Fred Morris via Postfix-users wrote in <alpine.LSU.2.21.2411131614460.23399@flame.m3047>: |On Thu, 14 Nov 2024, Steffen Nurpmeso via Postfix-users wrote: |> |> I have a somewhat hard time understanding why greylisting shall be |> useful for known domains, unless (maybe) these are somewhat |> top-level ones?
|Coincidentally I'm writing a blog post about this (not ready yet). | |* Domain Takeover |* Infrastructure Takeover |* Sending vs receiving | |If somebody takes over your domain they can change host addresses as well |as MX hosts and SPF. | |Most of our efforts are focused on receiving mail, but it's worth noting |that if a recipient has been subject to a DNS takeover you could send mail |to the bad guys, and maybe they're polite enough to forward it on to the |intended recipients after review/edits. Greylisting (or graylisting as my thing names it) uses timeouts. I have forgotten how other software i looked at does it, (i have also forgotten how postfix's address verification caches btw), but my own "touches" database entries when it sees them. Ie meaning the timeout is reset, it will then take another 30240 minutes (here) until an entry becomes invalid. Sounds like a problem. --steffen | |Der Kragenbaer, The moon bear, |der holt sich munter he cheerfully and one by one |einen nach dem anderen runter wa.ks himself off |(By Robert Gernhardt) | |And in Fall, feel "The Dropbear Bard"s ball(s). | |The banded bear |without a care, |Banged on himself fore'er and e'er | |Farewell, dear collar bear _______________________________________________ Postfix-users mailing list -- postfix-users@postfix.org To unsubscribe send an email to postfix-users-le...@postfix.org
