On 1/21/2011 12:05 PM, Noel Jones wrote:
On 1/21/2011 10:26 AM, Jerrale G wrote:
postscreen_bare_newline_wait = time that must be waited in
between NEW connection state and the reconnect, for example,
20m before the connection is considered from a normal smtp server
I don't see any such parameter. Are you referring to
postscreen_bare_newline_ttl ?
I think the docs are pretty clear that postscreen_bare_newline_ttl is
the time during which clients are not re-tested and the previous
result is used. Frequent re-testing is disruptive to the mail flow
from legit clients -- the default 30d seems about right.
This is how postscreen_bare_newline works, right? It assumes
that spammers only try to connect once when, really, they may
try to connect many times within 1 minute, fooling
postscreen_bare_newline as it currently is.
No, frequent reconnects do not affect the bare newline tests.
-- Noel Jones
Thanks for the reply Noel.
I know there isnt such parameter; i was suggesting it :)
I explained why it is needed, as the bare_newline is a good idea and the
same principal we used about 4 years ago, before we moved to postfix. it
is to deter bottlers, on the idea that bottlers and spammers with non
rfc-complian smtp bots only try to connect one time. However, a small
percentage will also try a second time at random intervals, usually a
time more or less than a real, "accredited" smtp server would wait
before retrying delivery. So, we need a postscreen_bare_newline_minwait
and postscreen_bare_newline_maxwait, which would be the minimum and
maximum time a NEW client would have to wait before reconnecting before
it is considered an OLD, passed client by postscreen_bare_newline.
*/The idea is that spammers that wait too long to reconnect should be
still considered NEW instead of making them considered OLD by the
bare_newline cache and the spammers that try to reconnect too early,
less than 2 minutes or so, should still be considered NEW still, instead
of OLD./*
To increase its effectiveness, we actually need the parameter
Jerrale G.
SC Senior Admin
