Milter-greylist

Only a short note on this. When you only accept mails for existing users 
and return a error for all
non existing users, it's easy for a spammer to checkout which email 
addresses actually exist. If you
have milter-greylist in the first line of defense (under the condition 
the spammer only makes one try
per email address) he wouldn't get the info if the user exist or not....

Alan Clifford schrieb:
> On Fri, 20 Jan 2006, Oliver Fromme wrote:
>
> OF> 
> OF> Is it possible _not_ to greylist those, but reject the
> OF> mails permanently (and immediately)?  In other words,
> OF> a permanent "User unknow" should take precedence over
> OF> temporary greylisting.
> OF> 
>
> I have a wild card entry in my sendmail's virtual user file (note I have 
> added  .example a few times in this post):
>
> @...            error:550 "Spam problems. Try 
> alan+newcontactone@..."
>
> which means I have to have separate entries for the names I actually use, 
> like:
>
> alan@...   alan
> lists@...            alan
>
> milter-greylist doesn't leave any trace in the maillog for false addresses 
> except, for example, when I sent one myself from my gmail account when it 
> noted that the ip was in the exception list.  But there is no entry in the 
> greylist.db for the address I used.
>
> Something is not 100% right though, as the failure message delivered to my 
> gamail account had error 553 in it rather than 550 but it appears to work 
> anyway.
>
> Technical details of permanent failure:
> PERM_FAILURE: SMTP Error (state 9): 553 5.3.0 
> <falseaddress@...>... Spam problems. Try 
> alan+newcontactone@...
>
> Looking at greylist.db, all the @... entries have a known local 
> part.
>
>