From owner-freebsd-questions@freebsd.org Sun Aug 7 21:17:36 2016 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id EBAF6BB1039 for ; Sun, 7 Aug 2016 21:17:36 +0000 (UTC) (envelope-from doug@mail.sermon-archive.info) Received: from zoom.lafn.org (zoom.lafn.org [108.92.93.123]) by mx1.freebsd.org (Postfix) with ESMTP id D5FA116FB for ; Sun, 7 Aug 2016 21:17:36 +0000 (UTC) (envelope-from doug@mail.sermon-archive.info) Received: from [10.0.1.4] (unknown [71.177.216.148]) by zoom.lafn.org (Postfix) with ESMTPSA id B275734A8BF; Sun, 7 Aug 2016 14:17:35 -0700 (PDT) Content-Type: text/plain; charset=iso-8859-1 Mime-Version: 1.0 (Mac OS X Mail 9.3 \(3124\)) Subject: Re: Need advice for setting up mail server From: Doug Hardie In-Reply-To: <20160807180149.GC12411@len-t420.klaas> Date: Sun, 7 Aug 2016 14:17:35 -0700 Cc: freebsd-questions@freebsd.org Content-Transfer-Encoding: quoted-printable Message-Id: <44D296EC-FA25-4279-9501-8BB6B2DD86A6@mail.sermon-archive.info> References: <2394887a809b4ad8e702d1d13bb1337c@mail.zplay.eu> <20160807180149.GC12411@len-t420.klaas> To: Niklaas Baudet von Gersdorff X-Mailer: Apple Mail (2.3124) X-Virus-Scanned: clamav-milter 0.98 at zoom.lafn.org X-Virus-Status: Clean X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.22 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 07 Aug 2016 21:17:37 -0000 > On 7 August 2016, at 11:01, Niklaas Baudet von Gersdorff = wrote: >=20 > What I can highly recommend is mail/spamd. I learned about it in > the FreeBSD Handbook. However, documentation there seems a bit > old so it's not longer correct. Spamd offers greylisting too but, > as mentioned above, there are reasons not to enable that. > However, you can also run it in blocking mode solely. This way it > collects updated entries on malicious hosts that you can pipe to > PF and block with your firewall. Very resource-friendly. Read > spamd(8) for how to configure it properly (and don't trust the > handbook on it). I am running spamd (obspamd last time I checked) on the mail server for = a medium sized ISP. It has never worked the way the documentation = describes. However, it has been useful. When I first installed it, = around 90% of the email being received was dropped. It blocks drive-by = spammers who don't queue and retry on TMP_FAILs. Unfortunately, it = appears that many spammers now can afford the disk and processor = resources to enable queueing and retrying so its usefulness is = diminishing. The issue that has bugged me with it is that it does not deliver the = email that causes the site to be whitelisted. You have to wait for it = to try yet another time to actually get it. The small business mail server does not have that implemented at this = time. I hope to avoid it, but will have to see what happens in the = future.