Yahoo Groups archive

Milter-greylist

Index last updated: 2026-04-13 23:57 UTC

Message

Re: [milter-greylist] Not getting all email

2015-03-31 by Jim Klimov

29 \u043c\u0430\u0440\u0442\u0430 2015�\u0433. 18:48:48 CEST, "john_espiro@... [milter-greylist]" <milter-greylist@yahoogroups.com> \u043f\u0438\u0448\u0435\u0442:
>I am running  4.3.9-1 on Ubuntu.  I have a gmail account that forwards
>to my email address.
>
>lately, I have started to notice that not all of the messages that get
>sent to my gmail account get forwarded to my normal email address.   To
>verify, I set the option to forward all mail from google to my accoutn
>as well as keep a copy on the gmail server.  
> 
>
>- I thought that milter-greylist automatically whitelisted mail coming
>from spf domains.  Am I wrong?
>- There was talk of a awbyspf option... does that exist? Would it solve
>my problem?
> 
>
> Is there a solution to allow for spf records to be whitelisted?
> 
>
> My config:
> 
>
> socket "/var/run/milter-greylist/milter-greylist.sock"
>user "smmsp"
>
> racl whitelist list "my network"
>racl whitelist list "my friends"
>racl whitelist list "broken mta"
>racl greylist not helo /\./ delay 4h
>racl blacklist spf fail
>racl greylist default delay 10m autowhite 10d
>
>  

Generally, you should not blindly trust spf (nor likely dkim, nor any dynamic rule alone) - non-botfarm spammers use it too. Use dnsrbl before spf, and dnsrwl before, and prepend your manual black/white list rules yet before.

In my setups, rules without a certain black/white outcome just add or subtract a bigger or smaller spam-probability score into a variable based on spf, reverse dns names, patterns that look like dialup hostnames, p0f fingerprints (windows desktops should not post directly) etc., and the resulting score influences how long a greylisting delay would be, from a couple of minutes (proper hosts should at least retry) to several hours (let known spammers get honeytrapped into certain rbl's by that time).

This is yet not bulletproof, some spam sips through (mostly thru compromised proper server/accounts) and some valid mail is stuck for longer than comfortable (mostly with hosted email on improper DNS PTR names) - though manual whitelists do help here after a first user complaint ;)

HTH, Jim Klimov 

--
Typos courtesy of K-9 Mail on my Samsung Android

Attachments

  • No local attachments were found for this message.

Move to quarantaine

This moves the raw source file on disk only. The archive index is not changed automatically, so you still need to run a manual refresh afterward.