Re: [exim] anti-spam pointers please

On Wed, 3 Apr 2019 at 18:59, Richard Jones via Exim-users <
exim-users@???> wrote:

> On Apr 02, Richard Jones via Exim-users wrote
> > I've had much more success with other techniques, greylisting,
> > zen.spamhaus.org, delayed HELO, and fail2ban.
> >
> > Very little then gets through the spamassassin, and it deals with the
> > rest.
>
> Here are some metrics for you, logs run from the start of the year:
>
> # Number of successful connections
> grep "H=" /var/log/exim4/mainlog | wc -l
> 26046
>
> # Spam messages as scored over 2.0 by SA
> grep "Spam message" /var/log/exim4/mainlog | wc -l
> 38
>
> # Messages blocked by Spamhaus
> grep "zen.spamhaus.org" /var/log/exim4/mainlog | wc -l
> 710
>
> Connection attempts blocked by Fail2Ban
> IMAP: 52361
> Exim: 24395
> Exim+: 7545
>
> The last one is my own exim rules and catches honey-pot addresses,
> previous spam hosts, previous spamhaus catches, and SPF hard fails.
> It's purpose is mostly to keep my logs cleaner.
>
> Thanks,
>
> R
>
>
Hi Richard,

Would you be willing to share your fail2ban config bits?
I have never used fail2ban, so would like to install and try, starting from
a vantage point.

--
Best regards,
Odhiambo WASHINGTON,
Nairobi,KE
+254 7 3200 0004/+254 7 2274 3223
"Oh, the cruft.", grep ^[^#] :-)