John Hardin wrote:
On Thu, 15 Oct 2009, LuKreme wrote:
On 15-Oct-2009, at 17:57, LuKreme wrote:
smtpd_helo_restrictions = permit_mynetworks,
reject_invalid_helo_hostname,
reject_non_fqdn_helo_hostname,
permit
Oh, and for the record, on my mail server these two restrictions stop
50% of all attempted connections. That's 50% that don't even make it
to transaction, much less to SpamAssassin.
I haven't run the numbers, but that sounds about like what I'm seeing too.
I'm using the same restrictions and reject_non_fqdn_helo_hostname
routinely drops around a third of all connections to my server. You guys
seeing rates closer to 50% probably just have a higher proportion of
spam (to ham) than me.
No point hitting DNSBLs with this traffic - may as well reject it up front.
