v.dimit...@synergetic.ag:
> Hi All,
>
> I understand that maintaining a (small) temporary whitelisting is
> more appropriate way, but still for me also make sence to have a
> temporary blacklisting maintained the same way postscreen temporary
> whitelisting does.
Can you use rbldnsd or memcached? That should perform better than
sharing a database through the proxymap server (proxymap is not
designed for the low-latency lookups that postscreen requires, and
MySQL is totally unsuitable from a performance point of view).
You can use postmap to lookup/add/delete entries in a memcache table.
Wietse
> Is it possible to provide a command line tool, which trough proxymap
> can change postscreen_cache_map records ( add / delete ) ? This
> way it will be much easier and faster to work with for example
> fail2ban without the need to reload Postfix ( as stated in "postscreen
> blacklist painful refresh " thread from Anon Wed May 23, 2012 9:23
> am).
>
>
>
>
> At the moment i'm considering to implement a fail2ban + Mysql +
> Postscreen test system,
> "postscreen_access_list = mysql_access_list.cf"
> leaving TTL to Mysql, but so i'm facing the limit of max number
> simultaneous connections because of mysql table instead of btree/cidr
> etc.
>
>
>
>
> Exscuse my lack of deep knowage about it ... and my english.
>
>
>
> Best Regards Vladislav Dimitrov
