From owner-freebsd-questions@freebsd.org Sun Aug 7 18:10:09 2016 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id DB027BB1301; Sun, 7 Aug 2016 18:10:09 +0000 (UTC) (envelope-from solene@perso.pw) Received: from bsd.zplay.eu (perso.pw [62.210.240.224]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "bsd.zplay.eu", Issuer "StartCom Class 1 Primary Intermediate Server CA" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 2956516B6; Sun, 7 Aug 2016 18:10:08 +0000 (UTC) (envelope-from solene@perso.pw) Received: from bsd.zplay.eu (localhost [127.0.0.1]) by bsd.zplay.eu (OpenSMTPD) with ESMTP id 823acdea; Sun, 7 Aug 2016 20:10:06 +0200 (CEST) DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=perso.pw; h=to:subject :mime-version:content-type:content-transfer-encoding:date:from :cc:in-reply-to:references:message-id; s=selector1; bh=vFiDzFWiJ tKKgBc6Dejm1WyQoOY=; b=tZrFS9pZ9LL7GSmX1Z7EX41EM8nTQmVobME6Padqc MAH9+772acp0E4IHEB8LwsCUct/XaDMa4eI2NquCrmGi7oeeCB5ME6l6YNp9zWmO 3eYtN5AIk0GmF1Igy5AlVYh5AnojNEWxZsa1Dv9k19F2uQoc4+Qm/Vpq/hTKvHbk 8Q= DomainKey-Signature: a=rsa-sha1; c=nofws; d=perso.pw; h=to:subject :mime-version:content-type:content-transfer-encoding:date:from :cc:in-reply-to:references:message-id; q=dns; s=selector1; b=fb9 3sKMOstuN8qRhINAxCUDbHbiCEGk4CxWWXRo+8siaOoAQBG/z/dLQXYy2pRjyvuF WX7IOiSUeNwM+whkDs8Ik4Tq19uPE1xmpwe28ZcxQF104zllt0UDtc9JjdgiloYA 0GtNBNyi5ybN5a75n52++f9atUN0CmkSZy0LxhDo= Received: from localhost (bsd.zplay.eu [local]) by bsd.zplay.eu (OpenSMTPD) with ESMTPA id fc2c2519; Sun, 7 Aug 2016 20:10:04 +0200 (CEST) To: freebsd-questions@freebsd.org Subject: Re: Need advice for setting up mail server X-PHP-Originating-Script: 0:rcube.php MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 8bit Date: Sun, 07 Aug 2016 20:10:04 +0200 From: =?UTF-8?Q?Sol=C3=A8ne_Rapenne?= Cc: owner-freebsd-questions@freebsd.org In-Reply-To: <20160807180149.GC12411@len-t420.klaas> References: <2394887a809b4ad8e702d1d13bb1337c@mail.zplay.eu> <20160807180149.GC12411@len-t420.klaas> Message-ID: X-Sender: solene@perso.pw User-Agent: Roundcube Webmail/1.2.0 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.22 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 07 Aug 2016 18:10:10 -0000 Le 2016-08-07 20:01, Niklaas Baudet von Gersdorff a écrit : > Solène Rapenne [2016-08-07 19:16 +0200] : > >> Hello, you will need a SMTP server like Postfix or OpenSMTPD. >> You will also need to care with DKIM signing and SPF in your >> DNS. By running your own mail server you may also have problems >> to send mails to big companies like gmail, hotmail, yahoo >> etc... because they tend to blacklist large range of IP and >> it's hard to get removed on this list. > > At this stage I neither have SPF nor DKIM implemented on one of > my machines (this one I am actually sending you the mail from) > and so far I had no problems sending mails to "bigger companies". > I realised that Google started automatically guessing SPF and it > works for my mail server at least. :-) I have had issues with SPF since last year for a lot of servers (not necessaries one of big companies) and I have been rejected recently of some servers because I wasn't using DKIM. Even if it works without them, you need to be aware of their existence in case you are rejected. >> Later you may need to fight against spam with greylisting and >> spamassassin. > > While greylisting is quite effective I had problems with it > because "bigger companies" tend to send mail from different mail > server i.e., greylisting won't work that well. I used > spamassassin years ago and was not very happy with it because > from my feeling it uses a lot of resources but still has > difficulties marking spam properly. This is a problem with greylisting but this could be "fixed" with a script running every minute whitelisting servers of known domains checked by reverse dns resolving. It will still add delay because the server need to retry the sending but it works.