Yahoo Groups archive

Milter-greylist

Index last updated: 2026-04-28 23:32 UTC

Message

Re: [milter-greylist] planned features, call for volunteers

2007-01-05 by Techwolf

manu@... wrote:
> Here are the next planned features for the CVS version. Feel free to
> comment:
>
> 1) SMTP DATA stage ACL
>
>   
One of the most powerfull features of milter-greylist is that it
processes the mail before the data stage, saving a ton of bandwidth and
resources. Remember that in some areas, all the ISPs charge by the MB.

If you decide to do this, at least have a ./configure --nodata

On the server I take care of, I need to have a resorse light version
because its allready 400Megs deep in swap and I can't add more without
slowing it down even more.(1) And I'me sure i'me not the only one that
wants this, imaged the ones that processed a million mails per week/day.
They would have to add more servers just to handle the data stage filter.

There are plenty of data stage milters out there. Like milter-clamav,
milter-spamassassan, milter-mimedefang, and a search would get even more
data stage filters.

Perhaps a sujustion of seperating this into a milter-datafilter? There
can be more then on milter, I have three on my server.

> 4) SPF, AUTH and STARTTLS integration in ACL
> Example will tell more than a login explanation
> racl whitelist spf
> racl whitelist auth
> racl whitelist starttls
>
> I wonder if this is of some use, or if it's overkill: 
> racl whitelist auth "login"
> racl whitelist tls "cn=login,dc=example,dc=net"
>  
>
>   
I like to have spf move from global to acl rules. spl for spl pass,
splfail for spl fail and splnone for server that don't have spl setup.

An example

dnsrbl "spamhaus" zen.spamhaus.org 127.0.0.2
acl greylist dnsrbl "spamhaus" delay 24h autowhite 3d
acl greylist splpass delay 5m
acl greylist default delay 30m

The above would allow the use of spl to lower or whitelist spf server but the spammers that use it will get greylisted or blocked by the rbl acl before the acl spl check.


Sorry for the spelling, thunderbird spellcheck sucks and won't let me
compose a repley in plain text.

--Techwolf

1) Plans are in the works to tranfer to a larger and better server, but
the migration is going to take quite a while to upgrade it all from
Centos 3.x to later version or gentoo, still desiding and is going to
test things first to see what is better.

Attachments

  • No local attachments were found for this message.

Move to quarantaine

This moves the raw source file on disk only. The archive index is not changed automatically, so you still need to run a manual refresh afterward.