On Fri, 29 Jul 2016 18:34:30 +0200 Matus UHLAR - fantomas <uh...@fantomas.sk> wrote:
> what do you use? DCC? No, we have our own code. > >1) If our customer has whitelisted a sender, but the whitelisted > >sender is in the From: header and not the envelope, we want the > >ability to skip greylisting in that case. Yes, I wouldn't choose to > >do that, but... the customer is always right. (*snicker*) > does greylist produce that many problems that this is important? I don't think it does, but again... our customers have different opinions on the matter. > >2) Spammers sometimes send from the same (IP, MAIL From, RCPT To) > >triplet but mutate the message subject. If you mix the message > >subject into the greylisting criterion, it makes greylisting even > >more powerful. > I don't get it... when you greylist before the data phase, you > greylist completely unrelated on Subject... Maybe most implementations do, but we use a hash of (sending-IP, mail-from, rcpt-to, subject) as the greylist key. (We actually use only the first three octets of an IPv4 address or the first 64 bits of an IPv6 address to cope better with organizations that legitimately have a pool of sending MTAs that round-robin the attempts.) Regards, Dianne.
