Keith Owens wrote:
> "jdow" (on Mon, 12 Jun 2006 16:03:46 -0700) wrote:
> >Greylist those who have not subscribed. Let their email server try
> >again in 30 minutes. For those who are not subscribed it should not
> >matter if their message is delayed 30 minutes. And so far spammers
> >never try again.
>
> Not true. I greylist and my recent logs show a pattern of spam code
> that tries 5 times at exactly 5 minute intervals, before finally giving
> up. Other spam code tries two or three times at one hour intervals.
> All designed by spammers to bypass greylist systems.
I have yet to setup any greylisting for any of my systems yet, but I would
greylist, and if they came back an hour later and was in blacklists, I
wouldn't allow it. This is one thing greylisting can do for you, defer it
until they are in blacklists.
Of course all rules need to be weighed for the server they are placed on. I
would do the above on my domain since I'm the only user, I might not on big
ISP.
I have noticed spam from zombies that were not in RBLs when it came in and 5
minutes later, they are in RBLs.
--
Lab tests show that use of micro$oft causes cancer in lab animals
Got Gas???
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to [email protected]
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/
[Index of Archives]
[Kernel Newbies]
[Netfilter]
[Bugtraq]
[Photo]
[Stuff]
[Gimp]
[Yosemite News]
[MIPS Linux]
[ARM Linux]
[Linux Security]
[Linux RAID]
[Video 4 Linux]
[Linux for the blind]
[Linux Resources]