[Mimedefang] Greylisting netmask
Jonas Eckerman
jonas_lists at frukt.org
Mon Feb 5 09:22:42 EST 2007
Jeff Rife wrote:
> I'm starting down the "roll my own" greylisting track, and I'm curious
> what other people use for a netmask in comparing IP addresses in the
> list.
I use a /24 mask (actually, just a regex on the address string).
I do this before storing in the greylist, so only the first three bytes of the address are actually stored in the greylist table.
I also have a separate table with full addresses of hosts that has retried and passed the greylist. Hosts in that table are not greylisted at all (until their entry expires).
> issue...it's the fact that you
> can't use this to directly query the database, and so performance can
> be poor.
If you apply the mask before storing the address you can do a simple exact query.
Regards
/Jonas
--
Jonas Eckerman, FSDB & Fruktträdet
http://whatever.frukt.org/
http://www.fsdb.org/
http://www.frukt.org/
More information about the MIMEDefang
mailing list