On Fri, Apr 8, 2016, at 09:58 AM, Wietse Venema wrote: > It is a superset, as the postscreen_blacklist_action parameter alows > you to choose between dropping the connection and logging the helo, > mail from and rcpt to, so that you can find out what mail is blocked.
Good point. I've so far been of the "it's bad, get lost" mind. > Writing to the postscreen access list (with fail2bain etc.) is > generally not supported. It can be done with LMDB but only if you > use the locking protocol described in lmdb_table(5). Otherwise the > result will be incorrect. I hadn't realized the need for locking. For me then, simplest seems that "known bad" can stay in fail2ban-ready firewall IPSETs, and "need to investigate a bit more" in postscreen's CIDR accces list. Thanks. Jason
