Re: [exim] HELO delays

Top Page
This message is part of the following thread:
Mthe complete thread tree sorted by date
M\Jeremy Harris at <-
MM 
Delete this message
Reply to this message
Author: W B Hacker
Date:  
To: exim users
Subject: Re: [exim] HELO delays
Marc Haber wrote:
> On Fri, 10 Nov 2006 22:12:25 +0800, W B Hacker <wbh@???>
> wrote:
>> But specifically NOT allowing pipelining (and enforcing sync) tosses off a whole
>> 'nuther class of spambots.
>
> I have always thought that these were caught before PIPELINING was
> advertised? Is it adviseable to switch off PIPELINING on the gateway?
>

Well it is advertised with the banner, (or not) and selectable early-on, so....

A year ago, I'd have said 'heck YES' - as NOT advertising pipelining was logging
quite a few arrivals where they just charged ahead and got hteir ashes tossed.
Ironically including one bona-fide MSN server that was misconfigured for about a
day (rest of their pool was OK).

Today, I'd say 'can't hurt'.

For the small/medium operator - where legit arrivals are not all that heavy, it
imposes no significant end-to-end time penalty, and may help keep the RAM
cleaner. An IPS with heavier concentrations of arrivals might feel differently.

But 'bots have largely gotten better programmed, as I now see only a few cases
per week where this has been triggered, despite a major increase in total arrivals.

We do relax the rules once we recognize an auth'd client or 'family' MTA.

YMMV,

Bill



This message was posted to the following mailing lists:
Exim-users
Mailing List Info | Nearby Messages		<-[exim] Second class EmailRe: [exim] Ratelimit Tricks->
Tahini and Hummus and Cumin Development Archives administrated by cumin AdminsLurker (version 2.3)