On Fri, May 13, 2011 17:09, Ted Mittelstaedt wrote: > On 5/13/2011 1:58 AM, Giles Coochey wrote: >> Not quite - Google's retry may come from another server in a different >> range. > > if it did then mail from Google would be delayed significantly, like > 12-24 hours for example. >
Yes, exactly, this is the behaviour I experienced, I installed greylist-milter and wathced it operate for over a week, literally constantly operating a tail on my maillog. It was very effective at stopping spam, but various domains had various delays which were not tolerable. >> .. and because the ranges can change (over time) I tend to stay away >> from Greylisting, despite its effectiveness I am paranoid about false >> positives. >> > > I will say flatly you don't understand how greylist-milter operates > to make such a statement. I'm not going to post 4 paragraphs about > it here, you can look up how it works elsewhere. But just be aware > your statement is nonsensical, like answering "I never liked the > taste of blackberries" when someone says "the sky is a pretty blue today" > As I previously mentioned, I installed it and watched it operate for over a week. If you have the time to manually maintain exclusions for the peculiarities of various types of MTA and various ISPs then go ahead... For me I don't want to worry about whether mail I temporarily reject not ever reaching its destination. And I've got better things to do than spend time working out what is not getting through and coming up with innovative ways for fine-tuning the software. This is not intended as a slag-off of greylisting, simply a statement that it requires constant maintenance if you are going to be sure that all legitimate mail is reaching its destination. In my environment I cannot tolerate losing a legitimate message.
