On 25/06/19 17:42, Matus UHLAR - fantomas wrote:
On 25.06.19 07:52, John Hardin wrote:
I'll let others address SA issues with this, I just want to point out
an alternative:
Many sites consider Zen reliable enough for it to be used at the SMTP
level as a poison-pill DNSBL.
That would avoid any chance of it being used "too deeply"...
no. Many people consider Zen reliable enough to reject connections from
listed IP. Deep header scanning is something very different.
ZEN is safe enough to reject at SMTP level if you can do it on your MTA
(avoiding unnecessary CPU usage by SA)
It's also useful for deep header scanning, just remember to avoid PBL
return codes when you do that :)
AuthBL also proved to be useful and doesn't create FPs even if you
weight it 80% of your required_score
--
Best regards,
Riccardo Alfieri
Spamhaus Technology
https://www.spamhaustech.com/
