Re: Anti-spam filters

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Martin Marques wrote:

John Summerfield escribió:
In postfix we are very picky about who we listen to, your IP must resolve, your helo name must resolve, your IP address must not me mentioned in any blocklist we use (spamhaus is the best). Those rules alone block at least half the spam.
My postfix those all the resolve sender MTA, but I'm totally against dnsbl as, for example, my ISP often gets in some of them. 

Your choice. This justifies mine:
Messages rejected using Anti-Spam site 649 Time(s)
We decline that mail, the sender knows about it. We don't have a lot of email accounts,that's directed to fewer than ten email accounts.
The host names associated with those emails are listed in the log summary, and I regularly cast my eye over it. They seem to be ADSL users, cable users, users with dynamic IP addresses. The come from domains in Israel, Poland, Switzerland, Germany, Russia, Canada, UK, France, Brasil, Greece, United Arab Emirates.
We're a very small school, our interests are our immediate community and we deal with Western Australian & Australian government agencies.
Probably, if the people who really own those computers configured their email clients to relay via their IAP's mail service, they'd have no problem reaching us.
Also, nobody I handle mail for speaks Chinese, Korean, Russian, Spanish or Portugese or expects mail from places where any of those is the primary language. Therefore, when I'm checking my logs and see an attempt to break in using ssh, or send spam I have no hesitation in blocking the entire network as revealed by whois. Mostly, it's a /24 network, but there are one or two /13s.
I would prefer to get 1 or 2 spams (which I don't get with my actual configuration) then lose mail due to very stricy mail policies. 

There's another 600-700 dropped because of protocol errors.
There's another 100 or so can't get ehlo/helo right. Their host names look much like those in the block lists we use.
If you are one who tries to send to us and you fail for any of those reasons, we reject the mail while you're still in smtp conversation. If your email is well-configured, you will get the proper notice.
After that, we accept the mail, and if it smells bad, it gets filed as spam. I personally have had two acceptable senders make it to my spam folder, my stockbroker, and microsoft when I needed to download something.
I get a few spams each day that don't get filtered out or rejected. I deal with those in pine.
I don't believe we lose any legitimate email. We have rejected a couple of sites who couldn't configure their mail service to comply with the relevant RFCs (we do adhere, and we expect you to too). 




--

Cheers
John

-- spambait
1aaaaaaa@xxxxxxxxxxxxxxxx  Z1aaaaaaa@xxxxxxxxxxxxxxxx
-- Advice
http://webfoot.com/advice/email.top.php
http://www.catb.org/~esr/faqs/smart-questions.html
http://support.microsoft.com/kb/555375

You cannot reply off-list:-)
[Index of Archives]     [Current Fedora Users]     [Fedora Desktop]     [Fedora SELinux]     [Yosemite News]     [Yosemite Photos]     [KDE Users]     [Fedora Tools]     [Fedora Docs]

  Powered by Linux