John Robinson wrote:
> <snip>
> Well, don't do that; reject permanently, and they should never try
> again. You can issue a message like "congratulations! your message
> scored X in our spam filters", too. It won't make much difference to
> spammers, but any real users' messages which hit your spam filters will
> get bounced back to them - by *their* mail server - so at least they
> know the message didn't get through, and why.
>
> Cheers,
>
> John.
>
Hi,
As some of you mentioned, we've changed the way it works, and now add an
extra header when we mail something to the outside world (add_header
within the remote_smtp transport).
And we only allow inbound bounces that contain this header. If it
doesn't exist, we just reject it with an extra message on why the
message is permanently rejected.
So far, we've filtered out over 30 tot 50k messages per server, and
normal mail seems to pass without much delay.
Note that this was not our idea, but we've changed the following concept
a bit, so it could work in our configuration;
http://psg.com/%7Ebrian/software/authbounce/configure-authbounce.txt
I hope someone will be able to use it in the future.