[Mimedefang] spamtrap on secondary MX

David F. Skoll dfs at roaringpenguin.com
Wed Nov 24 12:12:50 EST 2004


On Wed, 24 Nov 2004, -ray wrote:

> > The crucial thing to minimize impact is that once a given machine
> > retries, you remember this and never greylist for that machine for 30 days
> > or so.  This gives you all the benefits while greatly mitigating delays
> > of legitimate e-mail.

> When a machine retries, you whitelist that IP for 30 days regardless of
> other sender/recipient pairs?

Yes.  If a machine retries once, odds are it will retry all the time,
so it's pointless to greylist it.  (The machine isn't actually "whitelisted",
it's just marked "Do Not Greylist")

> Do you whitelist the entire IP or the first 3 octets?

Entire IP.  Most organizations that have a pool of senders only have
5-10 machines, so they quickly get into the "Do Not Greylist" database.

Regards,

David.



More information about the MIMEDefang mailing list