[Mimedefang] DoS??

Steffen Kaiser skmimedefang at smail.inf.fh-bonn-rhein-sieg.de
Tue Oct 18 02:09:36 EDT 2005

On Mon, 17 Oct 2005, WBrown at e1b.org wrote:

>> Anyway.. helpful hint: rsync or otherwise mirror your whitelists to a
>> local nameserver as much as possible, if you handle more than a decent
>> amount of email. And run a caching nameserver on every mailserver.
> The DNS servers in question are local, just another subnet.  A local

Then it is not local -- for the services on the mail server :-)
> The jammed up IP stack even was causing problems connecting to the CanIt
> database server occasionally.

I do not suppose that the stack is jammed awhole, but the queue of the 
ethernet card, right? So to use a DNS cache on localhost would definitely 
help to keep the IP stack OK.

Actually, I saw a benefit in to have a local DNS cache in the past, 
because our mail server had rejected mails even to itself, because it 
couldn't verify its own domain via DNS.


Steffen Kaiser

More information about the MIMEDefang mailing list