Re: [exim] Greylisting again.

Top Page
Delete this message
Reply to this message
Author: David Woodhouse
Date:  
To: Grant Peel
CC: exim-users
Subject: Re: [exim] Greylisting again.
On Sat, 2008-04-26 at 21:58 -0400, Grant Peel wrote:
> Comments, concerns, criticisms and praise all welcome.


You don't seem to be bypassing the greylist for hosts which are known to
resend mail. So you're delaying a lot of mail for no benefit. Once a
given host is observed to queue and retry, you know that there's no
point in greylisting mail from that host again.

You seem to defer the message in the case where MySQL goes AWOL, rather
than accepting it. That's an interesting decision, since it will quite
possibly lead to messages being deferred for ever.

You also seem to be greylisting mail even when it isn't at all
suspicious. Some prefer only to greylist mail which looks dodgy, rather
than just a blanket delay on _everything_. Obviously, you do it in the
DATA ACL for that, so you can actually see the message.

See http://david.woodhou.se/eximconf/include/acl-greylist-sqlite for
some ideas, perhaps.

(Also, rejecting for SPF fail is particularly 'brave'. I'd recommend
googling for 'sender address forgery' and reading the first link that
Google shows up.)

--
dwmw2