Hamster Playground comes with a "ready-to-use" script named "
and an accompanying script module named "
The script will lookup the IPs in the "
of new mails and add "
X-RBL-Warning:" headers for senders
listed in any of the configured RBL.
Before you use the script, it is strongly suggested to only work with
a copy of that script, because the one named "
will be overwritten next time you update Hamster. So copy or rename this script
My-RBL-Check.hsc" first if you want to change it.
The only required configuration is the list of RBL hosts to be checked. The demo script already contains some widely used ones, highlighted in the script snippet below:
Demo-RBL-Check.hsc" script (or your personal
My-RBL-Check.hsc" script) is not intended to be started
manually, it has to be started automatically whenever a new mail comes in
To achieve this, just assign the script to the action named "
Be sure to mark the "Wait" option for it, but do not mark
the "Lock" option!
After assigning the script to the "
action, every mail fetched from an external POP3 server will get additional
X-RBL-Warning:" headers whenever a sender is listed in
one or more of the configured RBL.
X-RBL-Warning:" headers will contain the
<RBL-HOST> returned <RESULT> (<COMMENT>) for
<RBL-HOST> is the RBL host as given in the script.
<RESULT> is what the host has returned.
<COMMENT> is a description of the result as set in the script
(just "listed" if none given).
<IP> is the IP number that was checked.
<POSITION> is a counter for the "Received:"
header containing the IP ("1st", "2nd",
"3rd, "4th" etc.).
X-RBL-Warning: sbl-xbl.spamhaus.org returned 127.0.0.4 (spam source) for 188.8.131.52
X-RBL-Warning: zz.countries.nerd.dk returned 127.0.1.154 (from .kr) for 184.108.40.206 (1st)
The information of the RBL lookup is now contained in the "
headers of mails, so this header can be used to filter out unwanted mails, e. g.
by scoring them down with "Mail Traps":
Before someone asks: The regular expression patterns in the examples shown above just have a "." (=any character) where a "\." (=dot character) would be more appropriate. This is intended to improve readability and really doesn't matter in this case ...
[www.elbiah.de Hamster Playground Documentation]