Results 1 to 18 of 18
  1. #1

    Our SORBS nightmare

    Thought I would share our recent and ongoing experience with the SORBS rbl. We were unfortunate enough to be on the same net block as a spammer. Apparently, SORBS sent emails to our provider (we are co-located) but our provider says that they did not receive any communication from them. So SORBS lists the entire net block including our innocent ip addresses.

    I discovered our ip addresses listed on SORBS and open a ticket with them through their very user unfriendly web site. I politely communicate with “Joey” from SORBS who explains there is really nothing we can do except have our provider resolve the issue for the entire net block. Fine…not fair, but fine I’ll take it up with our provider. Our provider contacts them to get further information about the listing. They got one vague response that said exactly what was already on the SORBS database check. All further communications were (and continue to be) ignored by SORBS. My provider assures me there is no spam coming from anywhere in the net block so I try to contact SORBS again myself. I quoted their website this time…

    “Delisting. If the size of the listing is anything more than a single IP address, delisting can only take place when the spammer is no longer using the address space, in which case the size of the listing will be reduced down to the originally spamming IP addresses free of charge. The affected IPs (the ones used to send the spam) will only be delisted when US$50 is donated to a SORBS nominated charity or good cause.”
    I just want to get our ip addresses off the list…seems reasonable right? I get a response from SORBS that says this issue is not about fines but gives no further information on how to get delisted or why they don’t respond to my provider’s emails. So I email them again asking them to acknowledge that they received the emails from my provider….no response.

    Here’s the best part: So I go to the SORBS web site today and just for kicks I put our mail server ip address in the database check. They now not only have the net block listed but they actually have our mail server ip address individually listed too. The listing gives the ESMTP id number responsible for sending to a “spam trap” so I look it up in our log files….It’s the message I sent to them responding to our open ticket!!!

    This has gone on for over a month now and I’m pulling my hair out. I’d like to hear if anyone has any suggestions or similar experiences with SORBS.

  2. #2
    Join Date
    Jan 2003
    Location
    San Diego, California
    Posts
    336
    Quote Originally Posted by WebPhaser





    They now not only have the net block listed but they actually have our mail server ip address individually listed too. The listing gives the ESMTP id number responsible for sending to a “spam trap” so I look it up in our log files….It’s the message I sent to them responding to our open ticket!!!
    Proof please.

  3. #3
    Quote Originally Posted by Naes
    Proof please.
    Sure.

    From the SORBS database check:

    Received: from our.mailserver.com (our.reverse.com [XX.XXX.XXX.XX]) by desperado.sorbs.net (Postfix) with ESMTP id 3B88311475 for <[email]>; Sun, 11 Dec 2005 03:41:18 +1000 (EST)

    From our exim log files:

    2005-12-10 09:41:17 1El8id-000AGW-Rk => [email protected] F=<[email protected]> R=lookuphost T=remote_smtp S=12428 H=desperado.sorbs.net [203.101.254.251] C="250 Ok: queued as 3B88311475"

    Naes, I will pm you the actual ip address.

  4. #4
    err.. hmm. Guess I need 2 more posts to PM you.

  5. #5
    SORBS = horrible experience no matter what. They ought to be blacklisted from providing a blacklist.
    FrogJumper.com, Superb Cpanel Web Hosting.
    Excellent, High Paying Affiliate Program.

  6. #6
    Quote Originally Posted by goodydomains
    SORBS = horrible experience no matter what. They ought to be blacklisted from providing a blacklist.
    Yes, I see this stated a lot but there are numerous host that continue to use them as an rbl. Several of our clients do business with people that are on a host that uses SORBS. They receive the bounced messages and look to us to fix the problem.

    What do you say? Um, it wasn't our fault and we can't do anything to fix it....you're SOL? Of course they are mad and they have every right to be. We have even taken the time to contact other hosts to try to get them to add our client to their rbl whitelist. I personally have spent so much time and effort dealing with this listing it's crazy....and we (like our clients) are an innocent party in this.

  7. #7
    Join Date
    Jun 2003
    Posts
    1,070
    Welcome to the club! But I must say, at the very least they are active in removing the IP addresses if you follow their process. It took us two requests but the mail server IP address eventually was removed.

  8. #8
    Join Date
    May 2005
    Location
    Chicago, IL USA
    Posts
    1,428
    SORBS is notorious for idiocy like this. Best thing you can do is ask your datacenter to move your server to a different block and go on with life.
    ||| Mike Bowers - Marketing Director
    ||| atOmicVPS LTD
    ||| OnApp Powered Linux & Windows Cloud Hosting ► [Shared] ► [Reseller] ► [VPS]
    ||| Follow the atOmicVPS Blog

  9. #9
    Agreed - do not even bother with them.
    FrogJumper.com, Superb Cpanel Web Hosting.
    Excellent, High Paying Affiliate Program.

  10. #10
    Join Date
    Apr 2001
    Location
    Il
    Posts
    448
    I agree 100% you have a client, that has loose permissions, a hacker/spammer finds a way in and spams like crazy you notice the server going into over drive with load because of exim. You catch this 1 hour after it starts. The account gets turned off files removed permissions set correctly.
    Server gets listed spamcop and SORBS. You work with spamcop and they help you once you tell them the story and they unlist you. They have always worked with us.
    SORBS different story, now they demand a ransom from companies of 50.00
    This is BS..

    Would be a different story if we did not do our very best to stop spam and kill anything we find but we always have.
    http://www.realwebhost.net
    http://www.realwebhost.net/vps.php
    ICQ 120397604 |MSN : hotmail.com | AIM : rwhsupport | Yahoo: rwhmax

  11. #11
    Join Date
    Apr 2006
    Location
    The Mighty Jungle
    Posts
    257
    Do you suppose that anybody will ever sue SORBS for holding their business practices ransom or something like that? They could be seriously affecting some people.

    I should complain to SORBS about Microsoft just for kicks to see how long it takes for SORBS to go out of business. I get a lot of emails from MS I don't want and cannot seem to unsubscribe from.

  12. #12
    Join Date
    Dec 2004
    Location
    Romania
    Posts
    32
    I don't know if help some, but I wrote a method to get unlisted from SORBS net, if you have a Linux server listed.
    Read at http://www.grafxsoftware.com/faq.php...sorbsnet/1/13/

  13. #13
    Quote Originally Posted by WebPhaser View Post
    Um, it wasn't our fault and we can't do anything to fix it....
    get another IP block from your provider and direct the mails via it, that would be the easiest way around this.
    Imageleet.com - Premium Hosting Solutions Since 2006
    Shared Hosting, FFmpeg Hosting, Linux VPS and Dedicated Solutions.
    SSD, Litespeed powered, R1soft, cPanel | Softaculous | Rvsitebuilder + FFmpeg, Mencoder, Mplayer, Flvtool2, x264
    http://www.imageleet.com

  14. #14
    Join Date
    Dec 2004
    Location
    Romania
    Posts
    32
    Usually if is a local provider problem, I solve the issue by asking for a fix IP to my place. This mean that I pay 1EUR/month additional, but I have my own IP at home.

  15. #15
    2009 and still same weak service.
    Nobody reply. Nobody delist.
    We have an IP listed for 1 month! I can not understand how some admins/postmaster still use this database as email filtering! This is not maintained at all and service is the worst I ever saw (also the webpage!)

  16. #16
    Join Date
    Dec 2004
    Location
    Romania
    Posts
    32
    Yes, but is used by a lot of people so ....

  17. #17
    Join Date
    Jul 2005
    Location
    In the Internets
    Posts
    3,622
    Everyone hates SORBS, even innocent people.. Once you get on, it's very hard to get off.
    StableHost .:. Unlimited web hosting done right. Experience the unlimited difference.
    PingThat .:. Is your website down? Find out now with our QuickChecker technology.

  18. #18
    The way to deal with unreasonable black lists is to ignore them, *but* explain why to the appropriate people.

    "Yes, Mr. CEO, your critical email went missing, that's because your admin is using list x. This is something that you need to address internally."

    or,

    "Yes, Ms. CEO, your critical email never got to company X, that is because they are using list x. More correctly, it was delivered, but dropped by them. Your best bet is to ask your counter part at Company X to discuss this with their administrator."

    Just watch how fast company X stops using the list. It's just a creative application of "the squeaky wheel gets the grease".

    Some lists are used almost exclusively by small time administrators who are obsessed with spam or clueless. Large organisations are much more careful which lists they use. See above for the reason.

    You'll need to stand firm of course for this approach to work because it's a question of who blinks first. But, if enough admins do this, list x just vanishes due to disinterest.
    Last edited by plumsauce; 10-12-2009 at 05:18 PM.
    edgedirector.com
    managed dns global failover and load balance (gslb)
    exactstate.com
    uptime report for webhostingtalk.com

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •