On 4/10/2010 5:49 PM, Stan Hoeppner wrote:
I reject most spam via other methods, mostly pcre/regex and cidr tables. My dnsbl queries reject less than 1% of my spam load. Plug the following dynamic/generic rdns regex table into your Postfix configuration and see if it catches some spam for you. It does a good job here. Given its size I'd recommend running it (and all your map files) via proxymap. Ask here if you're unsure or need help implementing proxymap. It bit me the first time I tried it.smtpd_recipient_restrictions = ... check_client_access regexp:/etc/postfix/fqrdns.regexp ...
You'll probably get more hits using check_reverse_client_hostname_access. That prevents some clients from sneaking through as "unknown" when they don't have a matching A record.
http://www.postfix.org/postconf.5.html#check_reverse_client_hostname_access -- Noel Jones
/etc/postfix/fqrdns.regexp http://www.hardwarefreak.com/fqrdns.regexp This regex file is free for anyone to use if you wish to. The FP rate should be zero since it matches only dynamic/generic rdns names.
