has quite nice support for removing/customizing this list. I fixed my issue by adding the following snippet to my `settings.py`, but this should be available for anyone reading documentation. ```python # fix broken DNSBLs from modoboa.admin.constants import DNSBL_PROVIDERS DNSBL_PROVIDERS.remove("dnsbl.cyberlogic.net") ````

kerem added the

enhancement

feedback-needed

labels 2026-02-27 11:15:42 +03:00

kerem commented 2026-02-27 11:15:43 +03:00

Author

Owner

Copy link

@oconshaw commented on GitHub (May 27, 2018):

Great find and thanks for posting a fix. I am having the same issue. Can you elaborate a bit more on how to apply the fix you detailed above? Where/how do you add that snippet to your "settings". --Thanks.

<!-- gh-comment-id:392351116 --> @oconshaw commented on GitHub (May 27, 2018): Great find and thanks for posting a fix. I am having the same issue. Can you elaborate a bit more on how to apply the fix you detailed above? Where/how do you add that snippet to your "settings". --Thanks.

kerem commented 2026-02-27 11:15:43 +03:00

Author

Owner

Copy link

@whyscream commented on GitHub (May 28, 2018):

After installing, the Modoboa installation created a few files. One of them is named settings.py. you can append the lines to that file.

<!-- gh-comment-id:392444331 --> @whyscream commented on GitHub (May 28, 2018): After installing, the Modoboa installation created a few files. One of them is named `settings.py`. you can append the lines to that file.

kerem commented 2026-02-27 11:15:43 +03:00

Author

Owner

Copy link

@almereyda commented on GitHub (May 29, 2018):

In our instance, provisioned by the modoboa-installer, the file is living in /srv/modoboa/instance/instance/settings.py.

A service uwsgi restart usually helps picking up those changes.

<!-- gh-comment-id:392738281 --> @almereyda commented on GitHub (May 29, 2018): In our instance, provisioned by the `modoboa-installer`, the file is living in `/srv/modoboa/instance/instance/settings.py`. A `service uwsgi restart` usually helps picking up those changes.

kerem commented 2026-02-27 11:15:43 +03:00

Author

Owner

Copy link

@TacoScheltema commented on GitHub (May 30, 2018):

following up on this; bl.spamcannibal.org recently had it's domain name hijacked and is now serving up advertisements and malicious content. This blacklist should also be removed from modoboa.

<!-- gh-comment-id:393134691 --> @TacoScheltema commented on GitHub (May 30, 2018): following up on this; bl.spamcannibal.org recently had it's domain name hijacked and is now serving up advertisements and malicious content. This blacklist should also be removed from modoboa.

kerem commented 2026-02-27 11:15:43 +03:00

Author

Owner

Copy link

@tonioo commented on GitHub (May 30, 2018):

You can indeed modify the DNSBL provider list as mentioned in the original description, or you can just add DNSBL_PROVIDERS variable to the config file, without the import statement (in this mode, you can only override the whole list).

Anyway, do you think an online panel to control the provider list would be useful? I could propose it through the sponsoring system.

<!-- gh-comment-id:393146820 --> @tonioo commented on GitHub (May 30, 2018): You can indeed modify the DNSBL provider list as mentioned in the original description, or you can just add ``DNSBL_PROVIDERS`` variable to the config file, without the import statement (in this mode, you can only override the whole list). Anyway, do you think an online panel to control the provider list would be useful? I could propose it through the sponsoring system.

kerem commented 2026-02-27 11:15:43 +03:00

Author

Owner

Copy link

@TacoScheltema commented on GitHub (May 30, 2018):

@tonioo That would have my vote for sure!

<!-- gh-comment-id:393156237 --> @TacoScheltema commented on GitHub (May 30, 2018): @tonioo That would have my vote for sure!

kerem commented 2026-02-27 11:15:43 +03:00

Author

Owner

Copy link

@PatTheMav commented on GitHub (Oct 17, 2018):

I'm not too sure, but looks like the same issue with sectoor.de, which according to the same page had been broken since June and is offline anyway: https://www.dnsbl.com/2018/06/status-of-exitnodestordnsblsectoorde.html

<!-- gh-comment-id:430744430 --> @PatTheMav commented on GitHub (Oct 17, 2018): I'm not too sure, but looks like the same issue with sectoor.de, which according to the same page had been broken since June and is offline anyway: https://www.dnsbl.com/2018/06/status-of-exitnodestordnsblsectoorde.html

kerem commented 2026-02-27 11:15:43 +03:00

Author

Owner

Copy link

@tonioo commented on GitHub (Oct 18, 2018):

@PatTheMav Looks like only exitnodes.tor.dnsbl.sectoor.de is concerned. Modoboa does not use this list by default. Have you encountered issues?

<!-- gh-comment-id:430908811 --> @tonioo commented on GitHub (Oct 18, 2018): @PatTheMav Looks like only exitnodes.tor.dnsbl.sectoor.de is concerned. Modoboa does not use this list by default. Have you encountered issues?

kerem commented 2026-02-27 11:15:43 +03:00

Author

Owner

Copy link

@PatTheMav commented on GitHub (Oct 18, 2018):

@tonioo Well, the "issue" would be that the IP of my brand new mail server was more or less immediately recognized as "listed" by sectoor.de (probably because they list whole IP ranges) and their website is offline, so there is no way to check or dispute.

In general I'd prefer to have a solid list of vendors be the default (mainly the big names that have earned their trust) and an optional list of the more obscure block list providers (that either go offline all of a sudden, get hacked, etc.).

<!-- gh-comment-id:430939673 --> @PatTheMav commented on GitHub (Oct 18, 2018): @tonioo Well, the "issue" would be that the IP of my brand new mail server was more or less immediately recognized as "listed" by sectoor.de (probably because they list whole IP ranges) and their website is offline, so there is no way to check or dispute. In general I'd prefer to have a solid list of vendors be the default (mainly the big names that have earned their trust) and an optional list of the more obscure block list providers (that either go offline all of a sudden, get hacked, etc.).

kerem commented 2026-02-27 11:15:43 +03:00

Author

Owner

Copy link

@tonioo commented on GitHub (Oct 18, 2018):

@PatTheMav Good point but I'm really surprised you're the only one to report this issue. The list seems dead since June and I've never encountered any issue on my own server... Anyway, I'll drop the corresponding entries from the default providers.

<!-- gh-comment-id:430972329 --> @tonioo commented on GitHub (Oct 18, 2018): @PatTheMav Good point but I'm really surprised you're the only one to report this issue. The list seems dead since June and I've never encountered any issue on my own server... Anyway, I'll drop the corresponding entries from the default providers.

kerem commented 2026-02-27 11:15:43 +03:00

Author

Owner

Copy link

@whyscream commented on GitHub (Oct 25, 2018):

I did a quick scan through the list of DNSBL_PROVIDERS in the master branch, but out of the first 10 or so entries, 3 lists are already dead (but cause no problems):

• bl.deadbeef.com
• bl.emailbasura.org
• blackholes.five-ten-sg.com

Also cbl.abuseat.org is listed which is deprecated for a long time (since it's contained in Spamhaus Zen).

The commit that added the current list of domains is over 2 years old. In my opinion this is bitrot waiting to happen. So could we discuss the proposal again to limit the default list to a short list of known and respected big players?

<!-- gh-comment-id:433053835 --> @whyscream commented on GitHub (Oct 25, 2018): I did a quick scan through the list of DNSBL_PROVIDERS in the master branch, but out of the first 10 or so entries, 3 lists are already dead (but cause no problems): - `bl.deadbeef.com` - `bl.emailbasura.org` - `blackholes.five-ten-sg.com` Also `cbl.abuseat.org` is listed which is deprecated for a long time (since it's contained in Spamhaus Zen). The commit that added the current list of domains is over 2 years old. In my opinion this is bitrot waiting to happen. So could we discuss the proposal again to limit the default list to a short list of known and respected big players?

kerem commented 2026-02-27 11:15:43 +03:00

Author

Owner

Copy link

@tonioo commented on GitHub (Oct 29, 2018):

@whyscream Sure. Do you already have a list in mind?

<!-- gh-comment-id:433906656 --> @tonioo commented on GitHub (Oct 29, 2018): @whyscream Sure. Do you already have a list in mind?

kerem commented 2026-02-27 11:15:43 +03:00

Author

Owner

Copy link

@whyscream commented on GitHub (Oct 30, 2018):

My stance on DNSBLs is that you should only use those DNSBLs that have a clear listing policy (which is public), and getting removed from that list is also possible when you play by the rules of the DNSBL (meaning that those removal guide lines should also be public), as long as the DNSBL doesn't requires payment to be removed. Parties I trust on these are:

• Spamhaus (zen.spamhaus.org)
• Spamcop (bl.spamcop.net)
• PSBL (psbl.surriel.com)
• SEM (bl.spameatingmonkey.net)
• Mailspike (bl.mailspike.net)

Many other DNSBLs fail to document why a server are listed, or how you can get it removed. This means in general that when your server is on such a list, you're not in a position to fix the problem. It has no use for Modoboa users to be notified of such a listing, because they can't overcome the issue anyway.

<!-- gh-comment-id:434136153 --> @whyscream commented on GitHub (Oct 30, 2018): My stance on DNSBLs is that you should only use those DNSBLs that have a clear listing policy (which is public), and getting removed from that list is also possible when you play by the rules of the DNSBL (meaning that those removal guide lines should also be public), as long as the DNSBL doesn't requires payment to be removed. Parties I trust on these are: - Spamhaus (zen.spamhaus.org) - Spamcop (bl.spamcop.net) - PSBL (psbl.surriel.com) - SEM (bl.spameatingmonkey.net) - Mailspike (bl.mailspike.net) Many other DNSBLs fail to document why a server are listed, or how you can get it removed. This means in general that when your server is on such a list, you're not in a position to fix the problem. It has no use for Modoboa users to be notified of such a listing, because they can't overcome the issue anyway.

kerem commented 2026-02-27 11:15:43 +03:00

Author

Owner

Copy link

@whyscream commented on GitHub (Oct 30, 2018):

BTW it would be nice if proper documentation would eb in place on how to add DNSBLs to your setup that you do care about but is not in the default list. For instance lists that only target a specific country, or spam in a specific language.

<!-- gh-comment-id:434136442 --> @whyscream commented on GitHub (Oct 30, 2018): BTW it would be nice if proper documentation would eb in place on how to add DNSBLs to your setup that you do care about but is not in the default list. For instance lists that only target a specific country, or spam in a specific language.

kerem commented 2026-02-27 11:15:43 +03:00

Author

Owner

Copy link

@PatTheMav commented on GitHub (Jun 14, 2019):

I noticed the psky.me false positive today as well. At this point I fully agree with @whyscream: By default modoboa should not tap into obscure, anonymous or otherwise sketchy DNSBL services and focus on the well-established providers that have active policies and removal processes.

<!-- gh-comment-id:502147699 --> @PatTheMav commented on GitHub (Jun 14, 2019): I noticed the psky.me false positive today as well. At this point I fully agree with @whyscream: By default modoboa should not tap into obscure, anonymous or otherwise sketchy DNSBL services and focus on the well-established providers that have active policies and removal processes.

kerem commented 2026-02-27 11:15:43 +03:00

Author

Owner

Copy link

@ghost commented on GitHub (Oct 30, 2019):

bl.emailbasura.org started triggering false positives

<!-- gh-comment-id:548033060 --> @ghost commented on GitHub (Oct 30, 2019): `bl.emailbasura.org` started triggering false positives

kerem commented 2026-02-27 11:15:43 +03:00

Author

Owner

Copy link

@jquiros2 commented on GitHub (Nov 7, 2019):

bl.emailbasura.org started triggering false positives

Just found this thread after realizeing this too. emailbasura.org looks pretty darn basura itself by the way.

<!-- gh-comment-id:551149223 --> @jquiros2 commented on GitHub (Nov 7, 2019): > `bl.emailbasura.org` started triggering false positives Just found this thread after realizeing this too. emailbasura.org looks pretty darn basura itself by the way.

kerem commented 2026-02-27 11:15:43 +03:00

Author

Owner

Copy link

@ghost commented on GitHub (Nov 7, 2019):

i found https://poste.io/doc/getting-started (or https://github.com/dirtsimple/poste.io ) to be more actively developed, and less tiresome

<!-- gh-comment-id:551209419 --> @ghost commented on GitHub (Nov 7, 2019): i found https://poste.io/doc/getting-started (or https://github.com/dirtsimple/poste.io ) to be more actively developed, and less tiresome

kerem referenced this issue 2026-02-27 12:09:37 +03:00

[PR #1176] [MERGED] admin: added profile form to account update view. #2145

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

fix/sievefilters-allow-email-in-rule-name

dependabot/npm_and_yarn/frontend/axios-1.15.0

translations_04c0b653215cb5fa48ab101eae1a1917_ja_JP

translations_5d93982e9fd6dab991db4faf93ce9ded_ja_JP

fix/login-issue-3995

fix/sievefilters-issues

add-vitepress-openapi

2974-dmarc-empty-email

2.3.x

updated-doc-2.3.0

feature/OIDC

delete-all-alarms

translations_modoboa-admin-locale-en-lc-messages-djangojs-po--master_af_ZA

translations_modoboa-admin-locale-en-lc-messages-djangojs-po--master_ar

translations_modoboa-admin-locale-en-lc-messages-djangojs-po--master_ca

1.x

translations_modoboa-admin-locale-en-lc-messages-djangojs-po--master_sk

translations_modoboa-admin-locale-en-lc-messages-djangojs-po--master_tr

translations_modoboa-admin-locale-en-lc-messages-djangojs-po--master_es_ES

translations_modoboa-admin-locale-en-lc-messages-djangojs-po--master_uk

translations_modoboa-admin-locale-en-lc-messages-djangojs-po--master_zh_CN

translations_modoboa-admin-locale-en-lc-messages-djangojs-po--master_de_DE

translations_modoboa-admin-locale-en-lc-messages-djangojs-po--master_da_DK

1.8.x

1.7.x

1.6.x

1.4.x

1.3.x

1.2.x

2.8.2

2.8.1

2.8.0

2.7.2

2.7.1

2.7.0

2.6.5

2.6.4

2.6.3

2.6.2

2.6.1

2.6.0

2.5.1

2.5.0

2.4.11

2.4.10

2.4.9

2.4.8

2.4.7

2.4.6

2.4.5

2.4.4

2.4.3

2.4.2

2.4.1

2.4.0

2.3.6

2.3.5

2.3.4

2.3.3

2.3.2

2.3.1

2.3.0

2.3.0-beta.4

2.3.0-beta.3

2.3.0-beta.2

2.3.0-beta.1

2.2.4

2.2.3

2.2.2

2.2.1

2.2.0

2.1.2

2.1.1

2.1.0

2.0.5

2.0.4

2.0.3

2.0.2

2.0.1

2.0.0

2.0.0-beta.3

2.0.0-beta.2

2.0.0-beta.1

1.17.0

1.16.1

1.16.0

1.15.0

1.14.0

1.13.1

1.13.0

1.12.2

1.12.1

1.12.0

1.11.1

1.11.0

1.10.7

1.10.6

1.10.5

1.10.4

1.10.3

1.10.2

1.10.1

1.10.0

1.9.1

1.9.0

1.8.3

1.8.2

1.8.1

1.8.0

1.7.4

1.7.3

1.7.2

1.7.1

1.7.0

1.6.3

1.6.2

1.6.1

1.6.0

1.5.3

1.5.2

1.5.1

1.5.0

1.4.5

1.4.4

1.4.3

1.4.2

1.4.1

1.4.0

1.3.5

1.3.4

1.2.2

1.3.3

1.3.2

1.3.1

1.3.0

1.2.1

1.2.0

1.2.0-rc2

1.2.0-rc1

1.1.7

1.1.6

1.1.5

1.1.4

1.1.3

1.1.2

1.1.1

1.1.0

1.0.1

1.0.0

0.9.5

0.9.4

0.9.3

0.9.2

0.9.1

0.9

0.8.8

0.8.7

0.8.6.1

0.8.6

0.8.5

0.8.4

0.8.3

0.8.3-rc1

0.8.2

0.8.1

0.8

0.8-rc2

0.8-rc1

0.7.2

0.7.1

0.7

0.6.1

0.6

0.5

0.3

0.2

0.1

Labels

Clear labels   

bug

  

bug

  

dependencies

  

design

  

documentation

  

duplicate

  

enhancement

  

enhancement

  

enhancement

  

feedback-needed

  

help-needed

  

help-needed

  

installer

  

invalid

  

looking-for-sponsors

  

modoboa-contacts

  

new-ui

  

new-ui

  

pr

  

pull-request

Mirrored from GitHub Pull Request

  

pyconfr

  

python

  

question

  

security

  

stale

  

webmail

  

wontfix

No labels

bug

bug

dependencies

design

documentation

duplicate

enhancement

enhancement

enhancement

feedback-needed

help-needed

help-needed

installer

invalid

looking-for-sponsors

modoboa-contacts

new-ui

new-ui

pr

pull-request

pyconfr

python

question

security

stale

webmail

wontfix

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/modoboa-modoboa#1176

No description provided.