6 \u0441\u0435\u043d\u0442\u044f\u0431\u0440\u044f 2016�\u0433. 12:55:16 CEST, "Marcus Schopen lists-yahoogroups@... [milter-greylist]" <milter-greylist@yahoogroups.com> \u043f\u0438\u0448\u0435\u0442:
>On 2016-09-06 11:35, Marcus Schopen lists-yahoogroups@...
>[milter-greylist] wrote:
>> Hi,
>>
>> got some .ua spam today and was wondering why the delay for hosts
>> without reverse DNS doesn't work:
>>
>> Copied from:
>>
>http://milter-greylist.wikidot.com/greylisting-hosts-without-reverse-dns
>>
>> # Greylisting Hosts Without Reverse DNS
>> racl greylist domain
>> /^\[[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\]$/ delay 1h
>>
>> Logfile:
>> -----------
>> Sep 6 10:57:54 mailin sm-mta[12571]: u868vnV3012571:
>> from=<tonva@...>, size=689, class=0, nrcpts=1,
>> msgid=<001601d2081b$513e1cd0$311d8ada@MatricPCltpl9o>, proto=SMTP,
>> daemon=MTA-v4, relay=[117.198.104.52]
>> Sep 6 10:57:54 mailin sm-mta[12571]: u868vnV3012571: Milter add:
>> header: X-Greylist: Delayed for 00:10:11 by milter-greylist-4.3.9
>> (...);
>> Tue, 06 Sep 2016 10:57:54 +0200 (CEST)
>> -----------
>>
>> The 10 minutes delay is default, but above rules seems not to fit,
>> although it is set before
>>
>> racl greylist list "grey users" delay 10m ......
>>
>> Is "domain" the wrong keyword here?
>
>
>Btw: is it a good idea not to delay such servers, but to blacklist?
>
>Ciao!
Arguable. Usually having control over DNS including PTR entries of assigned IP addresses is a sign of legit relays. But not all ISPs are forthcoming in adding or delegating such names, and some legit mail servers are run from homes on static addresses from consumer ranges.
In my rulesets this adds a big score malus to delay longer in greylists, and by the time this mail might be accepted sender may be already in DNSBL.
Jim
--
Typos courtesy of K-9 Mail on my Samsung AndroidMessage
Re: [milter-greylist] Greylisting Hosts Without Reverse DNS doesn't work
2016-09-06 by Jim Klimov