Emin Akbulut wrote:
OK thanks a lot, I though relays were only servers. We have 3000+
accounts from all over the country so I'm going to override the score
as lower. I also lowered DOS_OUTLOOK_TO_MX from 2.636 to 1.0
and lowered blacklisted IP scores because of dynamic IP usage
and now I eliminated high volumes of -UNSENT- false positives. False
negatives are better than false positives huh?
Hits on rules like DOS_OUTLOOK_TO_MX also usually indicate a problem of
some kind with your trust settings - trusted_networks,
internal_networks, msa_networks, etc.
I run a filter cluster that processes both inbound mail from the MX
cluster going in to customer mailboxes, and outbound mail sent by
customers through our outbound relay cluster, and have no problems with
outbound mail getting an extra 4 points due to the stupid things client
MUAs do in submitting mail.
Careful manual setting of all trusted_networks and related settings
makes misfires of rules relating to "is this a direct-to-MX message?"
almost impossible.
-kgd
