On 1/14/08, Chris Lewis <[EMAIL PROTECTED]> wrote: > Michael Salbinger wrote: > > hi, > > > > my greylisting mechanism is blocking too much mails. > > not only spam, its blocking web.de and so on. > > how can i configure this thing right? > > my denysoft_greylist.dbm has 2900000 ips in it. > > am i able to delete it or such thing? > > I believe it's _supposed_ to do that (the DBM is going to have a > denysoft entry for every IP it greylisted the first time). Are you sure > that web.de's email isn't getting through when it retries? >
for all the providers that use large numbers of outgoing email servers, you will get lots of dbm entries. i ended up: 1. writing my own version of a guessing algo that used spf or hostname matches 2. no longer matching on receiver email address 3. increasing timeouts drastically but in the end, i gave up on greylisting as a main-line defense. particularly annoying is some versions of Exchange will hold a mail in an invisible bucket and not retry delivery until the server is restarted, if they get a tempfail at the wrong moment. it might still have some use as a second line for any mails that warrant suspicion. allan -- "The truth is an offense, but not a sin"
