Joel Reicher <joel@...> wrote:
> OK, at least that addresses my concern for known mail farms, but the
> larger part of my concern is for *unknown* mail farms. When mail first
> arrives from them, it can be greylisted a very, very long time if the
> maillog and greylist.db trawling isn't done often enough. I was hoping
> making the greylisting facility SPF-aware would solve this.
If I understand correctly your idea, you want to do this:
if (spf)
greylist (*, from, rcpt)
else
greylist (addr, from, rcpt)
What happens if a spammert sends from a botnet with from addresses in a
domain that has a ?all SPF record (ie: any host may send mail from the
domain)?
--
Emmanuel Dreyfus
http://hcpnet.free.fr/pubz
manu@...Message
Re: Handling mail farms (was Re: [milter-greylist] planned features, call for volunteers)
2006-12-25 by manu@netbsd.org