On 8/4/2012 10:08 AM, /dev/rob0 wrote: >> postscreen_client_connection_count_limit = 10 > > I'm not sure why you did this. Some MTAs, notably qmail, are likely > to assault you with many simultaneous connections. This non-default > setting might cause difficulty at times in receiving legitimate mail, > albeit from impolite clients.
This slows legit clients down no more than greylisting does as it simply returns a 4xx to each excess connection. If you think that's harsh I limit concurrent connections to 4, though I'm doing so with smtpd as I don't use postscreen. It works very well. I have a single list server for which it has caused recurring problems (see my thread) due to a misconfiguration on their end, and the fact they use sendmail. They are actively working on the problem. -- Stan
