On Mon, 14 Jan 2008 10:47:57 -0500
"m. allan noah" <[EMAIL PROTECTED]> wrote:
> On 1/14/08, Chris Lewis <[EMAIL PROTECTED]> wrote:
> > Michael Salbinger wrote:
> > > my greylisting mechanism is blocking too much mails.
> > > not only spam, its blocking web.de and so on.
> > > how can i configure this thing right?
> > > my denysoft_greylist.dbm has 2900000 ips in it.
> > > am i able to delete it or such thing?
> >
> > I believe it's _supposed_ to do that (the DBM is going to have a
> > denysoft entry for every IP it greylisted the first time). Are you sure
> > that web.de's email isn't getting through when it retries?
> >
>
> for all the providers that use large numbers of outgoing email
> servers, you will get lots of dbm entries. i ended up:
>
> 1. writing my own version of a guessing algo that used spf or hostname matches
> 2. no longer matching on receiver email address
> 3. increasing timeouts drastically
>
> but in the end, i gave up on greylisting as a main-line defense.
You can try my dsnwl plugin [1] and then modify / wrap the greylisting
plugin to skip greylisting (or use hook_skip [2] for this) for all
hosts in the dnswl.org database. Probably all hosts listed in that DB
will come back after being greylisted, so we can just skip greylisting
for them.
Hanno
[1]: http://svn.perl.org/qpsmtpd/contrib/vetinari/dnswl (yes, I knew
about the dns based plugin, but I wanted the information at
connect)
[2]: http://svn.perl.org/qpsmtpd/contrib/vetinari/hook_skip/ (not in
core until I'm sure it doesn't slow down high traffic setups too
much)
