From owner-freebsd-isp@FreeBSD.ORG Mon Feb 21 03:26:39 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0BD8616A4CE for ; Mon, 21 Feb 2005 03:26:39 +0000 (GMT) Received: from phil.pyramus.com (ns2.pyramus.com [67.139.205.2]) by mx1.FreeBSD.org (Postfix) with ESMTP id B581F43D2F for ; Mon, 21 Feb 2005 03:26:38 +0000 (GMT) (envelope-from blake@pyramus.com) Received: from stella.pyramus.com (stella.pyramus.com [10.10.1.3]) by phil.pyramus.com (8.12.7/8.12.7) with ESMTP id j1L3QpZM018830 for ; Sun, 20 Feb 2005 19:26:51 -0800 (PST) (envelope-from blake@pyramus.com) Received: from [10.10.1.26] ([10.10.1.26]) by stella.pyramus.com (8.11.6/8.12.3) with ESMTP id j1L3R1K08139 for ; Sun, 20 Feb 2005 19:27:01 -0800 (PST) (envelope-from blake@pyramus.com) Message-ID: <4219551F.9010808@pyramus.com> Date: Sun, 20 Feb 2005 19:27:27 -0800 From: Blake Swensen User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.7.1) Gecko/20040707 X-Accept-Language: en-us, en MIME-Version: 1.0 To: freebsd-isp@freebsd.org Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Subject: Why the mail error for domains I don't host? X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 21 Feb 2005 03:26:39 -0000 sendmail[93922]: j1L2kZa5093920: SYSERR(root): mx1.distinguish.com. config error: mail loops back to me (MX problem?) I know everyone has seen this message at least once in their life from improperly configured sendmail. However, my log is filling up with these messages for domains I do not host.... and when I dig the mentioned host, it always resolves to localhost (127.0.0.1). This happens over and over again on for domain after domain. Are there really that many unskilled admins who publish their mail server's address as localhost, or is this some sort of hack that I should worry about? Blake -- ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ The Internet Rescue Company - http://www.pyramus.com ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Blake R. Swensen Pyramus Online, Inc. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ "We measure success by the success of our clients" From owner-freebsd-isp@FreeBSD.ORG Mon Feb 21 04:36:18 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 5192A16A4CE for ; Mon, 21 Feb 2005 04:36:18 +0000 (GMT) Received: from wjv.com (fl-65-40-24-38.sta.sprint-hsd.net [65.40.24.38]) by mx1.FreeBSD.org (Postfix) with ESMTP id 4DE6743D5C for ; Mon, 21 Feb 2005 04:36:17 +0000 (GMT) (envelope-from bv@bilver.wjv.com) Received: from bilver.wjv.com (localhost.wjv.com [127.0.0.1]) by wjv.com (8.12.11/8.13.1) with ESMTP id j1L4aEHZ021410 for ; Sun, 20 Feb 2005 23:36:14 -0500 (EST) (envelope-from bv@bilver.wjv.com) Received: (from bv@localhost) by bilver.wjv.com (8.12.11/8.13.1/Submit) id j1L4aD5m021409 for freebsd-isp@freebsd.org; Sun, 20 Feb 2005 23:36:13 -0500 (EST) (envelope-from bv) Date: Sun, 20 Feb 2005 23:36:13 -0500 From: Bill Vermillion To: freebsd-isp@freebsd.org Message-ID: <20050221043613.GA21273@wjv.com> References: <4219551F.9010808@pyramus.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <4219551F.9010808@pyramus.com> Organization: W.J.Vermillion / Orlando - Winter Park ReplyTo: bv@wjv.com User-Agent: Mutt/1.5.6i X-Spam-Status: No, score=-2.8 required=5.0 tests=ALL_TRUSTED autolearn=failed version=3.0.1 X-Spam-Checker-Version: SpamAssassin 3.0.1 (2004-10-22) on bilver.wjv.com Subject: Re: Why the mail error for domains I don't host? X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: bv@wjv.com List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 21 Feb 2005 04:36:18 -0000 The door open and in walked trouble - disguised as our our old nemesis Blake Swensen, who uttered, at Sun, Feb 20, 2005 at 19:27 : > sendmail[93922]: j1L2kZa5093920: SYSERR(root): > mx1.distinguish.com. config error: mail loops back to me (MX > problem?) > I know everyone has seen this message at least once in their > life from improperly configured sendmail. However, my log is > filling up with these messages for domains I do not host.... and > when I dig the mentioned host, it always resolves to localhost > (127.0.0.1). This happens over and over again on for domain > after domain. Are there really that many unskilled admins who > publish their mail server's address as localhost, or is this > some sort of hack that I should worry about? I won't call myself unskilled - but I have one domain that in desperation I set the MX record to localhost. I was running about 300,000 spam messages PER DAY to that domain. Removing the MX record entirely cut me down to 25,000 to 50,000 per day - as people would send the spam to the IP of the web server. [both web and MX are on that one machine for a few domains]. I know it's not supposed to be done, but I did this in self-defense. The domain in question has been coming up #1 in Google, MSN, and other search engines for the past 5 or so years - because it's on of those domains that has a great name. During the height of the dot-com boom the owner was offered $250,000 for the domain - $10K in cash in the rest in stock - which was the sign of the times then. We're heading toward our peak which is typically March - and that's about 7000 sessions/day and about 325,000 hits/day. Sorry if this site is giving you problems, but I'm open to any suggestions that will keep the spam away and the 127.0.0.1 is the only one I could come up with. None of the other domains is set up this way - and all the mail we host is for commecial sites - with no end-user/home accounts at all. Bill -- Bill Vermillion - bv @ wjv . com From owner-freebsd-isp@FreeBSD.ORG Mon Feb 21 05:27:08 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A7ABF16A4CE for ; Mon, 21 Feb 2005 05:27:08 +0000 (GMT) Received: from xyzzy.snsonline.net (office-fw.iexec.net.au [210.18.210.230]) by mx1.FreeBSD.org (Postfix) with ESMTP id B807443D55 for ; Mon, 21 Feb 2005 05:27:07 +0000 (GMT) (envelope-from msergeant@snsonline.net) Received: from [127.0.0.1] (localhost [127.0.0.1]) by xyzzy.snsonline.net (Postfix) with ESMTP id 75295809848; Mon, 21 Feb 2005 15:26:58 +1000 (EST) In-Reply-To: <20050221043613.GA21273@wjv.com> References: <4219551F.9010808@pyramus.com> <20050221043613.GA21273@wjv.com> Mime-Version: 1.0 (Apple Message framework v619.2) Content-Type: text/plain; charset=US-ASCII; format=flowed Message-Id: <2b1cdb35c5a0ebfa693a1ce4fa5e81a3@snsonline.net> Content-Transfer-Encoding: 7bit From: Mark Sergeant Date: Mon, 21 Feb 2005 15:26:56 +1000 To: bv@wjv.com X-Mailer: Apple Mail (2.619.2) cc: freebsd-isp@freebsd.org Subject: Re: Why the mail error for domains I don't host? X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 21 Feb 2005 05:27:08 -0000 On 21/02/2005, at 14:36, Bill Vermillion wrote: > The door open and in walked trouble - disguised as our our old > nemesis Blake Swensen, who uttered, at Sun, Feb 20, 2005 at 19:27 : > >> sendmail[93922]: j1L2kZa5093920: SYSERR(root): >> mx1.distinguish.com. config error: mail loops back to me (MX >> problem?) > >> I know everyone has seen this message at least once in their >> life from improperly configured sendmail. However, my log is >> filling up with these messages for domains I do not host.... and >> when I dig the mentioned host, it always resolves to localhost >> (127.0.0.1). This happens over and over again on for domain >> after domain. Are there really that many unskilled admins who >> publish their mail server's address as localhost, or is this >> some sort of hack that I should worry about? > > I won't call myself unskilled - but I have one domain that > in desperation I set the MX record to localhost. > > I was running about 300,000 spam messages PER DAY to that domain. > > Removing the MX record entirely cut me down to 25,000 to 50,000 > per day - as people would send the spam to the IP of the > web server. [both web and MX are on that one machine for a few > domains]. > > I know it's not supposed to be done, but I did this in > self-defense. > > The domain in question has been coming up #1 in Google, MSN, and > other search engines for the past 5 or so years - because it's > on of those domains that has a great name. > > During the height of the dot-com boom the owner was offered > $250,000 for the domain - $10K in cash in the rest in stock - which > was the sign of the times then. > > We're heading toward our peak which is typically March - and that's > about 7000 sessions/day and about 325,000 hits/day. > > Sorry if this site is giving you problems, but I'm open to any > suggestions that will keep the spam away and the 127.0.0.1 > is the only one I could come up with. 127.0.0.2 maybe, I can't think that many boxes will actually have that bound (apart from my laptop but thats a different matter entirely !). > > None of the other domains is set up this way - and all the mail > we host is for commecial sites - with no end-user/home accounts > at all. > > Bill > > -- > Bill Vermillion - bv @ wjv . com > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" > From owner-freebsd-isp@FreeBSD.ORG Mon Feb 21 08:14:28 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 50DCF16A4CE for ; Mon, 21 Feb 2005 08:14:28 +0000 (GMT) Received: from orca.mojam.com (orca.mojam.com [198.49.126.96]) by mx1.FreeBSD.org (Postfix) with ESMTP id 132E543D39 for ; Mon, 21 Feb 2005 08:14:28 +0000 (GMT) (envelope-from skip@mojam.com) Received: by orca.mojam.com (Postfix, from userid 500) id 4F6E625091; Mon, 21 Feb 2005 01:14:26 -0700 (MST) To: freebsd-isp@freebsd.org References: <20050221081424.D4D4E2506F@orca.mojam.com> In-Reply-To: <20050221081424.D4D4E2506F@orca.mojam.com> Precedence: junk X-Loop: skip@orca.mojam.com Message-Id: <20050221081426.4F6E625091@orca.mojam.com> Date: Mon, 21 Feb 2005 01:14:26 -0700 (MST) From: skip@mojam.com Subject: Re: Hi X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 21 Feb 2005 08:14:28 -0000 This message was generated automatically by the procmail program. You should only receive it once while I'm away. Thank you for your note. I will be on vacation and blissfully devoid of all computer contact from February 19-26, 2005. I will attend to your mail when I return. If you are writing to report a problem with the Mojam or Musi-Cal websites hopefully it can wait until my return. Skip Montanaro (skip@pobox.com) (847)971-7098 From owner-freebsd-isp@FreeBSD.ORG Mon Feb 21 08:42:02 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0225316A4CE for ; Mon, 21 Feb 2005 08:42:02 +0000 (GMT) Received: from post.heppke-datensysteme.de (urmel.heppke.de [80.237.203.107]) by mx1.FreeBSD.org (Postfix) with ESMTP id A549B43D31 for ; Mon, 21 Feb 2005 08:42:00 +0000 (GMT) (envelope-from freebsd-ml@dettmering.org) Received: from localhost (localhost.heppke.de [127.0.0.1]) by post.heppke-datensysteme.de (Postfix) with ESMTP id C25703B339 for ; Mon, 21 Feb 2005 09:41:58 +0100 (CET) Received: from post.heppke-datensysteme.de ([127.0.0.1])port 10024) with LMTP id 27193-01-7 for ; Mon, 21 Feb 2005 09:41:58 +0100 (CET) Received: from merlin.dettmering.org (pD954B8AD.dip.t-dialin.net [217.84.184.173]) (using TLSv1 with cipher EDH-RSA-DES-CBC3-SHA (168/168 bits)) (No client certificate requested) by post.heppke-datensysteme.de (Postfix) with ESMTP id 7D0F83B336 for ; Mon, 21 Feb 2005 09:41:57 +0100 (CET) Received: from localhost (localhost.dettmering.org [127.0.0.1]) by merlin.dettmering.org (Postfix) with ESMTP id 8CCC41C611B2 for ; Mon, 21 Feb 2005 09:44:04 +0100 (CET) Received: from merlin.dettmering.org ([127.0.0.1]) by localhost (merlin.dettmering.org [127.0.0.1]) (amavisd-new, port 10024) with LMTP id 04291-08-3 for ; Mon, 21 Feb 2005 09:44:02 +0100 (CET) Received: from [192.168.66.7] (frodo.dettmering.org [192.168.66.7]) by merlin.dettmering.org (Postfix) with ESMTP id 318571C61163 for ; Mon, 21 Feb 2005 09:44:02 +0100 (CET) Message-ID: <42199F51.6020604@dettmering.org> Date: Mon, 21 Feb 2005 09:44:01 +0100 From: Dirk Dettmering User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7.3) Gecko/20040910 X-Accept-Language: de, en, en-us MIME-Version: 1.0 To: freebsd-isp@freebsd.org References: <4219551F.9010808@pyramus.com> <20050221043613.GA21273@wjv.com> In-Reply-To: <20050221043613.GA21273@wjv.com> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit X-Virus-Scanned: amavisd-new at dettmering.org X-Virus-Scanned: by amavisd-new at heppke-datensysteme.de Subject: Re: Why the mail error for domains I don't host? X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 21 Feb 2005 08:42:02 -0000 Bill Vermillion wrote: > I won't call myself unskilled - but I have one domain that > in desperation I set the MX record to localhost. > > I was running about 300,000 spam messages PER DAY to that domain. > > Removing the MX record entirely cut me down to 25,000 to 50,000 > per day - as people would send the spam to the IP of the > web server. [both web and MX are on that one machine for a few > domains]. > > I know it's not supposed to be done, but I did this in > self-defense. [snip] > Sorry if this site is giving you problems, but I'm open to any > suggestions that will keep the spam away and the 127.0.0.1 > is the only one I could come up with. Why don't you use one of the RFC 1918 adresses (10.X.X.X, 172.16.X.X, 192.168.X.X, 169.254.1.X) instead of 127.0.0.1? The chance somebody is using the same range out of those adresses in his own network is relativly low. Best wishes Dirk From owner-freebsd-isp@FreeBSD.ORG Mon Feb 21 16:52:10 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id DEE8116A4CE for ; Mon, 21 Feb 2005 16:52:10 +0000 (GMT) Received: from he204war.uk.vianw.net (he204war.uk.vianw.net [195.102.244.151]) by mx1.FreeBSD.org (Postfix) with ESMTP id DC23043D48 for ; Mon, 21 Feb 2005 16:52:09 +0000 (GMT) (envelope-from adjjj@jjadj.u-net.com) Received: from [195.102.197.161] (helo=DDP1TM0J.jjadj.u-net.com) by he204war.uk.vianw.net with esmtp (Exim 4.20) id 1D3Gmz-0007G4-23 for freebsd-isp@freebsd.org; Mon, 21 Feb 2005 16:52:05 +0000 Message-Id: <6.1.2.0.0.20050221164036.02330568@195.102.249.132> X-Sender: adjjj@jjadj.u-net.com@195.102.249.132 (Unverified) X-Mailer: QUALCOMM Windows Eudora Version 6.1.2.0 Date: Mon, 21 Feb 2005 16:42:36 +0000 To: freebsd-isp@freebsd.org From: Aubrey/Jitka Jenkins In-Reply-To: References: Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Subject: Re: RETURNED MAIL: SEE TRANSCRIPT FOR DETAILS X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 21 Feb 2005 16:52:11 -0000 It was very nice of you to reply to our enquiry but unfortunately our computer failed to unzip the file you sent to solve our problem. Could you please send it again , preferably in unzipped format? Many thanks, in advance. Aubrey Jenkins At 15:09 21/02/2005, you wrote: >Dear user of jjadj.u-net.com, mail system administrator of jjadj.u-net.com >would like to let you know that. > >Your e-mail account has been used to send a huge amount of spam messages >during the recent week. >Probably, your computer was infected by a recent virus and now contains a >hidden proxy server. > >We recommend that you follow the instructions in order to keep your >computer safe. > >Have a nice day, >The jjadj.u-net.com team. > From owner-freebsd-isp@FreeBSD.ORG Wed Feb 23 05:58:54 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 55E1C16A4CE for ; Wed, 23 Feb 2005 05:58:54 +0000 (GMT) Received: from mail.arc.net.my (nagano.arc.net.my [203.115.225.22]) by mx1.FreeBSD.org (Postfix) with ESMTP id 13FF243D39 for ; Wed, 23 Feb 2005 05:58:53 +0000 (GMT) (envelope-from nick@arc.net.my) Received: from [203.115.225.83] (tsukiji.arc.net.my [203.115.225.83]) by mail.arc.net.my (iPlanet Messaging Server 5.1 Patch 1 (built Jun 6 2002)) with ESMTP id <0ICC00MGPOM3NP@mail.arc.net.my> for freebsd-isp@freebsd.org; Wed, 23 Feb 2005 13:58:51 +0800 (SGT) Date: Wed, 23 Feb 2005 13:58:50 +0800 From: Nick Kraal To: freebsd-isp@freebsd.org Message-id: <421C1B9A.7040001@arc.net.my> MIME-version: 1.0 Content-type: text/plain; charset=ISO-8859-1; format=flowed Content-transfer-encoding: 7BIT X-Accept-Language: en-us, en User-Agent: Mozilla Thunderbird 1.0 (Macintosh/20041206) Subject: make buildworld error X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 23 Feb 2005 05:58:54 -0000 Dear all, Maybe slightly OTT for this mail-list. Seem to have some problems upgrading from v.4.10 to v.5.3. Used cvsup to upgrade all sources: *default release=cvs tag=RELENG_5_3 ports-all tag=. src-all tag=RELENG_5_3 I get the following error below when running 'make buildworld'. Would appreciate any hints/pointers/web links/etc. Thanks in advance, -nick// --8<-- ... ... gzip -cn /usr/src/secure/usr.bin/ssh-keyscan/../../../crypto/openssh/ssh-keyscan.1 > ssh-keyscan.1.gz ===> secure/usr.sbin ===> secure/usr.sbin/sshd make: don't know how to make /usr/src/secure/usr.sbin/sshd/../../../crypto/openssh/openbsd-compat/bindresvport.h. Stop *** Error code 2 Stop in /usr/src/secure/usr.sbin. *** Error code 1 Stop in /usr/src/secure. *** Error code 1 Stop in /usr/src. *** Error code 1 Stop in /usr/src. *** Error code 1 Stop in /usr/src. From owner-freebsd-isp@FreeBSD.ORG Wed Feb 23 11:00:34 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D29F716A4D1 for ; Wed, 23 Feb 2005 11:00:34 +0000 (GMT) Received: from nic-naa.net (nic-naa.net [216.220.241.233]) by mx1.FreeBSD.org (Postfix) with ESMTP id 52AB343D31 for ; Wed, 23 Feb 2005 11:00:34 +0000 (GMT) (envelope-from brunner@nic-naa.net) Received: from nic-naa.net (localhost [127.0.0.1]) by nic-naa.net (8.13.1/8.13.1) with ESMTP id j1N6uCVY065900; Wed, 23 Feb 2005 06:56:12 GMT (envelope-from brunner@nic-naa.net) Message-Id: <200502230656.j1N6uCVY065900@nic-naa.net> To: Nick Kraal In-Reply-To: Your message of "Wed, 23 Feb 2005 13:58:50 +0800." <421C1B9A.7040001@arc.net.my> Date: Wed, 23 Feb 2005 01:56:12 -0500 From: Eric Brunner-Williams in Portland Maine cc: freebsd-isp@freebsd.org Subject: Re: make buildworld error X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 23 Feb 2005 11:00:35 -0000 Nick, If you haven't done a 4.x to 5.x previously I suggest you get any 5.x cd, and install from that, then cvsup to 5.3. It can be done (I did it). Follow the instructions very carefully. Eric From owner-freebsd-isp@FreeBSD.ORG Wed Feb 23 11:00:39 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id CDF5416A4D9 for ; Wed, 23 Feb 2005 11:00:39 +0000 (GMT) Received: from smtp.doruk.net.tr (smtp.doruk.net.tr [212.58.5.248]) by mx1.FreeBSD.org (Postfix) with ESMTP id 177AB43D2F for ; Wed, 23 Feb 2005 11:00:37 +0000 (GMT) (envelope-from vahric@doruk.net.tr) Received: from [212.58.13.17] (helo=VAHOXP) by smtp.doruk.net.tr with esmtp (Exim 4.44) id 1D3uFd-0005aV-UO for freebsd-isp@freebsd.org; Wed, 23 Feb 2005 13:00:18 +0200 From: "Vahric MUHTARYAN" To: Date: Wed, 23 Feb 2005 13:01:14 +0200 MIME-Version: 1.0 X-Mailer: Microsoft Office Outlook, Build 11.0.5510 Thread-Index: AcUZlv13ZUPZeSOsSuGgM8a83tIUTg== X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2180 Message-Id: <20050223110037.177AB43D2F@mx1.FreeBSD.org> Content-Type: text/plain; charset="iso-8859-9" Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.1 Subject: SpamAssassian with FreeBSD and Big Mail Server X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 23 Feb 2005 11:00:40 -0000 Hi Everybody ,=20 =20 Really I don't know can I say a big mail server which have 30,000 mailbox on it 1200+ simultaneously connections = (pop,smtp,webmail). =DDncoming smtp connections are between 200-400 . We want to run spam = software on it but machine can't handle it for this reason we seperated machine freebsd+exim+SpamAssassian but on 400 connection machine goes down = average is very high , cpu usage really too high .=20 =20 I want to learn Anybody Who have closer or bigger system and using SpamAssassian ?!=20 Really this 400 connection simultaneously can be limit for spam software = ?! I mean Anybody can handle more ?!=20 I have to design distributed environment ?!=20 =20 My Hardware is (for spam) 2 X PIII 1G + 1 GB RAM + 2 DISK RAID 0 SCSI 10000 RPM =20 =20 Thanks Vahric=20 =20 From owner-freebsd-isp@FreeBSD.ORG Wed Feb 23 11:17:31 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4E1F616A4CE for ; Wed, 23 Feb 2005 11:17:31 +0000 (GMT) Received: from vscan01.westnet.com.au (vscan01.westnet.com.au [203.10.1.131]) by mx1.FreeBSD.org (Postfix) with ESMTP id AA96543D58 for ; Wed, 23 Feb 2005 11:17:30 +0000 (GMT) (envelope-from peterh@criten.org) Received: from localhost (localhost.localdomain [127.0.0.1]) by localhost (Postfix) with ESMTP id C9C8E8BED1 for ; Wed, 23 Feb 2005 19:17:28 +0800 (WST) Received: from vscan01.westnet.com.au ([127.0.0.1]) by localhost (vscan01.westnet.com.au [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 22889-12 for ; Wed, 23 Feb 2005 19:17:28 +0800 (WST) Received: from [192.168.254.2] (dsl-202-173-184-65.nsw.westnet.com.au [202.173.184.65]) by vscan01.westnet.com.au (Postfix) with ESMTP id 001AD14C604 for ; Wed, 23 Feb 2005 19:17:22 +0800 (WST) Message-ID: <421C6639.1000400@criten.org> Date: Wed, 23 Feb 2005 22:17:13 +1100 From: Peter Hoskin User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.7.5) Gecko/20050102 X-Accept-Language: en-au, en-us, en MIME-Version: 1.0 To: freebsd-isp@freebsd.org References: <20050223110037.177AB43D2F@mx1.FreeBSD.org> In-Reply-To: <20050223110037.177AB43D2F@mx1.FreeBSD.org> Content-Type: text/plain; charset=ISO-8859-9; format=flowed Content-Transfer-Encoding: 8bit Subject: Re: SpamAssassian with FreeBSD and Big Mail Server X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 23 Feb 2005 11:17:31 -0000 Sounds like you need consulting more than anything. Have you looked at load balancing your MTA before, with multiple servers to handle the load? What mta are you running? Regards, Peter Hoskin Vahric MUHTARYAN wrote: >Hi Everybody , > > Really I don't know can I say a big mail server which have >30,000 mailbox on it 1200+ simultaneously connections (pop,smtp,webmail). >Ýncoming smtp connections are between 200-400 . We want to run spam software >on it but machine can't handle it for this reason we seperated machine >freebsd+exim+SpamAssassian but on 400 connection machine goes down average >is very high , cpu usage really too high . > > I want to learn Anybody Who have closer or bigger system and >using SpamAssassian ?! >Really this 400 connection simultaneously can be limit for spam software ?! >I mean Anybody can handle more ?! >I have to design distributed environment ?! > >My Hardware is (for spam) > 2 X PIII 1G + 1 GB RAM + 2 DISK RAID 0 SCSI 10000 RPM > >Thanks >Vahric > >_______________________________________________ >freebsd-isp@freebsd.org mailing list >http://lists.freebsd.org/mailman/listinfo/freebsd-isp >To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" > > > > From owner-freebsd-isp@FreeBSD.ORG Wed Feb 23 11:52:14 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id DEE3E16A4CE for ; Wed, 23 Feb 2005 11:52:14 +0000 (GMT) Received: from smtp.doruk.net.tr (smtp.doruk.net.tr [212.58.5.248]) by mx1.FreeBSD.org (Postfix) with ESMTP id 7C45443D45 for ; Wed, 23 Feb 2005 11:52:14 +0000 (GMT) (envelope-from vahric@doruk.net.tr) Received: from [212.58.13.17] (helo=VAHOXP) by smtp.doruk.net.tr with esmtp (Exim 4.44) id 1D3v3c-0007oj-0W; Wed, 23 Feb 2005 13:51:56 +0200 From: "Vahric MUHTARYAN" To: "'Peter Hoskin'" Date: Wed, 23 Feb 2005 13:52:52 +0200 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-9" Content-Transfer-Encoding: quoted-printable X-Mailer: Microsoft Office Outlook, Build 11.0.5510 Thread-Index: AcUZmZ+0/GK50MqnRnyBbXIzMDv1jwABFFUg In-Reply-To: <421C6639.1000400@criten.org> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2180 Message-Id: <20050223115214.7C45443D45@mx1.FreeBSD.org> cc: freebsd-isp@freebsd.org Subject: RE: SpamAssassian with FreeBSD and Big Mail Server X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 23 Feb 2005 11:52:15 -0000 Hi ,=20 Mta is exim . I think to use loadbalacend environment but I'm not really sure for I reached limits or not ?! any hint which I don't know . Thanks=20 Vahric=20 -----Original Message----- From: owner-freebsd-isp@freebsd.org = [mailto:owner-freebsd-isp@freebsd.org] On Behalf Of Peter Hoskin Sent: Wednesday, February 23, 2005 1:17 PM To: freebsd-isp@freebsd.org Subject: Re: SpamAssassian with FreeBSD and Big Mail Server Sounds like you need consulting more than anything. Have you looked at load balancing your MTA before, with multiple servers to handle the load? What mta are you running? Regards, Peter Hoskin Vahric MUHTARYAN wrote: >Hi Everybody ,=20 >=20 > Really I don't know can I say a big mail server which have >30,000 mailbox on it 1200+ simultaneously connections = (pop,smtp,webmail). >=DDncoming smtp connections are between 200-400 . We want to run spam software >on it but machine can't handle it for this reason we seperated machine >freebsd+exim+SpamAssassian but on 400 connection machine goes down = average >is very high , cpu usage really too high .=20 >=20 > I want to learn Anybody Who have closer or bigger system = and >using SpamAssassian ?!=20 >Really this 400 connection simultaneously can be limit for spam = software ?! >I mean Anybody can handle more ?!=20 >I have to design distributed environment ?!=20 >=20 >My Hardware is (for spam) > 2 X PIII 1G + 1 GB RAM + 2 DISK RAID 0 SCSI 10000 RPM =20 >=20 >Thanks >Vahric=20 >=20 >_______________________________________________ >freebsd-isp@freebsd.org mailing list >http://lists.freebsd.org/mailman/listinfo/freebsd-isp >To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" > > > =20 > _______________________________________________ freebsd-isp@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-isp To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" From owner-freebsd-isp@FreeBSD.ORG Wed Feb 23 12:24:27 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0D66616A4CE for ; Wed, 23 Feb 2005 12:24:27 +0000 (GMT) Received: from obh.snafu.de (obh.snafu.de [213.73.92.34]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6338043D1D for ; Wed, 23 Feb 2005 12:24:26 +0000 (GMT) (envelope-from ob@gruft.de) Received: from ob by obh.snafu.de with local (Exim 4.44 (FreeBSD)) id 1D3vZ3-0006OS-Bk for freebsd-isp@freebsd.org; Wed, 23 Feb 2005 13:24:25 +0100 Date: Wed, 23 Feb 2005 13:24:25 +0100 From: Oliver Brandmueller To: freebsd-isp@freebsd.org Message-ID: <20050223122425.GB96675@e-Gitt.NET> References: <20050223110037.177AB43D2F@mx1.FreeBSD.org> Mime-Version: 1.0 Content-Type: text/plain; charset=iso-8859-15 Content-Disposition: inline In-Reply-To: <20050223110037.177AB43D2F@mx1.FreeBSD.org> User-Agent: Mutt/1.5.8i Sender: Oliver Brandmueller Subject: Re: SpamAssassian with FreeBSD and Big Mail Server X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 23 Feb 2005 12:24:27 -0000 Hi. On Wed, Feb 23, 2005 at 01:01:14PM +0200, Vahric MUHTARYAN wrote: > Really I don't know can I say a big mail server which have > 30,000 mailbox on it 1200+ simultaneously connections (pop,smtp,webmail). > ?ncoming smtp connections are between 200-400 . We want to run spam software > on it but machine can't handle it for this reason we seperated machine > freebsd+exim+SpamAssassian but on 400 connection machine goes down average > is very high , cpu usage really too high . > > I want to learn Anybody Who have closer or bigger system and > using SpamAssassian ?! > Really this 400 connection simultaneously can be limit for spam software ?! > I mean Anybody can handle more ?! > I have to design distributed environment ?! > > My Hardware is (for spam) > 2 X PIII 1G + 1 GB RAM + 2 DISK RAID 0 SCSI 10000 RPM You don't tell us, how you use SpamAssassin currently. If you use spamd for connection time checking by exiscan keep in mind, that each mail connection lasts longer, so you need a lot more filedescriptors than before on the machine with the MTA! I'm currently using amavisd-new (want to go away from that, it's eating too much resources) on 4 loadbalanced Dual Xeon machines. We scan for spam and viruses. Each of the machines is able to filter about 400.000 mails per day, given that you have peak times and ow traffic times. (RAID 10 over 4 10krpm disks on hardware RAID, dual Xeon 2.4 GHz, 2 GB RAM/each machine). spamd itelf won't need so many resources as amavisd-new (this is a legacy setup). SpamAssassin needs a lot of RAM. Also keep in mind, that usually you are asking different nameservers for blacklists and stuff like that. That means, that filtering an e-mail takes a certain time, no matter how fast your system is. Dual P3 1 GHz and nly 1 Gig of RAM looks pretty much like a bottleneck to me, even without all the amavisd overhead. Have a look at "top", at "systat -vmstat", "iostat -d 1" and such, to get a clue, if your processors are too slow (only little I/O, enough free memory, 0 idle time over long periods), if you are lacking RAM (few free memory, lot's of I/O) or if you have an I/O problem (a lot of processor idle time, but the disks having >>400 ios per second all the time). My Spam filters are not quite the same as your, as the still have their MTA, do virus checking and have queues, so they need a lot of IO anyways. The don't have swap space: as soon as they start swapping, things get worse, becuse there's too much disk io and they get very slow. So have a look at your swap space. Are you using Swap at all? When th machines get loaded, do they start swapping very hard? That'd probably kill them. Another thing: using RAID 0 is VERY RISKY in any mail environment. RAID (especially in this case) is not so much about data security (if the spamd breaks the connection, the mail is still not lost), but about availability. You are close to the edge in your environment. one disk breaking would mean hours (if not days!) without accepting mails or without filtering. I would really think that over. - Oliver -- | Oliver Brandmueller | Offenbacher Str. 1 | Germany D-14197 Berlin | | Fon +49-172-3130856 | Fax +49-172-3145027 | WWW: http://the.addict.de/ | | Ich bin das Internet. Sowahr ich Gott helfe. | | Eine gewerbliche Nutzung aller enthaltenen Adressen ist nicht gestattet! | From owner-freebsd-isp@FreeBSD.ORG Wed Feb 23 13:04:20 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7644316A4CE for ; Wed, 23 Feb 2005 13:04:20 +0000 (GMT) Received: from smtp.doruk.net.tr (smtp.doruk.net.tr [212.58.5.248]) by mx1.FreeBSD.org (Postfix) with ESMTP id A0E2B43D2D for ; Wed, 23 Feb 2005 13:04:19 +0000 (GMT) (envelope-from vahric@doruk.net.tr) Received: from [212.58.13.17] (helo=VAHOXP) by smtp.doruk.net.tr with esmtp (Exim 4.44) id 1D3wBN-0002Nx-Hq; Wed, 23 Feb 2005 15:04:01 +0200 From: "Vahric MUHTARYAN" To: "'Oliver Brandmueller'" , Date: Wed, 23 Feb 2005 15:04:58 +0200 MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit X-Mailer: Microsoft Office Outlook, Build 11.0.5510 Thread-Index: AcUZovB8ohlqgbSvQkCXjO2H7fdVkAABHsvA In-Reply-To: <20050223122425.GB96675@e-Gitt.NET> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2180 Message-Id: <20050223130419.A0E2B43D2D@mx1.FreeBSD.org> Subject: RE: SpamAssassian with FreeBSD and Big Mail Server X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 23 Feb 2005 13:04:20 -0000 Hi Oliver , We are using SA-exim, and we are not scan for viruses just only for spam but I don't agree with you about using memory, because on our test environment I saw that we did not use too much RAM . I wonder We are reaced limits or not :) ... I will test with your given commands what happened. Thanks for your sharing knowledge and help Oliver Vahric -----Original Message----- From: owner-freebsd-isp@freebsd.org [mailto:owner-freebsd-isp@freebsd.org] On Behalf Of Oliver Brandmueller Sent: Wednesday, February 23, 2005 2:24 PM To: freebsd-isp@freebsd.org Subject: Re: SpamAssassian with FreeBSD and Big Mail Server Hi. On Wed, Feb 23, 2005 at 01:01:14PM +0200, Vahric MUHTARYAN wrote: > Really I don't know can I say a big mail server which have > 30,000 mailbox on it 1200+ simultaneously connections (pop,smtp,webmail). > ?ncoming smtp connections are between 200-400 . We want to run spam software > on it but machine can't handle it for this reason we seperated machine > freebsd+exim+SpamAssassian but on 400 connection machine goes down average > is very high , cpu usage really too high . > > I want to learn Anybody Who have closer or bigger system and > using SpamAssassian ?! > Really this 400 connection simultaneously can be limit for spam software ?! > I mean Anybody can handle more ?! > I have to design distributed environment ?! > > My Hardware is (for spam) > 2 X PIII 1G + 1 GB RAM + 2 DISK RAID 0 SCSI 10000 RPM You don't tell us, how you use SpamAssassin currently. If you use spamd for connection time checking by exiscan keep in mind, that each mail connection lasts longer, so you need a lot more filedescriptors than before on the machine with the MTA! I'm currently using amavisd-new (want to go away from that, it's eating too much resources) on 4 loadbalanced Dual Xeon machines. We scan for spam and viruses. Each of the machines is able to filter about 400.000 mails per day, given that you have peak times and ow traffic times. (RAID 10 over 4 10krpm disks on hardware RAID, dual Xeon 2.4 GHz, 2 GB RAM/each machine). spamd itelf won't need so many resources as amavisd-new (this is a legacy setup). SpamAssassin needs a lot of RAM. Also keep in mind, that usually you are asking different nameservers for blacklists and stuff like that. That means, that filtering an e-mail takes a certain time, no matter how fast your system is. Dual P3 1 GHz and nly 1 Gig of RAM looks pretty much like a bottleneck to me, even without all the amavisd overhead. Have a look at "top", at "systat -vmstat", "iostat -d 1" and such, to get a clue, if your processors are too slow (only little I/O, enough free memory, 0 idle time over long periods), if you are lacking RAM (few free memory, lot's of I/O) or if you have an I/O problem (a lot of processor idle time, but the disks having >>400 ios per second all the time). My Spam filters are not quite the same as your, as the still have their MTA, do virus checking and have queues, so they need a lot of IO anyways. The don't have swap space: as soon as they start swapping, things get worse, becuse there's too much disk io and they get very slow. So have a look at your swap space. Are you using Swap at all? When th machines get loaded, do they start swapping very hard? That'd probably kill them. Another thing: using RAID 0 is VERY RISKY in any mail environment. RAID (especially in this case) is not so much about data security (if the spamd breaks the connection, the mail is still not lost), but about availability. You are close to the edge in your environment. one disk breaking would mean hours (if not days!) without accepting mails or without filtering. I would really think that over. - Oliver -- | Oliver Brandmueller | Offenbacher Str. 1 | Germany D-14197 Berlin | | Fon +49-172-3130856 | Fax +49-172-3145027 | WWW: http://the.addict.de/ | | Ich bin das Internet. Sowahr ich Gott helfe. | | Eine gewerbliche Nutzung aller enthaltenen Adressen ist nicht gestattet! | _______________________________________________ freebsd-isp@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-isp To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" From owner-freebsd-isp@FreeBSD.ORG Wed Feb 23 13:54:12 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0ACC216A4CE for ; Wed, 23 Feb 2005 13:54:12 +0000 (GMT) Received: from materva.diewebmaster.at (materva.diewebmaster.at [80.66.42.216]) by mx1.FreeBSD.org (Postfix) with ESMTP id 7BEAF43D54 for ; Wed, 23 Feb 2005 13:54:11 +0000 (GMT) (envelope-from christian.damm@diewebmaster.at) Received: from localhost (localhost.diewebmaster.at [127.0.0.1]) by materva.diewebmaster.at (Postfix) with ESMTP id BE0312180B1; Wed, 23 Feb 2005 14:54:07 +0100 (CET) Received: from materva.diewebmaster.at ([127.0.0.1]) by localhost (materva.diewebmaster.at [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 93002-01; Wed, 23 Feb 2005 14:54:07 +0100 (CET) Received: from [192.168.1.14] (da.diewebmaster.at [192.168.1.14]) by materva.diewebmaster.at (Postfix) with ESMTP id 14071218050; Wed, 23 Feb 2005 14:54:06 +0100 (CET) Message-ID: <421C8A60.8010407@diewebmaster.at> Date: Wed, 23 Feb 2005 14:51:28 +0100 From: Christian Damm User-Agent: Mozilla Thunderbird 0.9 (Windows/20041103) X-Accept-Language: de-DE, de, en-us, en MIME-Version: 1.0 To: Vahric MUHTARYAN References: <20050223110037.177AB43D2F@mx1.FreeBSD.org> In-Reply-To: <20050223110037.177AB43D2F@mx1.FreeBSD.org> Content-Type: text/plain; charset=ISO-8859-9; format=flowed Content-Transfer-Encoding: 8bit X-Virus-Scanned: by amavisd-new at diewebmaster.at cc: freebsd-isp@freebsd.org Subject: Re: SpamAssassian with FreeBSD and Big Mail Server X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 23 Feb 2005 13:54:12 -0000 Vahric MUHTARYAN schrieb: > Hi Everybody , > > Really I don't know can I say a big mail server which have > 30,000 mailbox on it 1200+ simultaneously connections (pop,smtp,webmail). > Ýncoming smtp connections are between 200-400 . We want to run spam software > on it but machine can't handle it for this reason we seperated machine > freebsd+exim+SpamAssassian but on 400 connection machine goes down average > is very high , cpu usage really too high . > > I want to learn Anybody Who have closer or bigger system and > using SpamAssassian ?! > Really this 400 connection simultaneously can be limit for spam software ?! > I mean Anybody can handle more ?! > I have to design distributed environment ?! > > My Hardware is (for spam) > 2 X PIII 1G + 1 GB RAM + 2 DISK RAID 0 SCSI 10000 RPM i use spamassassin only on small-/medium-sized MTA installations (its a memory/cpu hog i.m.h.o. but i like it) - on all my "bigger" systems i really prefer dspam (coded in straight C and fast as hell). it is used in some environments with 350,000 email users and scales really well (if you have the iron and experience to build/maintain such a system/cluster). http://www.nuclearelephant.com/projects/dspam/ > > Thanks > Vahric > > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" > > !DSPAM:421c6285994911881286268! > -- mfg. christian damm technische leitung phone: dw 42 email: christian.damm@diewebmaster.at icq at work: 124464652 die webmaster - flötzerweg 156 - 4030 linz - austria phone: +43-732-381242, fax: +43-732-381242-22, isdn (leonardo): +43-732-381242-33 homepage: www.diewebmaster.at, public email: office@diewebmaster.at From owner-freebsd-isp@FreeBSD.ORG Wed Feb 23 14:57:05 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3BAA616A4CE for ; Wed, 23 Feb 2005 14:57:05 +0000 (GMT) Received: from mh1.centtech.com (moat3.centtech.com [207.200.51.50]) by mx1.FreeBSD.org (Postfix) with ESMTP id 4650A43D46 for ; Wed, 23 Feb 2005 14:57:04 +0000 (GMT) (envelope-from anderson@centtech.com) Received: from [10.177.171.220] (neutrino.centtech.com [10.177.171.220]) by mh1.centtech.com (8.13.1/8.13.1) with ESMTP id j1NEuuSZ072307; Wed, 23 Feb 2005 08:56:56 -0600 (CST) (envelope-from anderson@centtech.com) Message-ID: <421C99B6.1040300@centtech.com> Date: Wed, 23 Feb 2005 08:56:54 -0600 From: Eric Anderson User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.7.5) Gecko/20050210 X-Accept-Language: en-us, en MIME-Version: 1.0 To: Vahric MUHTARYAN References: <20050223110037.177AB43D2F@mx1.FreeBSD.org> In-Reply-To: <20050223110037.177AB43D2F@mx1.FreeBSD.org> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 8bit X-Virus-Scanned: ClamAV 0.82/721/Tue Feb 22 08:01:26 2005 on mh1.centtech.com X-Virus-Status: Clean cc: freebsd-isp@freebsd.org Subject: Re: SpamAssassian with FreeBSD and Big Mail Server X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 23 Feb 2005 14:57:05 -0000 Vahric MUHTARYAN wrote: > Hi Everybody , > > Really I don't know can I say a big mail server which have > 30,000 mailbox on it 1200+ simultaneously connections (pop,smtp,webmail). > Ä°ncoming smtp connections are between 200-400 . We want to run spam software > on it but machine can't handle it for this reason we seperated machine > freebsd+exim+SpamAssassian but on 400 connection machine goes down average > is very high , cpu usage really too high . > > I want to learn Anybody Who have closer or bigger system and > using SpamAssassian ?! > Really this 400 connection simultaneously can be limit for spam software ?! > I mean Anybody can handle more ?! > I have to design distributed environment ?! > > My Hardware is (for spam) > 2 X PIII 1G + 1 GB RAM + 2 DISK RAID 0 SCSI 10000 RPM With spamassassin, you can set the spamd machine (the machine that does the spam processing) to be another machine, or machines actually. I have my main mail server to all the mail related work, and mail passes through spamc (on the main mail server) which calls spamd (located on a spam machine, which could easily be many machines in a round robin list), to keep load down on the main server, specially when users are running the learning tools (which we allow each user individual spam bayes db's). Plus, you can work in a little failover stuff with virtual IP's and such for redundancy. Eric -- ------------------------------------------------------------------------ Eric Anderson Sr. Systems Administrator Centaur Technology I have seen the future and it is just like the present, only longer. ------------------------------------------------------------------------ From owner-freebsd-isp@FreeBSD.ORG Wed Feb 23 18:21:56 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C875616A4CE for ; Wed, 23 Feb 2005 18:21:56 +0000 (GMT) Received: from admin.wolfpaw.net (admin.wolfpaw.net [204.209.44.9]) by mx1.FreeBSD.org (Postfix) with SMTP id 2509B43D54 for ; Wed, 23 Feb 2005 18:21:56 +0000 (GMT) (envelope-from admin-lists@wolfpaw.net) Received: (qmail 23307 invoked from network); 23 Feb 2005 18:21:55 -0000 Received: from fw1-corp01.wolfpaw.net (HELO wolf) (142.179.166.184) by admin.wolfpaw.net with SMTP; 23 Feb 2005 18:21:55 -0000 From: "Wolfpaw - Dale Corse" To: "'Eric Anderson'" , "'Vahric MUHTARYAN'" Date: Wed, 23 Feb 2005 11:19:55 -0700 Message-ID: <022701c519d4$46c64fd0$020a0a0a@wolf> MIME-Version: 1.0 Content-Type: text/plain; charset="Windows-1252" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.6626 In-Reply-To: <421C99B6.1040300@centtech.com> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1441 Importance: Normal cc: freebsd-isp@freebsd.org Subject: RE: SpamAssassian with FreeBSD and Big Mail Server X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 23 Feb 2005 18:21:56 -0000 Or you can use an antispam product that isnt a pig.. Like: www.sortmonster.com Is a nice one :) I run it, with SA behind it - works real nice, and cut our CPU usage on the mailservers by around 80%. D. > -----Original Message----- > From: owner-freebsd-isp@freebsd.org > [mailto:owner-freebsd-isp@freebsd.org] On Behalf Of Eric Anderson > Sent: Wednesday, February 23, 2005 7:57 AM > To: Vahric MUHTARYAN > Cc: freebsd-isp@freebsd.org > Subject: Re: SpamAssassian with FreeBSD and Big Mail Server > > > Vahric MUHTARYAN wrote: > > Hi Everybody , > > > > Really I don't know can I say a big mail server > which have > > 30,000 mailbox on it 1200+ simultaneously connections > > (pop,smtp,webmail). Incoming smtp connections are between > 200-400 . We > > want to run spam software on it but machine can't handle it > for this > > reason we seperated machine > > freebsd+exim+SpamAssassian but on 400 connection machine goes down > > freebsd+exim+average > > is very high , cpu usage really too high . > > > > I want to learn Anybody Who have closer or > bigger system > > and using SpamAssassian ?! Really this 400 connection > simultaneously > > can be limit for spam software ?! I mean Anybody can handle more ?! > > I have to design distributed environment ?! > > > > My Hardware is (for spam) > > 2 X PIII 1G + 1 GB RAM + 2 DISK RAID 0 SCSI > 10000 RPM > > With spamassassin, you can set the spamd machine (the machine > that does the spam processing) to be another machine, or > machines actually. I have my main mail server to all the > mail related work, and mail passes through spamc (on the main > mail server) which calls spamd (located on a spam machine, > which could easily be many machines in a round robin list), > to keep load down on the main server, specially when users > are running the learning tools (which we allow each user > individual spam bayes db's). Plus, you can work in a little > failover stuff with virtual IP's and such for redundancy. > > Eric > > > > -- > -------------------------------------------------------------- > ---------- > Eric Anderson Sr. Systems Administrator Centaur > Technology > I have seen the future and it is just like the present, only longer. > -------------------------------------------------------------- > ---------- > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" > > From owner-freebsd-isp@FreeBSD.ORG Wed Feb 23 22:49:01 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D8C9E16A4CE for ; Wed, 23 Feb 2005 22:49:01 +0000 (GMT) Received: from relay.rdsnet.ro (gimli.rdsnet.ro [193.231.236.70]) by mx1.FreeBSD.org (Postfix) with SMTP id 8236D43D49 for ; Wed, 23 Feb 2005 22:49:00 +0000 (GMT) (envelope-from itetcu@people.tecnik93.com) Received: (qmail 7435 invoked from network); 23 Feb 2005 22:43:56 -0000 Received: from unknown (HELO smtp.rdsnet.ro) (62.231.74.130) by smtp1-133.rdsnet.ro with SMTP; 23 Feb 2005 22:43:56 -0000 Received: (qmail 27476 invoked by uid 89); 23 Feb 2005 22:53:48 -0000 Received: from unknown (HELO it.buh.tecnik93.com) (81.196.204.98) by 0 with SMTP; 23 Feb 2005 22:53:48 -0000 Received: from it.buh.tecnik93.com (localhost.buh.tecnik93.com [127.0.0.1]) by it.buh.tecnik93.com (Postfix) with ESMTP id 64027114D2; Thu, 24 Feb 2005 00:48:57 +0200 (EET) Date: Thu, 24 Feb 2005 00:48:57 +0200 From: Ion-Mihai Tetcu To: Christian Damm Message-ID: <20050224004857.7413d567@it.buh.tecnik93.com> In-Reply-To: <421C8A60.8010407@diewebmaster.at> References: <20050223110037.177AB43D2F@mx1.FreeBSD.org> <421C8A60.8010407@diewebmaster.at> X-Mailer: Sylpheed-Claws 1.0.1 (GTK+ 1.2.10; i386-portbld-freebsd5.3) Mime-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable cc: freebsd-isp@freebsd.org cc: Vahric MUHTARYAN Subject: Re: SpamAssassian with FreeBSD and Big Mail Server X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 23 Feb 2005 22:49:02 -0000 On Wed, 23 Feb 2005 14:51:28 +0100 Christian Damm wrote: >=20 >=20 > Vahric MUHTARYAN schrieb: > > Hi Everybody ,=20 > > =20 > > Really I don't know can I say a big mail server which have > > 30,000 mailbox on it 1200+ simultaneously connections (pop,smtp,webmail= ). > > =DDncoming smtp connections are between 200-400 . We want to run spam s= oftware > > on it but machine can't handle it for this reason we seperated machine > > freebsd+exim+SpamAssassian but on 400 connection machine goes down aver= age > > is very high , cpu usage really too high .=20 > > =20 > > I want to learn Anybody Who have closer or bigger system and > > using SpamAssassian ?!=20 > > Really this 400 connection simultaneously can be limit for spam softwar= e ?! > > I mean Anybody can handle more ?!=20 > > I have to design distributed environment ?!=20 > > =20 > > My Hardware is (for spam) > > 2 X PIII 1G + 1 GB RAM + 2 DISK RAID 0 SCSI 10000 RPM =20 >=20 > i use spamassassin only on small-/medium-sized MTA installations (its a=20 > memory/cpu hog i.m.h.o. but i like it) - on all my "bigger" systems i=20 > really prefer dspam (coded in straight C and fast as hell). it is used=20 > in some environments with 350,000 email users and scales really well (if= =20 > you have the iron and experience to build/maintain such a system/cluster). >=20 > http://www.nuclearelephant.com/projects/dspam/ Also in ports: mail/dspam and mail/dspam-devel (updates for both in not committed PRs). I'm currently playing with a setup like OP's. I'm interested in knowing our definition of "iron and experience to build/maintain such a system/cluster". --=20 IOnut Unregistered ;) FreeBSD "user" From owner-freebsd-isp@FreeBSD.ORG Wed Feb 23 23:27:28 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E81AD16A4CF for ; Wed, 23 Feb 2005 23:27:28 +0000 (GMT) Received: from msrv.matik.com.br (msrv.matik.com.br [200.152.83.14]) by mx1.FreeBSD.org (Postfix) with ESMTP id A9FFF43D45 for ; Wed, 23 Feb 2005 23:27:27 +0000 (GMT) (envelope-from asstec@matik.com.br) Received: from [200.152.82.190] ([200.152.82.190]) by msrv.matik.com.br (8.13.1/8.12.11) with ESMTP id j1NNTcbf004653 for ; Wed, 23 Feb 2005 20:29:38 -0300 (BRST) (envelope-from asstec@matik.com.br) From: Suporte Matik To: freebsd-isp@freebsd.org Date: Wed, 23 Feb 2005 20:27:01 -0300 User-Agent: KMail/1.7.2 References: <20050223110037.177AB43D2F@mx1.FreeBSD.org> <421C8A60.8010407@diewebmaster.at> <20050224004857.7413d567@it.buh.tecnik93.com> In-Reply-To: <20050224004857.7413d567@it.buh.tecnik93.com> MIME-Version: 1.0 Content-Type: multipart/signed; boundary="nextPart1840338.rUDTo21bYH"; protocol="application/pgp-signature"; micalg=pgp-sha1 Content-Transfer-Encoding: 7bit Message-Id: <200502232027.06633.asstec@matik.com.br> X-Virus-Scanned: ClamAV 0.80/705/Fri Feb 11 14:51:32 2005 clamav-milter version 0.80j on msrv.matik.com.br X-Virus-Status: Clean X-Spam-Status: No, score=-102.3 required=5.0 tests=ALL_TRUSTED,ISO_7BITS, NO_RDNS2,USER_IN_WHITELIST autolearn=failed version=3.0.1 X-Spam-Checker-Version: SpamAssassin 3.0.1 (2004-10-22) on msrv.matik.com.br Subject: Re: SpamAssassian with FreeBSD and Big Mail Server X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 23 Feb 2005 23:27:29 -0000 --nextPart1840338.rUDTo21bYH Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline On Wednesday 23 February 2005 19:48, Ion-Mihai Tetcu wrote: > On Wed, 23 Feb 2005 14:51:28 +0100 > > i use spamassassin only on small-/medium-sized MTA installations (its a > > memory/cpu hog i.m.h.o. but i like it) - on all my "bigger" systems i > > really prefer dspam (coded in straight C and fast as hell). it is used > > in some environments with 350,000 email users and scales really well (if > > you have the iron and experience to build/maintain such a > > system/cluster). > > > > http://www.nuclearelephant.com/projects/dspam/ > > Also in ports: mail/dspam and mail/dspam-devel (updates for both in not > committed PRs). > Hi are you saying you got dspam standing 350K email accounts? Hans > I'm currently playing with a setup like OP's. I'm interested in knowing > our definition of "iron and experience to build/maintain such a > system/cluster". =2D-=20 Infomatik implementamos asas na sua rede. (18)3551.3591 (18)8112.7007 _______________________________________________________ Participe! FreeBSD - Security - Wireless e outras Entre em http://listas.matik.com.br e inscreva-se! _______________________________________________________ Mensagens sem assinatura GPG n=E3o s=E3o nossas. Messages without GPG signature are not from us. _______________________________________________________ --nextPart1840338.rUDTo21bYH Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.0 (FreeBSD) iD8DBQBCHRFK22x1wvvbslkRApZsAKC/MT9sEOJ6aYo93gt7e1nwOCw3BgCfZ3dn ujaIHY8LG4HP+z6kVluZ8pk= =nb5V -----END PGP SIGNATURE----- --nextPart1840338.rUDTo21bYH-- From owner-freebsd-isp@FreeBSD.ORG Thu Feb 24 04:33:40 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4E15816A4CE for ; Thu, 24 Feb 2005 04:33:40 +0000 (GMT) Received: from materva.diewebmaster.at (materva.diewebmaster.at [80.66.42.216]) by mx1.FreeBSD.org (Postfix) with ESMTP id E603243D58 for ; Thu, 24 Feb 2005 04:33:39 +0000 (GMT) (envelope-from christian.damm@diewebmaster.at) Received: from localhost (localhost.diewebmaster.at [127.0.0.1]) by materva.diewebmaster.at (Postfix) with ESMTP id D9D532180B1 for ; Thu, 24 Feb 2005 05:33:38 +0100 (CET) Received: from materva.diewebmaster.at ([127.0.0.1]) by localhost (materva.diewebmaster.at [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 95534-04 for ; Thu, 24 Feb 2005 05:33:38 +0100 (CET) Received: from [192.168.1.11] (unknown [80.66.40.101]) by materva.diewebmaster.at (Postfix) with ESMTP id 878A5218056 for ; Thu, 24 Feb 2005 05:33:38 +0100 (CET) Message-ID: <421D5927.4050007@diewebmaster.at> Date: Thu, 24 Feb 2005 05:33:43 +0100 From: Christian Damm Organization: Die Webmaster User-Agent: Mozilla Thunderbird 0.9 (Windows/20041103) X-Accept-Language: de-DE, de, en-us, en MIME-Version: 1.0 To: freebsd-isp@freebsd.org References: <20050223110037.177AB43D2F@mx1.FreeBSD.org> <421C8A60.8010407@diewebmaster.at> <20050224004857.7413d567@it.buh.tecnik93.com> <200502232027.06633.asstec@matik.com.br> In-Reply-To: <200502232027.06633.asstec@matik.com.br> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 8bit X-Virus-Scanned: by amavisd-new at diewebmaster.at Subject: Re: SpamAssassian with FreeBSD and Big Mail Server X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 24 Feb 2005 04:33:40 -0000 Suporte Matik schrieb: > On Wednesday 23 February 2005 19:48, Ion-Mihai Tetcu wrote: > >>On Wed, 23 Feb 2005 14:51:28 +0100 > > >>>i use spamassassin only on small-/medium-sized MTA installations (its a >>>memory/cpu hog i.m.h.o. but i like it) - on all my "bigger" systems i >>>really prefer dspam (coded in straight C and fast as hell). it is used >>>in some environments with 350,000 email users and scales really well (if >>>you have the iron and experience to build/maintain such a >>>system/cluster). >>> >>>http://www.nuclearelephant.com/projects/dspam/ >> >>Also in ports: mail/dspam and mail/dspam-devel (updates for both in not >>committed PRs). >> > > > Hi > are you saying you got dspam standing 350K email accounts? no - the dspam website says that (and also the author, jonathan a. zdziarski). if you are interested in huge setups like this, there are some guys on the dspam ML (mostly ISP admins) who really got some high volume dspam environments up and running. > > > Hans > > > >>I'm currently playing with a setup like OP's. I'm interested in knowing >>our definition of "iron and experience to build/maintain such a >>system/cluster". > > > > ------------------------------------------------------------------------ > > !DSPAM:421d1185241002799217351! -- mfg. christian damm technische leitung phone: dw 42 email: christian.damm@diewebmaster.at icq at work: 124464652 die webmaster - flötzerweg 156 - 4030 linz - austria phone: +43-732-381242 fax: +43-732-381242-22 isdn (leonardo): +43-732-381242-33 homepage: www.diewebmaster.at, public email: office@diewebmaster.at From owner-freebsd-isp@FreeBSD.ORG Thu Feb 24 04:36:20 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E5B1416A4CE for ; Thu, 24 Feb 2005 04:36:20 +0000 (GMT) Received: from materva.diewebmaster.at (materva.diewebmaster.at [80.66.42.216]) by mx1.FreeBSD.org (Postfix) with ESMTP id 8E4EA43D39 for ; Thu, 24 Feb 2005 04:36:20 +0000 (GMT) (envelope-from christian.damm@diewebmaster.at) Received: from localhost (localhost.diewebmaster.at [127.0.0.1]) by materva.diewebmaster.at (Postfix) with ESMTP id B17E22180B1; Thu, 24 Feb 2005 05:36:19 +0100 (CET) Received: from materva.diewebmaster.at ([127.0.0.1]) by localhost (materva.diewebmaster.at [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 95539-04; Thu, 24 Feb 2005 05:36:19 +0100 (CET) Received: from [192.168.1.11] (unknown [80.66.40.101]) by materva.diewebmaster.at (Postfix) with ESMTP id 54453218056; Thu, 24 Feb 2005 05:36:19 +0100 (CET) Message-ID: <421D59C8.2080209@diewebmaster.at> Date: Thu, 24 Feb 2005 05:36:24 +0100 From: Christian Damm Organization: Die Webmaster User-Agent: Mozilla Thunderbird 0.9 (Windows/20041103) X-Accept-Language: de-DE, de, en-us, en MIME-Version: 1.0 To: Ion-Mihai Tetcu References: <20050223110037.177AB43D2F@mx1.FreeBSD.org> <421C8A60.8010407@diewebmaster.at> <20050224004857.7413d567@it.buh.tecnik93.com> In-Reply-To: <20050224004857.7413d567@it.buh.tecnik93.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 8bit X-Virus-Scanned: by amavisd-new at diewebmaster.at cc: freebsd-isp@freebsd.org Subject: Re: SpamAssassian with FreeBSD and Big Mail Server X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 24 Feb 2005 04:36:21 -0000 Ion-Mihai Tetcu schrieb: > On Wed, 23 Feb 2005 14:51:28 +0100 > Christian Damm wrote: > > >> >>Vahric MUHTARYAN schrieb: >> >>>Hi Everybody , >>> >>> Really I don't know can I say a big mail server which have >>>30,000 mailbox on it 1200+ simultaneously connections (pop,smtp,webmail). >>>Ýncoming smtp connections are between 200-400 . We want to run spam software >>>on it but machine can't handle it for this reason we seperated machine >>>freebsd+exim+SpamAssassian but on 400 connection machine goes down average >>>is very high , cpu usage really too high . >>> >>> I want to learn Anybody Who have closer or bigger system and >>>using SpamAssassian ?! >>>Really this 400 connection simultaneously can be limit for spam software ?! >>>I mean Anybody can handle more ?! >>>I have to design distributed environment ?! >>> >>>My Hardware is (for spam) >>> 2 X PIII 1G + 1 GB RAM + 2 DISK RAID 0 SCSI 10000 RPM >> >>i use spamassassin only on small-/medium-sized MTA installations (its a >>memory/cpu hog i.m.h.o. but i like it) - on all my "bigger" systems i >>really prefer dspam (coded in straight C and fast as hell). it is used >>in some environments with 350,000 email users and scales really well (if >>you have the iron and experience to build/maintain such a system/cluster). >> >>http://www.nuclearelephant.com/projects/dspam/ > > > Also in ports: mail/dspam and mail/dspam-devel (updates for both in not > committed PRs). > > I'm currently playing with a setup like OP's. I'm interested in knowing > our definition of "iron and experience to build/maintain such a > system/cluster". your definition? - or my definition? ;-) > > -- mfg. christian damm technische leitung phone: dw 42 email: christian.damm@diewebmaster.at icq at work: 124464652 die webmaster - flötzerweg 156 - 4030 linz - austria phone: +43-732-381242 fax: +43-732-381242-22 isdn (leonardo): +43-732-381242-33 homepage: www.diewebmaster.at, public email: office@diewebmaster.at From owner-freebsd-isp@FreeBSD.ORG Thu Feb 24 09:35:42 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 5584916A4CE for ; Thu, 24 Feb 2005 09:35:42 +0000 (GMT) Received: from materva.diewebmaster.at (materva.diewebmaster.at [80.66.42.216]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9F5F743D49 for ; Thu, 24 Feb 2005 09:35:41 +0000 (GMT) (envelope-from christian.damm@diewebmaster.at) Received: from localhost (localhost.diewebmaster.at [127.0.0.1]) by materva.diewebmaster.at (Postfix) with ESMTP id 95BED218056; Thu, 24 Feb 2005 10:35:40 +0100 (CET) Received: from materva.diewebmaster.at ([127.0.0.1]) by localhost (materva.diewebmaster.at [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 96820-03; Thu, 24 Feb 2005 10:35:40 +0100 (CET) Received: from [192.168.1.14] (da.diewebmaster.at [192.168.1.14]) by materva.diewebmaster.at (Postfix) with ESMTP id 9DACF218050; Thu, 24 Feb 2005 10:35:39 +0100 (CET) Message-ID: <421D9F49.8060309@diewebmaster.at> Date: Thu, 24 Feb 2005 10:32:57 +0100 From: Christian Damm User-Agent: Mozilla Thunderbird 0.9 (Windows/20041103) X-Accept-Language: de-DE, de, en-us, en MIME-Version: 1.0 To: thomas@hkeasyhost.com References: <20050223110037.177AB43D2F@mx1.FreeBSD.org> <421C8A60.8010407@diewebmaster.at> <46881.147.8.2.201.1109222551.squirrel@147.8.2.201> In-Reply-To: <46881.147.8.2.201.1109222551.squirrel@147.8.2.201> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 8bit X-Virus-Scanned: by amavisd-new at diewebmaster.at cc: freebsd-isp@freebsd.org Subject: Re: SpamAssassian with FreeBSD and Big Mail Server X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 24 Feb 2005 09:35:42 -0000 thomas@hkeasyhost.com schrieb: > I would like to try dspam as well as I am using spamassassin, but dspam > are leak of docs on postfix supporting, and no one got experience with i can encourage you to do so - you wont regret it: the statistical spam filtering methods in dspam are miles ahead spamassassin`s (spamassassin on the other hand is an antispam framework where so many things can be done (rbl`s, razor, dcc, spf etc.) - i do things like rbl checking (wirespeed) on the smtp level with postfix so i dont mind. the postfix integration is dead-easy, really. the dspam docs could be better but the dspam mailinglist is quite helpful if you got questions. also consider using one of the many postfix/dspam/etc. howto`s out there: http://devnull.com/kyler/dspam.20040609.html > dspam+Spamassassin together, so... the latest amavisd-new versions got dspam support - anyway its a little bit "hacky" at the moment i.m.h.o, so i wouldnt really use it on production hosts (some might disagree in small mta environments). > > > >> >>Vahric MUHTARYAN schrieb: >> >>>Hi Everybody , >>> >>> Really I don't know can I say a big mail server which have >>>30,000 mailbox on it 1200+ simultaneously connections >>>(pop,smtp,webmail). >>>Ýncoming smtp connections are between 200-400 . We want to run spam >>>software >>>on it but machine can't handle it for this reason we seperated machine >>>freebsd+exim+SpamAssassian but on 400 connection machine goes down >>>average >>>is very high , cpu usage really too high . >>> >>> I want to learn Anybody Who have closer or bigger system and >>>using SpamAssassian ?! >>>Really this 400 connection simultaneously can be limit for spam software >>>?! >>>I mean Anybody can handle more ?! >>>I have to design distributed environment ?! >>> >>>My Hardware is (for spam) >>> 2 X PIII 1G + 1 GB RAM + 2 DISK RAID 0 SCSI 10000 RPM >> >>i use spamassassin only on small-/medium-sized MTA installations (its a >>memory/cpu hog i.m.h.o. but i like it) - on all my "bigger" systems i >>really prefer dspam (coded in straight C and fast as hell). it is used >>in some environments with 350,000 email users and scales really well (if >>you have the iron and experience to build/maintain such a system/cluster). >> >>http://www.nuclearelephant.com/projects/dspam/ >> >> >>>Thanks >>>Vahric >>> >>>_______________________________________________ >>>freebsd-isp@freebsd.org mailing list >>>http://lists.freebsd.org/mailman/listinfo/freebsd-isp >>>To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" >>> >>> >>> >> >>-- >> >>mfg. >> >>christian damm >>technische leitung >>phone: dw 42 >>email: christian.damm@diewebmaster.at >>icq at work: 124464652 >> >>die webmaster - flötzerweg 156 - 4030 linz - austria >>phone: +43-732-381242, fax: +43-732-381242-22, isdn (leonardo): >>+43-732-381242-33 >>homepage: www.diewebmaster.at, public email: office@diewebmaster.at >>_______________________________________________ >>freebsd-isp@freebsd.org mailing list >>http://lists.freebsd.org/mailman/listinfo/freebsd-isp >>To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" >> > > > > > !DSPAM:421d64a4175283000910921! > -- mfg. christian damm technische leitung phone: dw 42 email: christian.damm@diewebmaster.at icq at work: 124464652 die webmaster - flötzerweg 156 - 4030 linz - austria phone: +43-732-381242, fax: +43-732-381242-22, isdn (leonardo): +43-732-381242-33 homepage: www.diewebmaster.at, public email: office@diewebmaster.at From owner-freebsd-isp@FreeBSD.ORG Thu Feb 24 11:16:42 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 82B1816A4CE for ; Thu, 24 Feb 2005 11:16:42 +0000 (GMT) Received: from msrv.matik.com.br (msrv.matik.com.br [200.152.83.14]) by mx1.FreeBSD.org (Postfix) with ESMTP id 2E09743D58 for ; Thu, 24 Feb 2005 11:16:41 +0000 (GMT) (envelope-from asstec@matik.com.br) Received: from [200.152.82.190] ([200.152.82.190]) by msrv.matik.com.br (8.13.1/8.12.11) with ESMTP id j1OBItS0013390 for ; Thu, 24 Feb 2005 08:18:55 -0300 (BRST) (envelope-from asstec@matik.com.br) From: Suporte Matik To: freebsd-isp@freebsd.org Date: Thu, 24 Feb 2005 08:16:22 -0300 User-Agent: KMail/1.7.2 References: <20050223110037.177AB43D2F@mx1.FreeBSD.org> <46881.147.8.2.201.1109222551.squirrel@147.8.2.201> <421D9F49.8060309@diewebmaster.at> In-Reply-To: <421D9F49.8060309@diewebmaster.at> MIME-Version: 1.0 Content-Type: multipart/signed; boundary="nextPart8734529.kLy3grCxny"; protocol="application/pgp-signature"; micalg=pgp-sha1 Content-Transfer-Encoding: 7bit Message-Id: <200502240816.27991.asstec@matik.com.br> X-Virus-Scanned: ClamAV 0.80/705/Fri Feb 11 14:51:32 2005 clamav-milter version 0.80j on msrv.matik.com.br X-Virus-Status: Clean X-Spam-Status: No, score=-102.3 required=5.0 tests=ALL_TRUSTED,ISO_7BITS, NO_RDNS2,USER_IN_WHITELIST autolearn=failed version=3.0.1 X-Spam-Checker-Version: SpamAssassin 3.0.1 (2004-10-22) on msrv.matik.com.br Subject: Re: SpamAssassian with FreeBSD and Big Mail Server X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 24 Feb 2005 11:16:42 -0000 --nextPart8734529.kLy3grCxny Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline On Thursday 24 February 2005 06:32, Christian Damm wrote: > thomas@hkeasyhost.com schrieb: > > I would like to try dspam as well as I am using spamassassin, but dspam > > are leak of docs on postfix supporting, and no one got experience with > > i can encourage you to do so - you wont regret it: the statistical spam > filtering methods in dspam are miles ahead spamassassin`s (spamassassin > on the other hand is an antispam framework where so many things can be > done (rbl`s, razor, dcc, spf etc.) - i do things like rbl checking > (wirespeed) on the smtp level with postfix so i dont mind. > the postfix integration is dead-easy, really. the dspam docs could be > better but the dspam mailinglist is quite helpful if you got questions. > also consider using one of the many postfix/dspam/etc. howto`s out there: > I am not so sure here I tried several different setups of Dspam and on small test servers 100 use= rs=20 or so it actually worked but even so the false-positive rate was very high,= =20 actually too high. But another test server with only 2000 user dspam is lost already and it=20 didn't matter which store method I tried out, even a MySQL for it only. It= =20 runs a day or two but soon a spam wave comes in message delivery time grows= =20 up, memory goes up, the queue fills the disks and swap is eaten until the=20 server goes down on his knees. When I tried to get some numbers nobody=20 answered clearly and I only hear ohh I have lots of users but I never saw=20 something real. spamassassin on the other side with good rules maintanance is hitting fine,= I=20 get almost no false-positives and almost all spam is correctly identifies=20 which we drop into a spam folder with procmail. That is cool, no memory=20 excess and absolutly stable and reliable. Hans > http://devnull.com/kyler/dspam.20040609.html > > > dspam+Spamassassin together, so... > > the latest amavisd-new versions got dspam support - anyway its a little > bit "hacky" at the moment i.m.h.o, so i wouldnt really use it on > production hosts (some might disagree in small mta environments). > > >>Vahric MUHTARYAN schrieb: > >>>Hi Everybody , > >>> > >>> Really I don't know can I say a big mail server which have > >>>30,000 mailbox on it 1200+ simultaneously connections > >>>(pop,smtp,webmail). > >>>=DDncoming smtp connections are between 200-400 . We want to run spam > >>>software > >>>on it but machine can't handle it for this reason we seperated machine > >>>freebsd+exim+SpamAssassian but on 400 connection machine goes down > >>>average > >>>is very high , cpu usage really too high . > >>> > >>> I want to learn Anybody Who have closer or bigger system a= nd > >>>using SpamAssassian ?! > >>>Really this 400 connection simultaneously can be limit for spam softwa= re > >>>?! > >>>I mean Anybody can handle more ?! > >>>I have to design distributed environment ?! > >>> > >>>My Hardware is (for spam) > >>> 2 X PIII 1G + 1 GB RAM + 2 DISK RAID 0 SCSI 10000 RPM > >> > >>i use spamassassin only on small-/medium-sized MTA installations (its a > >>memory/cpu hog i.m.h.o. but i like it) - on all my "bigger" systems i > >>really prefer dspam (coded in straight C and fast as hell). it is used > >>in some environments with 350,000 email users and scales really well (if > >>you have the iron and experience to build/maintain such a > >> system/cluster). > >> > >>http://www.nuclearelephant.com/projects/dspam/ > >> > >>>Thanks > >>>Vahric > >>> > >>>_______________________________________________ > >>>freebsd-isp@freebsd.org mailing list > >>>http://lists.freebsd.org/mailman/listinfo/freebsd-isp > >>>To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" > >> > >>-- > >> > >>mfg. > >> > >>christian damm > >>technische leitung > >>phone: dw 42 > >>email: christian.damm@diewebmaster.at > >>icq at work: 124464652 > >> > >>die webmaster - fl=F6tzerweg 156 - 4030 linz - austria > >>phone: +43-732-381242, fax: +43-732-381242-22, isdn (leonardo): > >>+43-732-381242-33 > >>homepage: www.diewebmaster.at, public email: office@diewebmaster.at > >>_______________________________________________ > >>freebsd-isp@freebsd.org mailing list > >>http://lists.freebsd.org/mailman/listinfo/freebsd-isp > >>To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" > > > > !DSPAM:421d64a4175283000910921! =2D-=20 Infomatik implementamos asas na sua rede. (18)3551.3591 (18)8112.7007 _______________________________________________________ Participe! FreeBSD - Security - Wireless e outras Entre em http://listas.matik.com.br e inscreva-se! _______________________________________________________ Mensagens sem assinatura GPG n=E3o s=E3o nossas. Messages without GPG signature are not from us. _______________________________________________________ --nextPart8734529.kLy3grCxny Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.0 (FreeBSD) iD8DBQBCHbeL22x1wvvbslkRAigjAKCi1dto4U0TDwLq39xHNdpnCDIqQgCcDhPo IXzgXx98WJBGbJ4wLMWynB0= =VG57 -----END PGP SIGNATURE----- --nextPart8734529.kLy3grCxny-- From owner-freebsd-isp@FreeBSD.ORG Thu Feb 24 11:32:18 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1AEAB16A4CE for ; Thu, 24 Feb 2005 11:32:18 +0000 (GMT) Received: from f17.mail.ru (f17.mail.ru [194.67.57.47]) by mx1.FreeBSD.org (Postfix) with ESMTP id 2604543D49 for ; Thu, 24 Feb 2005 11:32:17 +0000 (GMT) (envelope-from _pppp@mail.ru) Received: from mail by f17.mail.ru with local id 1D4HE7-000Ah8-00; Thu, 24 Feb 2005 14:32:15 +0300 Received: from [81.200.13.122] by win.mail.ru with HTTP; Thu, 24 Feb 2005 14:32:15 +0300 From: dima <_pppp@mail.ru> To: Suporte Matik Mime-Version: 1.0 X-Mailer: mPOP Web-Mail 2.19 X-Originating-IP: [81.200.13.122] Date: Thu, 24 Feb 2005 14:32:15 +0300 In-Reply-To: <200502240816.27991.asstec@matik.com.br> Content-Type: text/plain; charset=koi8-r Content-Transfer-Encoding: 8bit Message-Id: cc: freebsd-isp@freebsd.org Subject: Re[2]: SpamAssassian with FreeBSD and Big Mail Server X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: dima <_pppp@mail.ru> List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 24 Feb 2005 11:32:18 -0000 >>> I would like to try dspam as well as I am using spamassassin, but dspam >>> are leak of docs on postfix supporting, and no one got experience with >> >> i can encourage you to do so - you wont regret it: the statistical spam >> filtering methods in dspam are miles ahead spamassassin`s (spamassassin >> on the other hand is an antispam framework where so many things can be >> done (rbl`s, razor, dcc, spf etc.) - i do things like rbl checking >> (wirespeed) on the smtp level with postfix so i dont mind. >> the postfix integration is dead-easy, really. the dspam docs could be >> better but the dspam mailinglist is quite helpful if you got questions. >> also consider using one of the many postfix/dspam/etc. howto`s out there: > > I am not so sure here > I tried several different setups of Dspam and on small test servers 100 users > or so it actually worked but even so the false-positive rate was very high, > actually too high. > But another test server with only 2000 user dspam is lost already and it > didn't matter which store method I tried out, even a MySQL for it only. It > runs a day or two but soon a spam wave comes in message delivery time grows > up, memory goes up, the queue fills the disks and swap is eaten until the > server goes down on his knees. When I tried to get some numbers nobody > answered clearly and I only hear ohh I have lots of users but I never saw > something real. > > spamassassin on the other side with good rules maintanance is hitting fine, I > get almost no false-positives and almost all spam is correctly identifies > which we drop into a spam folder with procmail. That is cool, no memory > excess and absolutly stable and reliable. We use some connection and header checks before processing the actual message with antivirus/antispam software. It drops a lot of bad messages, so the dual p3 is able to process 50K+ useful messages a day without any problems. >> http://devnull.com/kyler/dspam.20040609.html >> >>> dspam+Spamassassin together, so... >> >> the latest amavisd-new versions got dspam support - anyway its a little >> bit "hacky" at the moment i.m.h.o, so i wouldnt really use it on >> production hosts (some might disagree in small mta environments). >> >>>>Vahric MUHTARYAN schrieb: >>>>>Hi Everybody , >>>>> >>>>> Really I don't know can I say a big mail server which have >>>>>30,000 mailbox on it 1200+ simultaneously connections >>>>>(pop,smtp,webmail). >>>>>Ýncoming smtp connections are between 200-400 . We want to run spam >>>>>software >>>>>on it but machine can't handle it for this reason we seperated machine >>>>>freebsd+exim+SpamAssassian but on 400 connection machine goes down >>>>>average >>>>>is very high , cpu usage really too high . >>>>> >>>>> I want to learn Anybody Who have closer or bigger system and >>>>>using SpamAssassian ?! >>>>>Really this 400 connection simultaneously can be limit for spam software > > >>>?! > > >>>I mean Anybody can handle more ?! > > >>>I have to design distributed environment ?! > > >>> > > >>>My Hardware is (for spam) > > >>> 2 X PIII 1G + 1 GB RAM + 2 DISK RAID 0 SCSI 10000 RPM > > >> > > >>i use spamassassin only on small-/medium-sized MTA installations (its a > > >>memory/cpu hog i.m.h.o. but i like it) - on all my "bigger" systems i > > >>really prefer dspam (coded in straight C and fast as hell). it is used > > >>in some environments with 350,000 email users and scales really well (if > > >>you have the iron and experience to build/maintain such a > > >> system/cluster). > > >> > > >>http://www.nuclearelephant.com/projects/dspam/ > > >> > > >>>Thanks > > >>>Vahric > > >>> > > >>>_______________________________________________ > > >>>freebsd-isp@freebsd.org mailing list > > >>>http://lists.freebsd.org/mailman/listinfo/freebsd-isp > > >>>To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" > > >> > > >>-- > > >> > > >>mfg. > > >> > > >>christian damm > > >>technische leitung > > >>phone: dw 42 > > >>email: christian.damm@diewebmaster.at > > >>icq at work: 124464652 > > >> > > >>die webmaster - flötzerweg 156 - 4030 linz - austria > > >>phone: +43-732-381242, fax: +43-732-381242-22, isdn (leonardo): > > >>+43-732-381242-33 > > >>homepage: www.diewebmaster.at, public email: office@diewebmaster.at > > >>_______________________________________________ > > >>freebsd-isp@freebsd.org mailing list > > >>http://lists.freebsd.org/mailman/listinfo/freebsd-isp > > >>To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" > > > > > > !DSPAM:421d64a4175283000910921! > > -- > > > Infomatik > implementamos asas na sua rede. > (18)3551.3591 (18)8112.7007 > _______________________________________________________ > Participe! FreeBSD - Security - Wireless e outras > Entre em http://listas.matik.com.br e inscreva-se! > _______________________________________________________ > Mensagens sem assinatura GPG não são nossas. > Messages without GPG signature are not from us. > _______________________________________________________ > > ATTACHMENT: application/pgp-signature > From owner-freebsd-isp@FreeBSD.ORG Thu Feb 24 12:00:46 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id DF01116A4DC for ; Thu, 24 Feb 2005 12:00:46 +0000 (GMT) Received: from relay.rdsnet.ro (gimli.rdsnet.ro [193.231.236.70]) by mx1.FreeBSD.org (Postfix) with SMTP id 20DF043D6E for ; Thu, 24 Feb 2005 12:00:31 +0000 (GMT) (envelope-from itetcu@people.tecnik93.com) Received: (qmail 25486 invoked from network); 24 Feb 2005 11:55:23 -0000 Received: from unknown (HELO smtp.rdsnet.ro) (62.231.74.130) by smtp1-133.rdsnet.ro with SMTP; 24 Feb 2005 11:55:23 -0000 Received: (qmail 24217 invoked by uid 89); 24 Feb 2005 12:05:20 -0000 Received: from unknown (HELO it.buh.tecnik93.com) (81.196.204.98) by 0 with SMTP; 24 Feb 2005 12:05:20 -0000 Received: from it.buh.tecnik93.com (localhost.buh.tecnik93.com [127.0.0.1]) by it.buh.tecnik93.com (Postfix) with ESMTP id 21EDA114EC; Thu, 24 Feb 2005 14:00:24 +0200 (EET) Date: Thu, 24 Feb 2005 14:00:23 +0200 From: Ion-Mihai Tetcu To: Christian Damm Message-ID: <20050224140023.35d627dd@it.buh.tecnik93.com> In-Reply-To: <421D59C8.2080209@diewebmaster.at> References: <20050223110037.177AB43D2F@mx1.FreeBSD.org> <421C8A60.8010407@diewebmaster.at> <20050224004857.7413d567@it.buh.tecnik93.com> <421D59C8.2080209@diewebmaster.at> X-Mailer: Sylpheed-Claws 1.0.1 (GTK+ 1.2.10; i386-portbld-freebsd5.3) Mime-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable cc: freebsd-isp@freebsd.org Subject: Re: SpamAssassian with FreeBSD and Big Mail Server X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 24 Feb 2005 12:00:47 -0000 On Thu, 24 Feb 2005 05:36:24 +0100 Christian Damm wrote: >=20 >=20 > Ion-Mihai Tetcu schrieb: > > On Wed, 23 Feb 2005 14:51:28 +0100 > > Christian Damm wrote: > >=20 > >=20 > >> > >>Vahric MUHTARYAN schrieb: > >> > >>>Hi Everybody ,=20 > >>>=20 > >>> Really I don't know can I say a big mail server which have > >>>30,000 mailbox on it 1200+ simultaneously connections (pop,smtp,webmai= l). > >>>=DDncoming smtp connections are between 200-400 . We want to run spam = software > >>>on it but machine can't handle it for this reason we seperated machine > >>>freebsd+exim+SpamAssassian but on 400 connection machine goes down ave= rage > >>>is very high , cpu usage really too high .=20 > >>>=20 > >>> I want to learn Anybody Who have closer or bigger system a= nd > >>>using SpamAssassian ?!=20 > >>>Really this 400 connection simultaneously can be limit for spam softwa= re ?! > >>>I mean Anybody can handle more ?!=20 > >>>I have to design distributed environment ?!=20 > >>>=20 > >>>My Hardware is (for spam) > >>> 2 X PIII 1G + 1 GB RAM + 2 DISK RAID 0 SCSI 10000 RPM =20 > >> > >>i use spamassassin only on small-/medium-sized MTA installations (its a= =20 > >>memory/cpu hog i.m.h.o. but i like it) - on all my "bigger" systems i=20 > >>really prefer dspam (coded in straight C and fast as hell). it is used= =20 > >>in some environments with 350,000 email users and scales really well (i= f=20 > >>you have the iron and experience to build/maintain such a system/cluste= r). > >> > >>http://www.nuclearelephant.com/projects/dspam/ > >=20 > >=20 > > Also in ports: mail/dspam and mail/dspam-devel (updates for both in not > > committed PRs). > >=20 > > I'm currently playing with a setup like OP's. I'm interested in knowing > > our definition of "iron and experience to build/maintain such a > > system/cluster". >=20 > your definition? - or my definition? ;-) :-) sorry, typo. Yours. And while we're at definitions - what's small / medium and what's big :-) ? --=20 IOnut Unregistered ;) FreeBSD "user" From owner-freebsd-isp@FreeBSD.ORG Thu Feb 24 14:17:14 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7580016A4CE for ; Thu, 24 Feb 2005 14:17:14 +0000 (GMT) Received: from materva.diewebmaster.at (materva.diewebmaster.at [80.66.42.216]) by mx1.FreeBSD.org (Postfix) with ESMTP id 526AF43D48 for ; Thu, 24 Feb 2005 14:17:13 +0000 (GMT) (envelope-from christian.damm@diewebmaster.at) Received: from localhost (localhost.diewebmaster.at [127.0.0.1]) by materva.diewebmaster.at (Postfix) with ESMTP id 6B8C0218056; Thu, 24 Feb 2005 15:17:09 +0100 (CET) Received: from materva.diewebmaster.at ([127.0.0.1]) by localhost (materva.diewebmaster.at [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 98177-07; Thu, 24 Feb 2005 15:17:09 +0100 (CET) Received: from [192.168.1.14] (da.diewebmaster.at [192.168.1.14]) by materva.diewebmaster.at (Postfix) with ESMTP id 7A4F6218050; Thu, 24 Feb 2005 15:17:08 +0100 (CET) Message-ID: <421DE144.3050705@diewebmaster.at> Date: Thu, 24 Feb 2005 15:14:28 +0100 From: Christian Damm User-Agent: Mozilla Thunderbird 0.9 (Windows/20041103) X-Accept-Language: de-DE, de, en-us, en MIME-Version: 1.0 To: Ion-Mihai Tetcu References: <20050223110037.177AB43D2F@mx1.FreeBSD.org> <421C8A60.8010407@diewebmaster.at> <20050224004857.7413d567@it.buh.tecnik93.com> <421D59C8.2080209@diewebmaster.at> <20050224140023.35d627dd@it.buh.tecnik93.com> In-Reply-To: <20050224140023.35d627dd@it.buh.tecnik93.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 8bit X-Virus-Scanned: by amavisd-new at diewebmaster.at cc: freebsd-isp@freebsd.org Subject: Re: SpamAssassian with FreeBSD and Big Mail Server X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 24 Feb 2005 14:17:14 -0000 Ion-Mihai Tetcu schrieb: > On Thu, 24 Feb 2005 05:36:24 +0100 > Christian Damm wrote: > > >> >>Ion-Mihai Tetcu schrieb: >> >>>On Wed, 23 Feb 2005 14:51:28 +0100 >>>Christian Damm wrote: >>> >>> >>> >>>>Vahric MUHTARYAN schrieb: >>>> >>>> >>>>>Hi Everybody , >>>>> >>>>> Really I don't know can I say a big mail server which have >>>>>30,000 mailbox on it 1200+ simultaneously connections (pop,smtp,webmail). >>>>>Ýncoming smtp connections are between 200-400 . We want to run spam software >>>>>on it but machine can't handle it for this reason we seperated machine >>>>>freebsd+exim+SpamAssassian but on 400 connection machine goes down average >>>>>is very high , cpu usage really too high . >>>>> >>>>> I want to learn Anybody Who have closer or bigger system and >>>>>using SpamAssassian ?! >>>>>Really this 400 connection simultaneously can be limit for spam software ?! >>>>>I mean Anybody can handle more ?! >>>>>I have to design distributed environment ?! >>>>> >>>>>My Hardware is (for spam) >>>>> 2 X PIII 1G + 1 GB RAM + 2 DISK RAID 0 SCSI 10000 RPM >>>> >>>>i use spamassassin only on small-/medium-sized MTA installations (its a >>>>memory/cpu hog i.m.h.o. but i like it) - on all my "bigger" systems i >>>>really prefer dspam (coded in straight C and fast as hell). it is used >>>>in some environments with 350,000 email users and scales really well (if >>>>you have the iron and experience to build/maintain such a system/cluster). >>>> >>>>http://www.nuclearelephant.com/projects/dspam/ >>> >>> >>>Also in ports: mail/dspam and mail/dspam-devel (updates for both in not >>>committed PRs). >>> >>>I'm currently playing with a setup like OP's. I'm interested in knowing >>>our definition of "iron and experience to build/maintain such a >>>system/cluster". >> >>your definition? - or my definition? ;-) > > > :-) sorry, typo. Yours. And while we're at definitions - what's small / > medium and what's big :-) ? small: 1 > 10000 medium: 10000 > 100000 big: 100000 > ... (i.m.h.o - it depends on who is looking at this) iron: im not a big fan of big "bloated" boxes in mailserver environments (sun`s and "mainframe" kind of stuff) - multiple fine tuned and carefully built x86 hosts (non SMP single CPU machinmes) running freebsd are all you need and they get cheaper every day... ;-) what kind of system-size/scalability you are after? - i also have to say that the number of email users is not the primary problem when scalability comes up - even more it is the "what kind of users you got/what kind of services you offer" question...one of my friends maintains a "small" MTA cluster with 9000 email users (many heavy power users, mx for very well known domainnames -> as drawback much spam and viruses/worms etc.), his 9000 user cluster (2 redundant (hot failover) dedicated load balancers, 3 inbound mail relays running postfix, 2 tpop3d backends, 2 av/antispam hosts, 2 redundant mysql hosts (hot failover and a netapps filer (i think a 760?!))) has most of the time much more load than standard isp systems handling around 50k to 100k userbases (mostly standard home users). > > > -- mfg. christian damm technische leitung phone: dw 42 email: christian.damm@diewebmaster.at icq at work: 124464652 die webmaster - flötzerweg 156 - 4030 linz - austria phone: +43-732-381242, fax: +43-732-381242-22, isdn (leonardo): +43-732-381242-33 homepage: www.diewebmaster.at, public email: office@diewebmaster.at From owner-freebsd-isp@FreeBSD.ORG Thu Feb 24 14:43:34 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4FCC116A4CE for ; Thu, 24 Feb 2005 14:43:34 +0000 (GMT) Received: from relay.rdsnet.ro (gimli.rdsnet.ro [193.231.236.70]) by mx1.FreeBSD.org (Postfix) with SMTP id 2F2CD43D31 for ; Thu, 24 Feb 2005 14:43:33 +0000 (GMT) (envelope-from itetcu@people.tecnik93.com) Received: (qmail 28123 invoked from network); 24 Feb 2005 14:38:27 -0000 Received: from unknown (HELO smtp.rdsnet.ro) (62.231.74.130) by smtp1-133.rdsnet.ro with SMTP; 24 Feb 2005 14:38:27 -0000 Received: (qmail 25705 invoked by uid 89); 24 Feb 2005 14:48:25 -0000 Received: from unknown (HELO it.buh.tecnik93.com) (81.196.204.98) by 0 with SMTP; 24 Feb 2005 14:48:25 -0000 Received: from it.buh.tecnik93.com (localhost.buh.tecnik93.com [127.0.0.1]) by it.buh.tecnik93.com (Postfix) with ESMTP id 939451140D; Thu, 24 Feb 2005 16:43:27 +0200 (EET) Date: Thu, 24 Feb 2005 16:43:27 +0200 From: Ion-Mihai Tetcu To: Christian Damm Message-ID: <20050224164327.56d29617@it.buh.tecnik93.com> In-Reply-To: <421DE144.3050705@diewebmaster.at> References: <20050223110037.177AB43D2F@mx1.FreeBSD.org> <421C8A60.8010407@diewebmaster.at> <20050224004857.7413d567@it.buh.tecnik93.com> <421D59C8.2080209@diewebmaster.at> <20050224140023.35d627dd@it.buh.tecnik93.com> <421DE144.3050705@diewebmaster.at> X-Mailer: Sylpheed-Claws 1.0.1 (GTK+ 1.2.10; i386-portbld-freebsd5.3) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit cc: freebsd-isp@freebsd.org Subject: Re: SpamAssassian with FreeBSD and Big Mail Server X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 24 Feb 2005 14:43:34 -0000 On Thu, 24 Feb 2005 15:14:28 +0100 Christian Damm wrote: [ ... ] > small: 1 > 10000 > medium: 10000 > 100000 > big: 100000 > ... > (i.m.h.o - it depends on who is looking at this) > > iron: im not a big fan of big "bloated" boxes in mailserver environments > (sun`s and "mainframe" kind of stuff) - multiple fine tuned and > carefully built x86 hosts (non SMP single CPU machinmes) running freebsd > are all you need and they get cheaper every day... ;-) > > what kind of system-size/scalability you are after? [ ... ] 30.000 domains (from personal sites to large traffic ones), only virus / spam filtering and then relaying the mail to the "webservers" for imap/pop/webmail access. BL rejecting makes a 70% of inbound mail for top 30 of them, but still a hell lot of spam passes and SA just can't handle the load. My dspam experience is manly with corporate LANs and such, not ISP installs. -- IOnut Unregistered ;) FreeBSD "user" From owner-freebsd-isp@FreeBSD.ORG Thu Feb 24 15:04:06 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7247216A4CE for ; Thu, 24 Feb 2005 15:04:06 +0000 (GMT) Received: from materva.diewebmaster.at (materva.diewebmaster.at [80.66.42.216]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1369643D1D for ; Thu, 24 Feb 2005 15:04:06 +0000 (GMT) (envelope-from christian.damm@diewebmaster.at) Received: from localhost (localhost.diewebmaster.at [127.0.0.1]) by materva.diewebmaster.at (Postfix) with ESMTP id 04A582180B1; Thu, 24 Feb 2005 16:04:05 +0100 (CET) Received: from materva.diewebmaster.at ([127.0.0.1]) by localhost (materva.diewebmaster.at [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 98640-03; Thu, 24 Feb 2005 16:04:04 +0100 (CET) Received: from [192.168.1.14] (da.diewebmaster.at [192.168.1.14]) by materva.diewebmaster.at (Postfix) with ESMTP id BB7FA218050; Thu, 24 Feb 2005 16:04:04 +0100 (CET) Message-ID: <421DEC44.5030100@diewebmaster.at> Date: Thu, 24 Feb 2005 16:01:24 +0100 From: Christian Damm User-Agent: Mozilla Thunderbird 0.9 (Windows/20041103) X-Accept-Language: de-DE, de, en-us, en MIME-Version: 1.0 To: Ion-Mihai Tetcu References: <20050223110037.177AB43D2F@mx1.FreeBSD.org> <421C8A60.8010407@diewebmaster.at> <20050224004857.7413d567@it.buh.tecnik93.com> <421D59C8.2080209@diewebmaster.at> <20050224140023.35d627dd@it.buh.tecnik93.com> <421DE144.3050705@diewebmaster.at> <20050224164327.56d29617@it.buh.tecnik93.com> In-Reply-To: <20050224164327.56d29617@it.buh.tecnik93.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 8bit X-Virus-Scanned: by amavisd-new at diewebmaster.at cc: freebsd-isp@freebsd.org Subject: Re: SpamAssassian with FreeBSD and Big Mail Server X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 24 Feb 2005 15:04:06 -0000 Ion-Mihai Tetcu schrieb: > On Thu, 24 Feb 2005 15:14:28 +0100 > Christian Damm wrote: > > [ ... ] > > >>small: 1 > 10000 >>medium: 10000 > 100000 >>big: 100000 > ... >>(i.m.h.o - it depends on who is looking at this) >> >>iron: im not a big fan of big "bloated" boxes in mailserver environments >>(sun`s and "mainframe" kind of stuff) - multiple fine tuned and >>carefully built x86 hosts (non SMP single CPU machinmes) running freebsd >>are all you need and they get cheaper every day... ;-) >> >>what kind of system-size/scalability you are after? > > > [ ... ] > > 30.000 domains (from personal sites to large traffic ones), only virus / > spam filtering and then relaying the mail to the "webservers" for > imap/pop/webmail access. ok - how many users (average) per domain? > > BL rejecting makes a 70% of inbound mail for top 30 of them, but still a if not more than 70% > hell lot of spam passes and SA just can't handle the load. yes - thats what i said in my original posting > > My dspam experience is manly with corporate LANs and such, not ISP > installs. with _1_ tuned mid class x86 box with plenty of ram and fast i/o running freebsd and postfix, you could handle this for sure! - of course using every useful and available anti-spam possibility offered by postfix and rejecting as much as you can during the smtp session. i run one email gateway like this for a isp (around your size) on one extremely tuned std. x86 host (freebsd/postfix + all useful built-in antispam "wizardry"/amavisd-new/clamd/vexira/gld (greylist daemon)/dspam...of course no pop3/imap on this box - load is around 0.5 max. > > > > -- mfg. christian damm technische leitung phone: dw 42 email: christian.damm@diewebmaster.at icq at work: 124464652 die webmaster - flötzerweg 156 - 4030 linz - austria phone: +43-732-381242, fax: +43-732-381242-22, isdn (leonardo): +43-732-381242-33 homepage: www.diewebmaster.at, public email: office@diewebmaster.at From owner-freebsd-isp@FreeBSD.ORG Thu Feb 24 15:38:34 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1C0CD16A4CE for ; Thu, 24 Feb 2005 15:38:34 +0000 (GMT) Received: from admin.wolfpaw.net (admin.wolfpaw.net [204.209.44.9]) by mx1.FreeBSD.org (Postfix) with SMTP id 6F0A443D1F for ; Thu, 24 Feb 2005 15:38:33 +0000 (GMT) (envelope-from admin-lists@wolfpaw.net) Received: (qmail 6912 invoked from network); 24 Feb 2005 15:38:32 -0000 Received: from fw1-corp01.wolfpaw.net (HELO wolf) (142.179.166.184) by admin.wolfpaw.net with SMTP; 24 Feb 2005 15:38:32 -0000 From: "Wolfpaw - Dale Corse" To: "'Christian Damm'" , "'Ion-Mihai Tetcu'" Date: Thu, 24 Feb 2005 08:36:31 -0700 Message-ID: <034001c51a86$9d5c9f40$020a0a0a@wolf> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.6626 In-Reply-To: <421DEC44.5030100@diewebmaster.at> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1441 Importance: Normal cc: freebsd-isp@freebsd.org Subject: RE: SpamAssassian with FreeBSD and Big Mail Server X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 24 Feb 2005 15:38:34 -0000 Sortmonster blows dspam out of the water, and you don=92t even need to use DNS BL's (which have their own potential problems.) It is native to postfix, and you can basically configure default BSD, toss it in, and put SA behind it - done.. We have a setup similar to this running on a p4 1.8 Ghz w/ 1GB ram, which is also serving websites, and some muds. Why make it more complicated then it has to be. Sure, it costs $30/mo - but considering the hardware and time you'll save, it's worth it. The part people aren=92t mentioning here is the (IMO) extreme amount of tweaking dspam takes, and the fact I _believe_ it has to build its logic, which can make it useless for a while. I much prefer things that simply work as intended when I drop them on.. I don't know about you, but I have little time as it is, so I try not to waste it :) My 2 cents :) D. > -----Original Message----- > From: owner-freebsd-isp@freebsd.org=20 > [mailto:owner-freebsd-isp@freebsd.org] On Behalf Of Christian Damm > Sent: Thursday, February 24, 2005 8:01 AM > To: Ion-Mihai Tetcu > Cc: freebsd-isp@freebsd.org > Subject: Re: SpamAssassian with FreeBSD and Big Mail Server >=20 >=20 >=20 >=20 > Ion-Mihai Tetcu schrieb: > > On Thu, 24 Feb 2005 15:14:28 +0100 > > Christian Damm wrote: > > =20 > > [ ... ] > >=20 > >=20 > >>small: 1 > 10000 > >>medium: 10000 > 100000 > >>big: 100000 > ... > >>(i.m.h.o - it depends on who is looking at this) > >> > >>iron: im not a big fan of big "bloated" boxes in mailserver=20 > >>environments > >>(sun`s and "mainframe" kind of stuff) - multiple fine tuned and=20 > >>carefully built x86 hosts (non SMP single CPU machinmes)=20 > running freebsd=20 > >>are all you need and they get cheaper every day... ;-) > >> > >>what kind of system-size/scalability you are after? > >=20 > >=20 > > [ ... ] > >=20 > > 30.000 domains (from personal sites to large traffic ones),=20 > only virus=20 > > / spam filtering and then relaying the mail to the "webservers" for=20 > > imap/pop/webmail access. >=20 > ok - how many users (average) per domain? >=20 > >=20 > > BL rejecting makes a 70% of inbound mail for top 30 of=20 > them, but still=20 > > a >=20 > if not more than 70% >=20 > > hell lot of spam passes and SA just can't handle the load. >=20 > yes - thats what i said in my original posting >=20 > >=20 > > My dspam experience is manly with corporate LANs and such, not ISP=20 > > installs. >=20 > with _1_ tuned mid class x86 box with plenty of ram and fast=20 > i/o running=20 > freebsd and postfix, you could handle this for sure! - of=20 > course using=20 > every useful and available anti-spam possibility offered by=20 > postfix and=20 > rejecting as much as you can during the smtp session. i run one email=20 > gateway like this for a isp (around your size) on one extremely tuned=20 > std. x86 host (freebsd/postfix + all useful built-in antispam=20 > "wizardry"/amavisd-new/clamd/vexira/gld (greylist daemon)/dspam...of=20 > course no pop3/imap on this box - load is around 0.5 max. >=20 > >=20 > >=20 > >=20 > >=20 >=20 > --=20 >=20 > mfg. >=20 > christian damm > technische leitung > phone: dw 42 > email: christian.damm@diewebmaster.at > icq at work: 124464652 >=20 > die webmaster - fl=F6tzerweg 156 - 4030 linz - austria > phone: +43-732-381242, fax: +43-732-381242-22, isdn (leonardo):=20 > +43-732-381242-33 > homepage: www.diewebmaster.at, public email:=20 > office@diewebmaster.at _______________________________________________ > freebsd-isp@freebsd.org mailing list=20 > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" >=20 >=20 From owner-freebsd-isp@FreeBSD.ORG Fri Feb 25 03:52:51 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A61CF16A4CE for ; Fri, 25 Feb 2005 03:52:51 +0000 (GMT) Received: from lily.ezo.net (nsc.ezo.net [68.23.200.13]) by mx1.FreeBSD.org (Postfix) with ESMTP id 4651843D62 for ; Fri, 25 Feb 2005 03:52:51 +0000 (GMT) (envelope-from jflowers@ezo.net) Received: from www.ezo.net (peony.ezo.net [68.23.200.11]) by lily.ezo.net (8.12.6/8.12.6) with ESMTP id j1P3qwLE035330 for ; Thu, 24 Feb 2005 22:52:59 -0500 (EST) (envelope-from jflowers@ezo.net) From: "Jim Flowers" To: freebsd-isp@freebsd.org Date: Thu, 24 Feb 2005 22:56:36 -0500 Message-Id: <20050225034259.M71908@ezo.net> X-Mailer: Open WebMail 2.10 20031002 X-OriginatingIP: 65.25.64.123 (jflowers) MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Subject: DNS Reverse Delegation X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 25 Feb 2005 03:52:51 -0000 I've run into a problem with delegating reverse DNS using BIND 8.2.4 that I can't figure out and I'm hoping for some guidance. I have a couple of blocks delegated to me as w.x.y.0/23 which I handle with a couple of zones 1) y.x.w.in-addr.arpa and 2) y+1.x.w.in-addr.arpa. Now I want to delegate the second zone to an outsourced dns server and I can't see how to do it. If I create a zone file for y+1.x.w.in-addr.arpa with the following NS records: y+1.x.w.in-addr.arpa IN NS ns1.remotedomain.tld. y+1.x.w.in-addr.arpa IN NS ns2.remotedomain.tld. It doesn't work and these records are not in named_dump.db. I figure this is because you aren't allowed to delegate a zone twice and the y+1.x.w.in-addr.arpa zone has already been delegated by my upstream ISP. Is there a correct way to do this or will I have to have this done by my upstream ISP? -- Jim Flowers From owner-freebsd-isp@FreeBSD.ORG Fri Feb 25 04:56:11 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9361716A4CE for ; Fri, 25 Feb 2005 04:56:11 +0000 (GMT) Received: from msrv.matik.com.br (msrv.matik.com.br [200.152.83.14]) by mx1.FreeBSD.org (Postfix) with ESMTP id 20CCE43D3F for ; Fri, 25 Feb 2005 04:56:10 +0000 (GMT) (envelope-from asstec@matik.com.br) Received: from [200.152.82.190] ([200.152.82.190]) by msrv.matik.com.br (8.13.1/8.12.11) with ESMTP id j1P4waJl026953 for ; Fri, 25 Feb 2005 01:58:37 -0300 (BRST) (envelope-from asstec@matik.com.br) From: Suporte Matik To: freebsd-isp@freebsd.org Date: Fri, 25 Feb 2005 01:55:48 -0300 User-Agent: KMail/1.7.2 References: <20050223110037.177AB43D2F@mx1.FreeBSD.org> <421DE144.3050705@diewebmaster.at> <20050224164327.56d29617@it.buh.tecnik93.com> In-Reply-To: <20050224164327.56d29617@it.buh.tecnik93.com> MIME-Version: 1.0 Content-Type: multipart/signed; boundary="nextPart1984769.YWXxsAYsmZ"; protocol="application/pgp-signature"; micalg=pgp-sha1 Content-Transfer-Encoding: 7bit Message-Id: <200502250155.58003.asstec@matik.com.br> X-Virus-Scanned: ClamAV 0.80/705/Fri Feb 11 14:51:32 2005 clamav-milter version 0.80j on msrv.matik.com.br X-Virus-Status: Clean X-Spam-Status: No, score=-102.3 required=5.0 tests=ALL_TRUSTED,ISO_7BITS, NO_RDNS2,USER_IN_WHITELIST autolearn=failed version=3.0.1 X-Spam-Checker-Version: SpamAssassin 3.0.1 (2004-10-22) on msrv.matik.com.br Subject: Re: SpamAssassian with FreeBSD and Big Mail Server X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 25 Feb 2005 04:56:11 -0000 --nextPart1984769.YWXxsAYsmZ Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline On Thursday 24 February 2005 11:43, Ion-Mihai Tetcu wrote: > > > small: 1 > 10000 > > medium: 10000 > 100000 > > big: 100000 > ... > > (i.m.h.o - it depends on who is looking at this) > > 30.000 domains (from personal sites to large traffic ones), only virus / > spam filtering and then relaying the mail to the "webservers" for > imap/pop/webmail access. > > BL rejecting makes a 70% of inbound mail for top 30 of them, but still a > hell lot of spam passes and SA just can't handle the load. > I just thought this was funny since you questioned before the obviously=20 strange numbers small, medium and big but are telling us now "a hell lot=20 of" ... so what nasty kind of number is this ?=20 Hans > My dspam experience is manly with corporate LANs and such, not ISP > installs. =2D-=20 Infomatik implementamos asas na sua rede. (18)3551.3591 (18)8112.7007 _______________________________________________________ Participe! FreeBSD - Security - Wireless e outras Entre em http://listas.matik.com.br e inscreva-se! _______________________________________________________ Mensagens sem assinatura GPG n=E3o s=E3o nossas. Messages without GPG signature are not from us. _______________________________________________________ --nextPart1984769.YWXxsAYsmZ Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.0 (FreeBSD) iD8DBQBCHq/d22x1wvvbslkRApbgAKDPnQn+3xO9Yibo2QHvRciCYqfUAgCfRRZ+ 7VR2o/3G+gDuNXsFRHXYT2Q= =sfSs -----END PGP SIGNATURE----- --nextPart1984769.YWXxsAYsmZ-- From owner-freebsd-isp@FreeBSD.ORG Fri Feb 25 05:02:30 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C1B7216A4CE for ; Fri, 25 Feb 2005 05:02:30 +0000 (GMT) Received: from msrv.matik.com.br (msrv.matik.com.br [200.152.83.14]) by mx1.FreeBSD.org (Postfix) with ESMTP id E347743D49 for ; Fri, 25 Feb 2005 05:02:29 +0000 (GMT) (envelope-from asstec@matik.com.br) Received: from [200.152.82.190] ([200.152.82.190]) by msrv.matik.com.br (8.13.1/8.12.11) with ESMTP id j1P54x1f027028 for ; Fri, 25 Feb 2005 02:04:59 -0300 (BRST) (envelope-from asstec@matik.com.br) From: Suporte Matik To: freebsd-isp@freebsd.org Date: Fri, 25 Feb 2005 02:02:17 -0300 User-Agent: KMail/1.7.2 References: <20050223110037.177AB43D2F@mx1.FreeBSD.org> <20050224164327.56d29617@it.buh.tecnik93.com> <421DEC44.5030100@diewebmaster.at> In-Reply-To: <421DEC44.5030100@diewebmaster.at> MIME-Version: 1.0 Content-Type: multipart/signed; boundary="nextPart1378342.CC9PEyFjtZ"; protocol="application/pgp-signature"; micalg=pgp-sha1 Content-Transfer-Encoding: 7bit Message-Id: <200502250202.21232.asstec@matik.com.br> X-Virus-Scanned: ClamAV 0.80/705/Fri Feb 11 14:51:32 2005 clamav-milter version 0.80j on msrv.matik.com.br X-Virus-Status: Clean X-Spam-Status: No, score=-102.3 required=5.0 tests=ALL_TRUSTED,ISO_7BITS, NO_RDNS2,USER_IN_WHITELIST autolearn=failed version=3.0.1 X-Spam-Checker-Version: SpamAssassin 3.0.1 (2004-10-22) on msrv.matik.com.br Subject: Re: SpamAssassian with FreeBSD and Big Mail Server X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 25 Feb 2005 05:02:30 -0000 --nextPart1378342.CC9PEyFjtZ Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline On Thursday 24 February 2005 12:01, Christian Damm wrote: > with _1_ tuned mid class x86 box with plenty of ram and fast i/o running > freebsd and postfix, you could handle this for sure! - of course using > every useful and available anti-spam possibility offered by postfix and > rejecting as much as you can during the smtp session. i run one email > gateway like this for a isp (around your size) on one extremely tuned > std. x86 host (freebsd/postfix + all useful built-in antispam > "wizardry"/amavisd-new/clamd/vexira/gld (greylist daemon)/dspam...of > course no pop3/imap on this box - load is around 0.5 max. Hi you are running amavis + clamd + dspam on a normal PC for 30000 users? Hans =2D-=20 Infomatik implementamos asas na sua rede. (18)3551.3591 (18)8112.7007 _______________________________________________________ Participe! FreeBSD - Security - Wireless e outras Entre em http://listas.matik.com.br e inscreva-se! _______________________________________________________ Mensagens sem assinatura GPG n=E3o s=E3o nossas. Messages without GPG signature are not from us. _______________________________________________________ --nextPart1378342.CC9PEyFjtZ Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.0 (FreeBSD) iD8DBQBCHrFd22x1wvvbslkRAro4AJ9yV2JsilTy2Z86BFQYugpKM+4q9ACghYil h9L4sE2ziF9FjCgqH+jRYOA= =ZX+X -----END PGP SIGNATURE----- --nextPart1378342.CC9PEyFjtZ-- From owner-freebsd-isp@FreeBSD.ORG Fri Feb 25 07:08:53 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0EB5E16A4CE for ; Fri, 25 Feb 2005 07:08:53 +0000 (GMT) Received: from exhsto1.se.dataphone.com (exhsto1.se.dataphone.com [212.37.6.239]) by mx1.FreeBSD.org (Postfix) with ESMTP id CA7A943D5A for ; Fri, 25 Feb 2005 07:08:51 +0000 (GMT) (envelope-from patrik.forsberg@dataphone.net) Content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable X-MimeOLE: Produced By Microsoft Exchange V6.5.7226.0 Date: Fri, 25 Feb 2005 08:08:50 +0100 Message-ID: <375DD163B075E34EA3C10A6286E34A548B9CEF@exhsto1.se.dataphone.com> X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: DNS Reverse Delegation Thread-Index: AcUa7ay2JKVr5hLySx+WPyfyPl9bMAAGedkQ From: "Patrik Forsberg" To: "Jim Flowers" cc: freebsd-isp@freebsd.org Subject: RE: DNS Reverse Delegation X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 25 Feb 2005 07:08:53 -0000 > I've run into a problem with delegating reverse DNS using=20 > BIND 8.2.4 that I > can't figure out and I'm hoping for some guidance. You should really upgrade to 9.x > Now I want to delegate the second zone to an outsourced dns=20 > server and I can't > see how to do it. This needs to be done by following RFC2317. > If I create a zone file for y+1.x.w.in-addr.arpa with the=20 > following NS records: >=20 > y+1.x.w.in-addr.arpa IN NS ns1.remotedomain.tld. > y+1.x.w.in-addr.arpa IN NS ns2.remotedomain.tld. well, thats half way there. example: zone in this case is x.y.z.0/24 and the delegation will be about x.y.z.184/29. 184-193 IN NS ns.somedns.somewhere 184-193 IN NS ns.yourdns $GENERATE 184-193 $ CNAME $.184-193 Regards, Patrik From owner-freebsd-isp@FreeBSD.ORG Fri Feb 25 09:55:37 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 222DB16A4CE for ; Fri, 25 Feb 2005 09:55:37 +0000 (GMT) Received: from materva.diewebmaster.at (materva.diewebmaster.at [80.66.42.216]) by mx1.FreeBSD.org (Postfix) with ESMTP id BE38243D66 for ; Fri, 25 Feb 2005 09:55:36 +0000 (GMT) (envelope-from christian.damm@diewebmaster.at) Received: from localhost (localhost.diewebmaster.at [127.0.0.1]) by materva.diewebmaster.at (Postfix) with ESMTP id AA1BB2180B1; Fri, 25 Feb 2005 10:55:35 +0100 (CET) Received: from materva.diewebmaster.at ([127.0.0.1]) by localhost (materva.diewebmaster.at [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 03643-03; Fri, 25 Feb 2005 10:55:35 +0100 (CET) Received: from [192.168.1.14] (da.diewebmaster.at [192.168.1.14]) by materva.diewebmaster.at (Postfix) with ESMTP id 10CA2218056; Fri, 25 Feb 2005 10:55:33 +0100 (CET) Message-ID: <421EF571.40101@diewebmaster.at> Date: Fri, 25 Feb 2005 10:52:49 +0100 From: Christian Damm User-Agent: Mozilla Thunderbird 0.9 (Windows/20041103) X-Accept-Language: de-DE, de, en-us, en MIME-Version: 1.0 To: Suporte Matik References: <20050223110037.177AB43D2F@mx1.FreeBSD.org> <20050224164327.56d29617@it.buh.tecnik93.com> <421DEC44.5030100@diewebmaster.at> <200502250202.21232.asstec@matik.com.br> In-Reply-To: <200502250202.21232.asstec@matik.com.br> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 8bit X-Virus-Scanned: by amavisd-new at diewebmaster.at cc: freebsd-isp@freebsd.org Subject: Re: SpamAssassian with FreeBSD and Big Mail Server X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 25 Feb 2005 09:55:37 -0000 Suporte Matik schrieb: > On Thursday 24 February 2005 12:01, Christian Damm wrote: > >>with _1_ tuned mid class x86 box with plenty of ram and fast i/o running >>freebsd and postfix, you could handle this for sure! - of course using >>every useful and available anti-spam possibility offered by postfix and >>rejecting as much as you can during the smtp session. i run one email >>gateway like this for a isp (around your size) on one extremely tuned >>std. x86 host (freebsd/postfix + all useful built-in antispam >>"wizardry"/amavisd-new/clamd/vexira/gld (greylist daemon)/dspam...of >>course no pop3/imap on this box - load is around 0.5 max. > > > Hi > you are running amavis + clamd + dspam on a normal PC for 30000 users? yes - without real load...it all depends on tuning the box/environment. amavisd/clamd/vexira (our second av scanner)/dspam dont get much mails delivered because of our extremely strict postfix anti spam config (mostily at the smtp level - BEFORE fully accepting the mail)...we block around 90-95% of junk at the doors and let the other (resource intensive) daemons/services do the final cleaning. also keep in mind that we are talking about an inbound antispam/virus gateway - no pop3/imap or stuff like that...drawback is: we cant integrate things like full av/spam quarantine into this system - but on the other hand we have an extremely low false positive rate (when it comes to RBL`s/DUL`s/RHSBL`s etc. im real "picky") - and greylisting also helps much (we use gld / http://www.gasmi.net/gld.html). > > Hans > > > > > > > > ------------------------------------------------------------------------ > > !DSPAM:421eb179139579563310554! -- mfg. christian damm technische leitung phone: dw 42 email: christian.damm@diewebmaster.at icq at work: 124464652 die webmaster - flötzerweg 156 - 4030 linz - austria phone: +43-732-381242, fax: +43-732-381242-22, isdn (leonardo): +43-732-381242-33 homepage: www.diewebmaster.at, public email: office@diewebmaster.at From owner-freebsd-isp@FreeBSD.ORG Fri Feb 25 10:04:09 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 69D7E16A4CE for ; Fri, 25 Feb 2005 10:04:09 +0000 (GMT) Received: from materva.diewebmaster.at (materva.diewebmaster.at [80.66.42.216]) by mx1.FreeBSD.org (Postfix) with ESMTP id A3D4843D5F for ; Fri, 25 Feb 2005 10:04:08 +0000 (GMT) (envelope-from christian.damm@diewebmaster.at) Received: from localhost (localhost.diewebmaster.at [127.0.0.1]) by materva.diewebmaster.at (Postfix) with ESMTP id C672D2180B1; Fri, 25 Feb 2005 11:04:07 +0100 (CET) Received: from materva.diewebmaster.at ([127.0.0.1]) by localhost (materva.diewebmaster.at [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 03498-06; Fri, 25 Feb 2005 11:04:07 +0100 (CET) Received: from [192.168.1.14] (da.diewebmaster.at [192.168.1.14]) by materva.diewebmaster.at (Postfix) with ESMTP id 5989E218056; Fri, 25 Feb 2005 11:04:07 +0100 (CET) Message-ID: <421EF775.4040304@diewebmaster.at> Date: Fri, 25 Feb 2005 11:01:25 +0100 From: Christian Damm User-Agent: Mozilla Thunderbird 0.9 (Windows/20041103) X-Accept-Language: de-DE, de, en-us, en MIME-Version: 1.0 To: Wolfpaw - Dale Corse References: <034001c51a86$9d5c9f40$020a0a0a@wolf> In-Reply-To: <034001c51a86$9d5c9f40$020a0a0a@wolf> Content-Type: text/plain; charset=windows-1252; format=flowed Content-Transfer-Encoding: 8bit X-Virus-Scanned: by amavisd-new at diewebmaster.at cc: "freebsd-isp@freebsd.org" Subject: Re: SpamAssassian with FreeBSD and Big Mail Server X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 25 Feb 2005 10:04:09 -0000 Wolfpaw - Dale Corse schrieb: > Sortmonster blows dspam out of the water, and you don’t even need to > use DNS BL's (which have their own potential problems.) It is native > to postfix, and you can basically configure default BSD, toss it in, > and put SA behind it - done.. We have a setup similar to this running > on a p4 1.8 Ghz w/ 1GB ram, which is also serving websites, and > some muds. > > Why make it more complicated then it has to be. Sure, it costs > $30/mo - but considering the hardware and time you'll save, it's > worth it. The part people aren’t mentioning here is the (IMO) > extreme amount of tweaking dspam takes, and the fact I _believe_ > it has to build its logic, which can make it useless for a while. > I much prefer things that simply work as intended when I drop them > on.. I don't know about you, but I have little time as it is, so > I try not to waste it :) i looked at the sortmonster site and it sounds interesting - anyway, i have a strict open source policy (when it comes to our mailserver environment) in my company...also i think that tweaking software is essential in a *nix ISP environment so im not a big fan of out-of-the-box ("you can call the support - but we dont know what all this funky binaries do") solutions. > > My 2 cents :) > D. > > >>-----Original Message----- >>From: owner-freebsd-isp@freebsd.org >>[mailto:owner-freebsd-isp@freebsd.org] On Behalf Of Christian Damm >>Sent: Thursday, February 24, 2005 8:01 AM >>To: Ion-Mihai Tetcu >>Cc: freebsd-isp@freebsd.org >>Subject: Re: SpamAssassian with FreeBSD and Big Mail Server >> >> >> >> >>Ion-Mihai Tetcu schrieb: >> >>>On Thu, 24 Feb 2005 15:14:28 +0100 >>>Christian Damm wrote: >>> >>> [ ... ] >>> >>> >>> >>>>small: 1 > 10000 >>>>medium: 10000 > 100000 >>>>big: 100000 > ... >>>>(i.m.h.o - it depends on who is looking at this) >>>> >>>>iron: im not a big fan of big "bloated" boxes in mailserver >>>>environments >>>>(sun`s and "mainframe" kind of stuff) - multiple fine tuned and >>>>carefully built x86 hosts (non SMP single CPU machinmes) >> >>running freebsd >> >>>>are all you need and they get cheaper every day... ;-) >>>> >>>>what kind of system-size/scalability you are after? >>> >>> >>> [ ... ] >>> >>>30.000 domains (from personal sites to large traffic ones), >> >>only virus >> >>>/ spam filtering and then relaying the mail to the "webservers" for >>>imap/pop/webmail access. >> >>ok - how many users (average) per domain? >> >> >>>BL rejecting makes a 70% of inbound mail for top 30 of >> >>them, but still >> >>>a >> >>if not more than 70% >> >> >>>hell lot of spam passes and SA just can't handle the load. >> >>yes - thats what i said in my original posting >> >> >>>My dspam experience is manly with corporate LANs and such, not ISP >>>installs. >> >>with _1_ tuned mid class x86 box with plenty of ram and fast >>i/o running >>freebsd and postfix, you could handle this for sure! - of >>course using >>every useful and available anti-spam possibility offered by >>postfix and >>rejecting as much as you can during the smtp session. i run one email >>gateway like this for a isp (around your size) on one extremely tuned >>std. x86 host (freebsd/postfix + all useful built-in antispam >>"wizardry"/amavisd-new/clamd/vexira/gld (greylist daemon)/dspam...of >>course no pop3/imap on this box - load is around 0.5 max. >> >> >>> >>> >>> >>-- >> >>mfg. >> >>christian damm >>technische leitung >>phone: dw 42 >>email: christian.damm@diewebmaster.at >>icq at work: 124464652 >> >>die webmaster - flötzerweg 156 - 4030 linz - austria >>phone: +43-732-381242, fax: +43-732-381242-22, isdn (leonardo): >>+43-732-381242-33 >>homepage: www.diewebmaster.at, public email: >>office@diewebmaster.at _______________________________________________ >>freebsd-isp@freebsd.org mailing list >>http://lists.freebsd.org/mailman/listinfo/freebsd-isp >>To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" >> >> > > > > > !DSPAM:421df4fc882231401791167! > -- mfg. christian damm technische leitung phone: dw 42 email: christian.damm@diewebmaster.at icq at work: 124464652 die webmaster - flötzerweg 156 - 4030 linz - austria phone: +43-732-381242, fax: +43-732-381242-22, isdn (leonardo): +43-732-381242-33 homepage: www.diewebmaster.at, public email: office@diewebmaster.at From owner-freebsd-isp@FreeBSD.ORG Fri Feb 25 10:09:11 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id AA67916A4CE for ; Fri, 25 Feb 2005 10:09:11 +0000 (GMT) Received: from materva.diewebmaster.at (materva.diewebmaster.at [80.66.42.216]) by mx1.FreeBSD.org (Postfix) with ESMTP id 5923B43D1D for ; Fri, 25 Feb 2005 10:09:11 +0000 (GMT) (envelope-from christian.damm@diewebmaster.at) Received: from localhost (localhost.diewebmaster.at [127.0.0.1]) by materva.diewebmaster.at (Postfix) with ESMTP id 57FDF2180B1; Fri, 25 Feb 2005 11:09:10 +0100 (CET) Received: from materva.diewebmaster.at ([127.0.0.1]) by localhost (materva.diewebmaster.at [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 03498-07; Fri, 25 Feb 2005 11:09:10 +0100 (CET) Received: from [192.168.1.14] (da.diewebmaster.at [192.168.1.14]) by materva.diewebmaster.at (Postfix) with ESMTP id 167D4218056; Fri, 25 Feb 2005 11:09:10 +0100 (CET) Message-ID: <421EF8A4.20605@diewebmaster.at> Date: Fri, 25 Feb 2005 11:06:28 +0100 From: Christian Damm User-Agent: Mozilla Thunderbird 0.9 (Windows/20041103) X-Accept-Language: de-DE, de, en-us, en MIME-Version: 1.0 To: Suporte Matik References: <20050223110037.177AB43D2F@mx1.FreeBSD.org> <421DE144.3050705@diewebmaster.at> <20050224164327.56d29617@it.buh.tecnik93.com> <200502250155.58003.asstec@matik.com.br> In-Reply-To: <200502250155.58003.asstec@matik.com.br> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 8bit X-Virus-Scanned: by amavisd-new at diewebmaster.at cc: freebsd-isp@freebsd.org Subject: Re: SpamAssassian with FreeBSD and Big Mail Server X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 25 Feb 2005 10:09:11 -0000 Suporte Matik schrieb: > On Thursday 24 February 2005 11:43, Ion-Mihai Tetcu wrote: > >>>small: 1 > 10000 >>>medium: 10000 > 100000 >>>big: 100000 > ... >>>(i.m.h.o - it depends on who is looking at this) >> >>30.000 domains (from personal sites to large traffic ones), only virus / >>spam filtering and then relaying the mail to the "webservers" for >>imap/pop/webmail access. >> >>BL rejecting makes a 70% of inbound mail for top 30 of them, but still a >>hell lot of spam passes and SA just can't handle the load. >> > > > I just thought this was funny since you questioned before the obviously > strange numbers small, medium and big but are telling us now "a hell lot > of" ... for me its not that obvious - he is running a mid sized mailserver environment, accepts _all_ (or most of) the junk and trys to sort/clean/trash it "after-queue" - with this config its clear that SA alone cant handle the load (you can throw hardware at it but i think thats not the way to go). > > so what nasty kind of number is this ? > > Hans > > > > >>My dspam experience is manly with corporate LANs and such, not ISP >>installs. > > > > ------------------------------------------------------------------------ > > !DSPAM:421eb001101071346049507! -- mfg. christian damm technische leitung phone: dw 42 email: christian.damm@diewebmaster.at icq at work: 124464652 die webmaster - flötzerweg 156 - 4030 linz - austria phone: +43-732-381242, fax: +43-732-381242-22, isdn (leonardo): +43-732-381242-33 homepage: www.diewebmaster.at, public email: office@diewebmaster.at From owner-freebsd-isp@FreeBSD.ORG Fri Feb 25 10:27:39 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 819D116A4CE for ; Fri, 25 Feb 2005 10:27:39 +0000 (GMT) Received: from materva.diewebmaster.at (materva.diewebmaster.at [80.66.42.216]) by mx1.FreeBSD.org (Postfix) with ESMTP id 8470F43D5C for ; Fri, 25 Feb 2005 10:27:38 +0000 (GMT) (envelope-from christian.damm@diewebmaster.at) Received: from localhost (localhost.diewebmaster.at [127.0.0.1]) by materva.diewebmaster.at (Postfix) with ESMTP id 538D62180B1; Fri, 25 Feb 2005 11:27:37 +0100 (CET) Received: from materva.diewebmaster.at ([127.0.0.1]) by localhost (materva.diewebmaster.at [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 03394-10; Fri, 25 Feb 2005 11:27:37 +0100 (CET) Received: from [192.168.1.14] (da.diewebmaster.at [192.168.1.14]) by materva.diewebmaster.at (Postfix) with ESMTP id E6564218056; Fri, 25 Feb 2005 11:27:36 +0100 (CET) Message-ID: <421EFCF7.3090303@diewebmaster.at> Date: Fri, 25 Feb 2005 11:24:55 +0100 From: Christian Damm User-Agent: Mozilla Thunderbird 0.9 (Windows/20041103) X-Accept-Language: de-DE, de, en-us, en MIME-Version: 1.0 To: Suporte Matik References: <20050223110037.177AB43D2F@mx1.FreeBSD.org> <46881.147.8.2.201.1109222551.squirrel@147.8.2.201> <421D9F49.8060309@diewebmaster.at> <200502240816.27991.asstec@matik.com.br> In-Reply-To: <200502240816.27991.asstec@matik.com.br> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 8bit X-Virus-Scanned: by amavisd-new at diewebmaster.at cc: "freebsd-isp@freebsd.org" Subject: Re: SpamAssassian with FreeBSD and Big Mail Server X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 25 Feb 2005 10:27:39 -0000 Suporte Matik schrieb: > On Thursday 24 February 2005 06:32, Christian Damm wrote: > >>thomas@hkeasyhost.com schrieb: >> >>>I would like to try dspam as well as I am using spamassassin, but dspam >>>are leak of docs on postfix supporting, and no one got experience with >> >>i can encourage you to do so - you wont regret it: the statistical spam >>filtering methods in dspam are miles ahead spamassassin`s (spamassassin >>on the other hand is an antispam framework where so many things can be >>done (rbl`s, razor, dcc, spf etc.) - i do things like rbl checking >>(wirespeed) on the smtp level with postfix so i dont mind. >>the postfix integration is dead-easy, really. the dspam docs could be >>better but the dspam mailinglist is quite helpful if you got questions. >>also consider using one of the many postfix/dspam/etc. howto`s out there: >> > > > > I am not so sure here > I tried several different setups of Dspam and on small test servers 100 users > or so it actually worked but even so the false-positive rate was very high, > actually too high. my false positive rate is around 0.01% - and we are talking >50k userbases here. if you need some out-of-the-box solution SA is fine - thats not what dspam really was made for. in the long run dspam is much more reliable/scaleable. but agreed, dspam requires some real tweaking and RTFM... http://www.nuclearelephant.com/projects/dspam/howtotest.txt > But another test server with only 2000 user dspam is lost already and it > didn't matter which store method I tried out, even a MySQL for it only. It mysql is really a must when it comes to dspam - the pgsql support is ok, but bdb sucks! i dont blame dspam for that, bdb is the pig here. agreed, running dspam as your only weapon against spam can really load your boxes in medium sized environments - but there are many possibilities to tune dspam for high load. > runs a day or two but soon a spam wave comes in message delivery time grows > up, memory goes up, the queue fills the disks and swap is eaten until the > server goes down on his knees. When I tried to get some numbers nobody > answered clearly and I only hear ohh I have lots of users but I never saw > something real. i give you all the numbers you want - just ask. ;-) > > spamassassin on the other side with good rules maintanance is hitting fine, I > get almost no false-positives and almost all spam is correctly identifies > which we drop into a spam folder with procmail. That is cool, no memory > excess and absolutly stable and reliable. 1.) procmail is slow (even maildrop is, altough its 3 times faster) 2.) you have to maintain your SA ruleset 3.) SA is a perl bloat (anyway - i like it) - thats also one of the reasons i want to drop amavisd-new off my boxes when i find a good alternative... > > > Hans > > > > > >>http://devnull.com/kyler/dspam.20040609.html >> >> >>>dspam+Spamassassin together, so... >> >>the latest amavisd-new versions got dspam support - anyway its a little >>bit "hacky" at the moment i.m.h.o, so i wouldnt really use it on >>production hosts (some might disagree in small mta environments). >> >> >>>>Vahric MUHTARYAN schrieb: >>>> >>>>>Hi Everybody , >>>>> >>>>> Really I don't know can I say a big mail server which have >>>>>30,000 mailbox on it 1200+ simultaneously connections >>>>>(pop,smtp,webmail). >>>>>Ýncoming smtp connections are between 200-400 . We want to run spam >>>>>software >>>>>on it but machine can't handle it for this reason we seperated machine >>>>>freebsd+exim+SpamAssassian but on 400 connection machine goes down >>>>>average >>>>>is very high , cpu usage really too high . >>>>> >>>>> I want to learn Anybody Who have closer or bigger system and >>>>>using SpamAssassian ?! >>>>>Really this 400 connection simultaneously can be limit for spam software >>>>>?! >>>>>I mean Anybody can handle more ?! >>>>>I have to design distributed environment ?! >>>>> >>>>>My Hardware is (for spam) >>>>> 2 X PIII 1G + 1 GB RAM + 2 DISK RAID 0 SCSI 10000 RPM >>>> >>>>i use spamassassin only on small-/medium-sized MTA installations (its a >>>>memory/cpu hog i.m.h.o. but i like it) - on all my "bigger" systems i >>>>really prefer dspam (coded in straight C and fast as hell). it is used >>>>in some environments with 350,000 email users and scales really well (if >>>>you have the iron and experience to build/maintain such a >>>>system/cluster). >>>> >>>>http://www.nuclearelephant.com/projects/dspam/ >>>> >>>> >>>>>Thanks >>>>>Vahric >>>>> >>>>>_______________________________________________ >>>>>freebsd-isp@freebsd.org mailing list >>>>>http://lists.freebsd.org/mailman/listinfo/freebsd-isp >>>>>To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" >>>> >>>>-- >>>> >>>>mfg. >>>> >>>>christian damm >>>>technische leitung >>>>phone: dw 42 >>>>email: christian.damm@diewebmaster.at >>>>icq at work: 124464652 >>>> >>>>die webmaster - flötzerweg 156 - 4030 linz - austria >>>>phone: +43-732-381242, fax: +43-732-381242-22, isdn (leonardo): >>>>+43-732-381242-33 >>>>homepage: www.diewebmaster.at, public email: office@diewebmaster.at >>>>_______________________________________________ >>>>freebsd-isp@freebsd.org mailing list >>>>http://lists.freebsd.org/mailman/listinfo/freebsd-isp >>>>To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" >>> >>>!DSPAM:421d64a4175283000910921! > > > > ------------------------------------------------------------------------ > > !DSPAM:421db801170271219614910! -- mfg. christian damm technische leitung phone: dw 42 email: christian.damm@diewebmaster.at icq at work: 124464652 die webmaster - flötzerweg 156 - 4030 linz - austria phone: +43-732-381242, fax: +43-732-381242-22, isdn (leonardo): +43-732-381242-33 homepage: www.diewebmaster.at, public email: office@diewebmaster.at From owner-freebsd-isp@FreeBSD.ORG Fri Feb 25 11:00:49 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 8DD1016A4D1 for ; Fri, 25 Feb 2005 11:00:49 +0000 (GMT) Received: from msrv.matik.com.br (msrv.matik.com.br [200.152.83.14]) by mx1.FreeBSD.org (Postfix) with ESMTP id 165E743D76 for ; Fri, 25 Feb 2005 11:00:45 +0000 (GMT) (envelope-from asstec@matik.com.br) Received: from [200.152.82.190] ([200.152.82.190]) by msrv.matik.com.br (8.13.1/8.12.11) with ESMTP id j1PB3EsV031336 for ; Fri, 25 Feb 2005 08:03:15 -0300 (BRST) (envelope-from asstec@matik.com.br) From: Suporte Matik To: freebsd-isp@freebsd.org Date: Fri, 25 Feb 2005 08:00:26 -0300 User-Agent: KMail/1.7.2 References: <20050223110037.177AB43D2F@mx1.FreeBSD.org> <200502250202.21232.asstec@matik.com.br> <421EF571.40101@diewebmaster.at> In-Reply-To: <421EF571.40101@diewebmaster.at> MIME-Version: 1.0 Content-Type: multipart/signed; boundary="nextPart1491402.2QcTF26KIY"; protocol="application/pgp-signature"; micalg=pgp-sha1 Content-Transfer-Encoding: 7bit Message-Id: <200502250800.32338.asstec@matik.com.br> X-Virus-Scanned: ClamAV 0.80/705/Fri Feb 11 14:51:32 2005 clamav-milter version 0.80j on msrv.matik.com.br X-Virus-Status: Clean X-Spam-Status: No, score=-101.3 required=5.0 tests=ALL_TRUSTED,ISO_7BITS, MONOTONE_WORDS_2_15,NO_RDNS2,USER_IN_WHITELIST autolearn=failed version=3.0.1 X-Spam-Checker-Version: SpamAssassin 3.0.1 (2004-10-22) on msrv.matik.com.br Subject: Re: SpamAssassian with FreeBSD and Big Mail Server X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 25 Feb 2005 11:00:49 -0000 --nextPart1491402.2QcTF26KIY Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline On Friday 25 February 2005 06:52, Christian Damm wrote: > Suporte Matik schrieb: > > Hi > > you are running amavis + clamd + dspam on a normal PC for 30000 users? > > yes - without real load...it all depends on tuning the box/environment. probably your dspam indeed is real idle doing nothing on this server since = you=20 do not have any users to whom to deliver. Dspam processes a msg before loca= l=20 delivering, pretty useless on a relay server, no user here and that may be= =20 the reason your box do not swap to death Hans > amavisd/clamd/vexira (our second av scanner)/dspam dont get much mails > delivered because of our extremely strict postfix anti spam config > (mostily at the smtp level - BEFORE fully accepting the mail)...we block > around 90-95% of junk at the doors and let the other (resource > intensive) daemons/services do the final cleaning. also keep in mind > that we are talking about an inbound antispam/virus gateway - no > pop3/imap or stuff like that...drawback is: we cant integrate things > like full av/spam quarantine into this system - but on the other hand we > have an extremely low false positive rate (when it comes to > RBL`s/DUL`s/RHSBL`s etc. im real "picky") - and greylisting also helps > much (we use gld / http://www.gasmi.net/gld.html). > > > Hans > > > > > > > > > > > > > > > > ------------------------------------------------------------------------ > > > > !DSPAM:421eb179139579563310554! =2D-=20 Infomatik implementamos asas na sua rede. (18)3551.3591 (18)8112.7007 _______________________________________________________ Participe! FreeBSD - Security - Wireless e outras Entre em http://listas.matik.com.br e inscreva-se! _______________________________________________________ Mensagens sem assinatura GPG n=E3o s=E3o nossas. Messages without GPG signature are not from us. _______________________________________________________ --nextPart1491402.2QcTF26KIY Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.0 (FreeBSD) iD8DBQBCHwVQ22x1wvvbslkRAmmXAKCJnZhOeeHoc6i/3LQZma2pTyIUOgCeNUwI aKOM8OxcHpqigTl3VIIhBvE= =irrS -----END PGP SIGNATURE----- --nextPart1491402.2QcTF26KIY-- From owner-freebsd-isp@FreeBSD.ORG Fri Feb 25 11:32:53 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 62B4A16A4CE for ; Fri, 25 Feb 2005 11:32:53 +0000 (GMT) Received: from materva.diewebmaster.at (materva.diewebmaster.at [80.66.42.216]) by mx1.FreeBSD.org (Postfix) with ESMTP id 8E10243D5C for ; Fri, 25 Feb 2005 11:32:52 +0000 (GMT) (envelope-from christian.damm@diewebmaster.at) Received: from localhost (localhost.diewebmaster.at [127.0.0.1]) by materva.diewebmaster.at (Postfix) with ESMTP id 783632180CD; Fri, 25 Feb 2005 12:32:51 +0100 (CET) Received: from materva.diewebmaster.at ([127.0.0.1]) by localhost (materva.diewebmaster.at [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 03991-05; Fri, 25 Feb 2005 12:32:51 +0100 (CET) Received: from [192.168.1.14] (da.diewebmaster.at [192.168.1.14]) by materva.diewebmaster.at (Postfix) with ESMTP id 1DFC82180CC; Fri, 25 Feb 2005 12:32:51 +0100 (CET) Message-ID: <421F0C41.8040004@diewebmaster.at> Date: Fri, 25 Feb 2005 12:30:09 +0100 From: Christian Damm User-Agent: Mozilla Thunderbird 0.9 (Windows/20041103) X-Accept-Language: de-DE, de, en-us, en MIME-Version: 1.0 To: Suporte Matik References: <20050223110037.177AB43D2F@mx1.FreeBSD.org> <200502250202.21232.asstec@matik.com.br> <421EF571.40101@diewebmaster.at> <200502250800.32338.asstec@matik.com.br> In-Reply-To: <200502250800.32338.asstec@matik.com.br> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 8bit X-Virus-Scanned: by amavisd-new at diewebmaster.at cc: "freebsd-isp@freebsd.org" Subject: Re: SpamAssassian with FreeBSD and Big Mail Server X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 25 Feb 2005 11:32:53 -0000 Suporte Matik schrieb: > On Friday 25 February 2005 06:52, Christian Damm wrote: > >>Suporte Matik schrieb: >> >>>Hi >>>you are running amavis + clamd + dspam on a normal PC for 30000 users? >> >>yes - without real load...it all depends on tuning the box/environment. > > > probably your dspam indeed is real idle doing nothing on this server since you > do not have any users to whom to deliver. Dspam processes a msg before local > delivering, pretty useless on a relay server, no user here and that may be i _have_ to deliver to the nexthop MTA - _not_ to mboxes/maildirs (as i said.) so the point is that dspam _has_ to classify the mail - besides of ram/disk i/o no difference to a "real" (non-gateway) email toaster where i write to mboxes/maildirs. from the point of cpu overhead its exactly the same - dspam classifies mail and needs cpu power, if this loads the box like hell you have limit your dspam execs, that aint good if your backqueue is getting real big but its way better than swapping (modern MTA`s are pretty good when it comes to queue management). fact is: you have to limit the dspam execs on that machine, otherwise you will kill every 4 x xeon/32gb ram/raid-10 box rather quickly. i dont use dspam alone and that makes the difference (my postfix backqueue is empty 99% of the time!). > the reason your box do not swap to death use additional anti-spam/av protection, throw hardware on it. > > Hans > > >>amavisd/clamd/vexira (our second av scanner)/dspam dont get much mails >>delivered because of our extremely strict postfix anti spam config >>(mostily at the smtp level - BEFORE fully accepting the mail)...we block >>around 90-95% of junk at the doors and let the other (resource >>intensive) daemons/services do the final cleaning. also keep in mind >>that we are talking about an inbound antispam/virus gateway - no >>pop3/imap or stuff like that...drawback is: we cant integrate things >>like full av/spam quarantine into this system - but on the other hand we >>have an extremely low false positive rate (when it comes to >>RBL`s/DUL`s/RHSBL`s etc. im real "picky") - and greylisting also helps >>much (we use gld / http://www.gasmi.net/gld.html). >> >> >>>Hans >>> >>> >>> >>> >>> >>> >>> >>>------------------------------------------------------------------------ >>> >>>!DSPAM:421eb179139579563310554! > > > > ------------------------------------------------------------------------ > > !DSPAM:421f0589138071986086625! -- mfg. christian damm technische leitung phone: dw 42 email: christian.damm@diewebmaster.at icq at work: 124464652 die webmaster - flötzerweg 156 - 4030 linz - austria phone: +43-732-381242, fax: +43-732-381242-22, isdn (leonardo): +43-732-381242-33 homepage: www.diewebmaster.at, public email: office@diewebmaster.at From owner-freebsd-isp@FreeBSD.ORG Fri Feb 25 14:20:16 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3C1EB16A4CE for ; Fri, 25 Feb 2005 14:20:16 +0000 (GMT) Received: from mail.adamstudios.com (mail.adamstudios.com [81.223.239.167]) by mx1.FreeBSD.org (Postfix) with ESMTP id AB56643D7D for ; Fri, 25 Feb 2005 14:20:15 +0000 (GMT) (envelope-from randy@adamstudios.com) Received: from localhost (localhost.adamstudios.com [127.0.0.1]) by mail.adamstudios.com (Postfix) with ESMTP id 85E7522AB; Wed, 23 Feb 2005 12:15:35 +0100 (CET) Received: from mail.adamstudios.com ([127.0.0.1]) by localhost (randbsd.adamstudios.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 45375-02; Wed, 23 Feb 2005 12:15:29 +0100 (CET) Received: from [10.30.15.13] (fw.adamstudios.com [213.225.59.156]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mail.adamstudios.com (Postfix) with ESMTP id CEEE3207D; Wed, 23 Feb 2005 12:15:28 +0100 (CET) Message-ID: <421C65CA.9060606@adamstudios.com> Date: Wed, 23 Feb 2005 12:15:22 +0100 From: Randy Adamczyk Organization: adamstudios.com User-Agent: Mozilla Thunderbird 1.0 (X11/20041206) X-Accept-Language: en-us, en MIME-Version: 1.0 To: Vahric MUHTARYAN References: <20050223110037.177AB43D2F@mx1.FreeBSD.org> In-Reply-To: <20050223110037.177AB43D2F@mx1.FreeBSD.org> X-Enigmail-Version: 0.90.1.0 X-Enigmail-Supports: pgp-inline, pgp-mime Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="------------enig31724EDC0002509E23A00601" X-Virus-Scanned: amavisd-new at adamstudios.com cc: freebsd-isp@freebsd.org Subject: Re: SpamAssassian with FreeBSD and Big Mail Server X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 25 Feb 2005 14:20:16 -0000 This is an OpenPGP/MIME signed message (RFC 2440 and 3156) --------------enig31724EDC0002509E23A00601 Content-Type: text/plain; charset=ISO-8859-9 Content-Transfer-Encoding: 7bit hi, Vahric MUHTARYAN wrote: > Really this 400 connection simultaneously can be limit for spam software ?! do you receive a _lot_ of spam? if you are running into recource problems because of spam, you should look into greylisting: http://www.greylisting.org/ http://projects.puremagic.com/greylisting/whitepaper.html greylisting for exim + spamassassin: http://greylisting.org/implementations/sa-exim.shtml i use greylisting with postfix, spamassassin and virus-scanners with amavis-new. spamassassin hardly has any work to do since i implemented greylisting. so long, randy --------------enig31724EDC0002509E23A00601 Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (GNU/Linux) iD8DBQFCHGXQ3OBSA2oXHYoRAjsaAJ0RWkIQin3mOtxi9pJ9YN4BDY8IcgCfUp51 iDzal4OIACGP669JItmj0VU= =fxXt -----END PGP SIGNATURE----- --------------enig31724EDC0002509E23A00601-- From owner-freebsd-isp@FreeBSD.ORG Fri Feb 25 14:20:16 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 46ABA16A4CF for ; Fri, 25 Feb 2005 14:20:16 +0000 (GMT) Received: from mail.adamstudios.com (mail.adamstudios.com [81.223.239.167]) by mx1.FreeBSD.org (Postfix) with ESMTP id AB6D443D7E for ; Fri, 25 Feb 2005 14:20:15 +0000 (GMT) (envelope-from randy@adamstudios.com) Received: from localhost (localhost.adamstudios.com [127.0.0.1]) by mail.adamstudios.com (Postfix) with ESMTP id 4B9FF229B for ; Mon, 21 Feb 2005 12:27:57 +0100 (CET) Received: from mail.adamstudios.com ([127.0.0.1]) by localhost (randbsd.adamstudios.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 05634-02 for ; Mon, 21 Feb 2005 12:27:52 +0100 (CET) Received: from [10.30.15.13] (fw.adamstudios.com [213.225.59.156]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mail.adamstudios.com (Postfix) with ESMTP id 08E4020B0 for ; Mon, 21 Feb 2005 12:27:51 +0100 (CET) Message-ID: <4219C5B1.1010105@adamstudios.com> Date: Mon, 21 Feb 2005 12:27:45 +0100 From: Randy Adamczyk Organization: adamstudios.com User-Agent: Mozilla Thunderbird 1.0 (X11/20041206) X-Accept-Language: en-us, en MIME-Version: 1.0 To: freebsd-isp@freebsd.org References: <4219551F.9010808@pyramus.com> <20050221043613.GA21273@wjv.com> In-Reply-To: <20050221043613.GA21273@wjv.com> X-Enigmail-Version: 0.90.1.0 X-Enigmail-Supports: pgp-inline, pgp-mime Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="------------enigB0DBE708839A077FAA1B50EE" X-Virus-Scanned: amavisd-new at adamstudios.com Subject: Re: Why the mail error for domains I don't host? X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 25 Feb 2005 14:20:16 -0000 This is an OpenPGP/MIME signed message (RFC 2440 and 3156) --------------enigB0DBE708839A077FAA1B50EE Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Bill Vermillion wrote: > The door open and in walked trouble - disguised as our our old > nemesis Blake Swensen, who uttered, at Sun, Feb 20, 2005 at 19:27 : > >>sendmail[93922]: j1L2kZa5093920: SYSERR(root): >>mx1.distinguish.com. config error: mail loops back to me (MX >>problem?) > >>I know everyone has seen this message at least once in their >>life from improperly configured sendmail. However, my log is >>filling up with these messages for domains I do not host.... and >>when I dig the mentioned host, it always resolves to localhost >>(127.0.0.1). This happens over and over again on for domain >>after domain. Are there really that many unskilled admins who >>publish their mail server's address as localhost, or is this >>some sort of hack that I should worry about? > > I won't call myself unskilled - but I have one domain that > in desperation I set the MX record to localhost. > > I was running about 300,000 spam messages PER DAY to that domain. > Sorry if this site is giving you problems, but I'm open to any > suggestions that will keep the spam away and the 127.0.0.1 > is the only one I could come up with. are your mailservers configured to accept mail to addresses whose mx record points to your mailservers? so, i could just go ahead and have my mx record point to your mailserver and it would accept my mail? that's not a good idea..! if both of you configure your mailservers to only accept mail sent to the domains you are hosting, you could remove the 127.0.0.1 mx. your mailserver should then answer with "relaying denied" instead of collecting lots of spam. so long, randy --------------enigB0DBE708839A077FAA1B50EE Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (GNU/Linux) iD8DBQFCGcW23OBSA2oXHYoRAuNqAJ9sBxYuH7kvYPnHnifaZ8aFRh1MUACeI8mM 7EeyvV13a+d3/bTtcioBXoU= =J2et -----END PGP SIGNATURE----- --------------enigB0DBE708839A077FAA1B50EE-- From owner-freebsd-isp@FreeBSD.ORG Fri Feb 25 16:58:41 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E52F316A4CE for ; Fri, 25 Feb 2005 16:58:41 +0000 (GMT) Received: from obh.snafu.de (obh.snafu.de [213.73.92.34]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6DD7843D48 for ; Fri, 25 Feb 2005 16:58:41 +0000 (GMT) (envelope-from ob@gruft.de) Received: from ob by obh.snafu.de with local (Exim 4.44 (FreeBSD)) id 1D4inY-0004Jm-JY for freebsd-isp@freebsd.org; Fri, 25 Feb 2005 17:58:40 +0100 Date: Fri, 25 Feb 2005 17:58:40 +0100 From: Oliver Brandmueller To: freebsd-isp@freebsd.org Message-ID: <20050225165840.GC70464@e-Gitt.NET> References: <20050223110037.177AB43D2F@mx1.FreeBSD.org> <421C65CA.9060606@adamstudios.com> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="Qxx1br4bt0+wmkIi" Content-Disposition: inline In-Reply-To: <421C65CA.9060606@adamstudios.com> User-Agent: Mutt/1.5.8i Sender: Oliver Brandmueller Subject: Re: SpamAssassian with FreeBSD and Big Mail Server X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 25 Feb 2005 16:58:42 -0000 --Qxx1br4bt0+wmkIi Content-Type: text/plain; charset=iso-8859-15 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Hi. On Wed, Feb 23, 2005 at 12:15:22PM +0100, Randy Adamczyk wrote: > do you receive a _lot_ of spam? if you are running into recource > problems because of spam, you should look into greylisting: >=20 > http://www.greylisting.org/ > http://projects.puremagic.com/greylisting/whitepaper.html >=20 > greylisting for exim + spamassassin: > http://greylisting.org/implementations/sa-exim.shtml >=20 > i use greylisting with postfix, spamassassin and virus-scanners with > amavis-new. spamassassin hardly has any work to do since i implemented > greylisting. And when doing things greylisting, please try to see both sides. Since people tend to see only their side, I will now describe the=20 medium-sized-ISP side of things. Well, everyday life. Spam of course also hit's our servers and due to=20 legal things we cannot just filter every incoming mail. Queues are=20 around 5000 mails. That's OK with our hardware. Then, one day, someone invented greylisting. Great idea. Since=20 especially universities and other organizations like this have adopted=20 it, his means that quite a lot of mails go to servers with greylisting.=20 Queues have grown since then. 10000 per server average is what we see=20 now. The problem here is, that in theory the server tries again after 5=20 minutes and gets the mail delivered. The real side of the problem is:=20 The bigger the queues are, the more time it takes until you come up with=20 the same mail again. So mail takes not 30 seconds to arrive,not 5=20 minutes like greylisting theory, but maybe half an hour. That's already=20 a value some customers complain about. Now people without the slightest=20 idea what they are doing start to implement greylisting. They get the=20 connection from 123.123.123.1 the first time and send their temporary=20 error. Fine. The queue runner on 123.123.123.7 picks up the mail next=20 time. Temporary error, because the .1 is currently allowed to send the=20 mail. OK, second temporary error. Mail stored in lower prio, next=20 delivery attempt in one hour. And so on. Greylisting makes a lot of trouble at big sites. And mens longer and=20 sometimes very delivery times for mail. Great idea, yeah, spread that to the world, maybe the day will come,=20 when snailmail is faster... - Oliver --=20 | Oliver Brandmueller | Offenbacher Str. 1 | Germany D-14197 Berlin | | Fon +49-172-3130856 | Fax +49-172-3145027 | WWW: http://the.addict.de/ | | Ich bin das Internet. Sowahr ich Gott helfe. | | Eine gewerbliche Nutzung aller enthaltenen Adressen ist nicht gestattet! | --Qxx1br4bt0+wmkIi Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.0 (FreeBSD) iD8DBQFCH1lAiqtMdzjafykRAtxUAJ0cmzTWBuVb4ulGB0+3/I3Za+lpGgCfW0GH ihxiCeIG5Sbr9yG0KlnNruU= =HVQ/ -----END PGP SIGNATURE----- --Qxx1br4bt0+wmkIi-- From owner-freebsd-isp@FreeBSD.ORG Sat Feb 26 19:44:33 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id CEBF616A4CE for ; Sat, 26 Feb 2005 19:44:33 +0000 (GMT) Received: from mail.adamstudios.com (mail.adamstudios.com [81.223.239.167]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6695E43D3F for ; Sat, 26 Feb 2005 19:44:33 +0000 (GMT) (envelope-from randy@adamstudios.com) Received: from localhost (localhost.adamstudios.com [127.0.0.1]) by mail.adamstudios.com (Postfix) with ESMTP id D5DB52331; Sat, 26 Feb 2005 20:44:31 +0100 (CET) Received: from mail.adamstudios.com ([127.0.0.1]) by localhost (randbsd.adamstudios.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 40965-10; Sat, 26 Feb 2005 20:44:26 +0100 (CET) Received: from mail.adamstudios.com (localhost.adamstudios.com [127.0.0.1]) by mail.adamstudios.com (Postfix) with ESMTP id 827A62330; Sat, 26 Feb 2005 20:44:26 +0100 (CET) Received: from 213.225.59.156 (SquirrelMail authenticated user randy.adamstudios.com) by mail.adamstudios.com with HTTP; Sat, 26 Feb 2005 20:44:26 +0100 (CET) Message-ID: <52275.213.225.59.156.1109447066.squirrel@mail.adamstudios.com> In-Reply-To: <4220AC5C.7040403@pyramus.com> References: <4219551F.9010808@pyramus.com> <20050221043613.GA21273@wjv.com> <4219C5B1.1010105@adamstudios.com> <4220AC5C.7040403@pyramus.com> Date: Sat, 26 Feb 2005 20:44:26 +0100 (CET) From: "Randy Adamczyk" To: "Blake Swensen" User-Agent: SquirrelMail/1.4.4 MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) Importance: Normal X-Virus-Scanned: amavisd-new at adamstudios.com cc: freebsd-isp@freebsd.org Subject: Re: Why the mail error for domains I don't host? X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 26 Feb 2005 19:44:33 -0000 hi, On Sat, February 26, 2005 6:05 pm, Blake Swensen said: > I am configured that way. The errors I reported were in the syslog. Are > you suggesting that I remove the localhost entry from sendmail.cw? no, i guess you use relay_based_on_MX, right? i usually recommend not using that. i don't know your setup and how many domains you are hosting, but if you configure sendmail to accept mail sent to the domains you are hosting instead of relying on MX records that _others_ are in control of, you won't be vulnerable to this sort of thing anymore. if this solution isn't feasible for you, then you could at least reject all mail from domains whose MX points to localhost. google around for "sendmail mx 127.0.0.1 reject" or something and you should find a solution. hope this helps, randy