Milter-greylist

> I recently discovered those new yahoogroups MTA:
> 
> addr 216.155.201.59     #Yahoo groups
> ... 
> 
> No way to describe as a subnet :-/

I allow yahoo mails via "acl whitelist domain .yahoo.com" for quite
some time now, and couldn't see any ill effects (ie. spam from
machines under .yahoo.com). Could be a workaround.

Allowing the specification of IP ranges would probably be nice
to have, and of course a DNS based list of broken MTAs as manu
suggested would be the perfect solution - just needs somebody
to maintain it, and defining "broken" could be argued - is it
just MTAs which never re-send, those which use different from
addresses for each re-try, or also those that need a long time
for the re-send. Not sure if a global whitelist would fit 
anyone.

My setup is rather liberal, with subnetmatch /24 and a long
whitelist (I tend to put whole domains there if I see multiple
auto-whitelisted entries from certain domains/IP-ranges). This
doesn't result in more spam slipping through.

mp.