Militantly FREE software support.
Militantly FREE software support.
NavigationUser loginLinux NewsClick the above for your daily dose of Linux news. Food for ThoughtWindows Error: 002 - No error yet ... Spam?See spam posts on this site? If so, please don't reply to the spam! Instead, just report the URL to the webmaster. |
clamsmtp spampd both @ SMTP timeRight now we're running postfix, amavis-new and maia mailguard & Amavis has been good to us so far, but clamsmtpd and spampd seem We'd like to move to rejecting ***NOT*** bouncing mail at SMTP By rejecting after DATA , we will not be sending back scatter to We understand that this means that we will have bursts of traffic We're running clamsmtp pre-queuing now per the postfix docs http://www.postfix.org/SMTPD_PROXY_README.html And this is working OK It looks like it is possible to chain things: postfix--->clamsmtp--->spamtpd--->postfix---> delivery ***pre-queueng***, not using content_filter I am curious about people's experience in production. see: http://www.irbs.net/internet/postfix/0601/1347.html -- Bookmark/Search this post with: 
|
• Debian Weekly News - Essential reading for any Debian fan. • Documentation - Debian's own authoritative documentation, including installation docs. • FAQ - Got questions about Debian GNU/Linux? • From Windows to Debian - Tips for converting from Windows to Debian GNU/Linux • Package of the Day. • Security - Security information and alerts! • Bug System - Bug tracking and instructions on reporting bugs. • CD Images - Where/how to get Debian GNU/Linux CD images. • Mailing List Subscription - Dozens of Debian-specific support mailing lists! • Mailing List Archives - Searchable archives of Debian's mailing lists. • Free Software Guidelines - Learn Debian's idea of what "free" software really is. • Package Listings - A very valuable tool: searchable, integrated with bug reports. • Apt-Get Sources - Sources for *.debs which are not official Debian packages. • Backports - Unofficial new software packages that have been "back-ported" to work with the Debian stable/official release. • Developer's Corner - Info about the people behind Debian, policies, and how to package *.deb files.
clamsmtp spampd both @ SMTP time
Hi,
"Dan MacNeil" írta 2007-11-30 21:41-kor:
> By rejecting after DATA , we will not be sending back scatter to
> forged senders
Have you already tried spamassasin-milter and clamav-milter packages?
They can say reject after DATA.
If you do a greylisting before DATA (eg. with postgrey), than many zombies
will bounce back from you, and it will relese many cpu time for you;-)
Cheers,
-- -------[ Free Software ISOs - http://www.fsn.hu/?f=download ]------- --
PÁSZTOR György e-mail:
Free Software Network (FSN.HU) phone @work: +36 62 54 6666
URL: http://people.fsn.hu/~pasztor/ cell.: +3620 512 3335
clamsmtp spampd both @ SMTP time
> "Dan MacNeil" írta 2007-11-30 21:41-kor:
>> By rejecting after DATA , we will not be sending back scatter to
>> forged senders
> Have you already tried spamassasin-milter and clamav-milter packages?
> They can say reject after DATA.
PÁSZTOR György wrote:
> If you do a greylisting before DATA (eg. with postgrey), than many zombies
> will bounce back from you, and it will relese many cpu time for you;-)
Yes,
Greylisting is wonderful magic against evil SPAM spirits, I fear
the day somebody ports a RFC compliment MTA to the zombie platform.
btw, we also figure to do DNSBL after greylisting in front of
virus and spamassassin. With spamassassin we figure to reduce
timeouts by turning off the network checks.
So far we've had some timeouts, but checking IP# against whois
suggests that they are people we want to connect with anyway.
Moving to a much, much beefier box should reduce even those timeouts.
--
clamsmtp & spampd vs spamassasin-milter & clamav-milter for SMTP
PÁSZTOR György wrote:
> Have you already tried spamassasin-milter and clamav-milter packages?
> They can say reject after DATA.
What advantages do spamassasin-milter & clamav-milter have over
clamsmtp & spampd ?
I've got the not milter packages working in a testing setup. So
far the only drawback is that the Recieved-From headers just say
localhost ...
--
clamsmtp & spampd vs spamassasin-milter & clamav-milter for SMTP
Hi!
"Dan MacNeil" írta 2007-12-01 13:43-kor:
> PÁSZTOR György wrote:
> >Have you already tried spamassasin-milter and clamav-milter packages?
> >They can say reject after DATA.
>
> What advantages do spamassasin-milter & clamav-milter have over
> clamsmtp & spampd ?
If a mail contain virus or spam, and clamav or spamassasin can say big
enogh probability for that, than you don't have to accept the mail.
After the end of DATA stream, the MTA will say an 5xx error code, and the
virus/spam will not make extra load on your server/mail queue.
Check this out:
http://www.postfix.org/SMTPD_PROXY_README.html
http://www.postfix.org/MILTER_README.html
Cheers,
-- -------[ Free Software ISOs - http://www.fsn.hu/?f=download ]------- --
PÁSZTOR György e-mail:
Free Software Network (FSN.HU) phone @work: +36 62 54 6666
URL: http://people.fsn.hu/~pasztor/ cell.: +3620 512 3335
clamsmtp spampd both @ SMTP time
* Dan MacNeil wrote:
> It looks like it is possible to chain things:
>
> postfix--->clamsmtp--->spamtpd--->postfix---> delivery
>
> I am curious about people's experience in production. see:
i hacked up smtpprox in combination with postfix smtpd_proxy_filter
option this works quite well. But i am doing only spamfiltering right
now. But it would be easy to expand the smtpprox do also add clamav.
Only problem you really have to monitor your mail load. So that you
do not run or set to strict timeouts. Because once in a while spamd
needs a little bit more time :) I guess one should use this feature
with some TCP rate limits to not get DOSed to easily.
cheers
--lars
--