On 7/7/2011 11:20 PM, ricardus1867 wrote: > > Hi! > > While crawling trough my logs, I've noticed a couple of bots getting > rejected because of Improper use of SMTP command pipelining because of the > reject_unauth_pipelining in smptd_recipient_restrictions. So I decided to > give the old "sleep" trick a try. Only for unknown hosts, ofc...
Sounds as if it was working just fine before you started mucking with it. My first thought is broken test procedures. Which you don't describe. Or improper analysis of evidence. Which you don't provide. smtpd_delay_reject changes the timing of postfix restrictions. It is strongly recommended to leave this at the default setting. > ... > I'm using postfix 2.8.3 btw. The sleep pseudo-restriction was a nice hack when nothing better was available, but could cause more trouble than it was worth by tying up valuable resources, and it made it too easy to penalize everyone to catch a handful of bad actors. Instead of sleep, use the postscreen feature in 2.8 to get the grown-up version of improper pipelining and early talking detection. -- Noel Jones
