We run fail2ban to update postscreen blacklist which is cidr file. To make postscreen see the changes we have to reload postfix. Yesterday we found postfix was reloaded more than 3000 times. Sure it is not acceptable.
What would be the best way to refresh postscreen blacklist (something like kill -HUP) without paying the penalty of losing performance? Would changing cidr type to hash do the trick? Best regards, MU
smime.p7s
Description: Kryptograficzna sygnatura S/MIME
