From owner-freebsd-questions@freebsd.org Mon Aug 8 06:31:56 2016 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id E4FB8BB1F78 for ; Mon, 8 Aug 2016 06:31:56 +0000 (UTC) (envelope-from me@niklaas.eu) Received: from mx.box-hlm-03.niklaas.eu (box-hlm-03.niklaas.eu [IPv6:2a02:2770:15:0:21a:4aff:feaa:e902]) by mx1.freebsd.org (Postfix) with ESMTP id B2C0114EA for ; Mon, 8 Aug 2016 06:31:56 +0000 (UTC) (envelope-from me@niklaas.eu) Received: from box-hlm-03.niklaas.eu (box-hlm-03.niklaas.eu [IPv6:2a02:2770:15:0:21a:4aff:feaa:e902]) by mx.box-hlm-03.niklaas.eu (Postfix) with ESMTPSA id 00AC34F9A17 for ; Mon, 8 Aug 2016 08:31:54 +0200 (CEST) Date: Mon, 8 Aug 2016 08:31:49 +0200 From: Niklaas Baudet von Gersdorff To: freebsd-questions@freebsd.org Subject: Re: Need advice for setting up mail server Message-ID: <20160808063138.GA20037@box-hlm-03.niklaas.eu> Reply-To: stdin@niklaas.eu Mail-Followup-To: freebsd-questions@freebsd.org References: <2394887a809b4ad8e702d1d13bb1337c@mail.zplay.eu> <20160807180149.GC12411@len-t420.klaas> <44D296EC-FA25-4279-9501-8BB6B2DD86A6@mail.sermon-archive.info> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <44D296EC-FA25-4279-9501-8BB6B2DD86A6@mail.sermon-archive.info> User-Agent: Mutt/1.6.1 (2016-04-27) X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.22 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 08 Aug 2016 06:31:57 -0000 Doug Hardie [2016-08-07 14:17 -0700] : > I am running spamd (obspamd last time I checked) on the mail It's mail/spamd in ports and `obspamd` in /etc/rc.d. > server for a medium sized ISP. It has never worked the way the > documentation describes. However, it has been useful. When > I first installed it, around 90% of the email being received > was dropped. It blocks drive-by spammers who don't queue and > retry on TMP_FAILs. Unfortunately, it appears that many > spammers now can afford the disk and processor resources to > enable queueing and retrying so its usefulness is diminishing. I also made bad experiences with its greylisting function. (I'm not a big fan of greylisting anyway.) That's why I use it's blocking function only: obspamd_enable="YES" obspamd_flags="-l 127.0.0.1 -b" And for PF I have table persist rdr pass on $ext_if inet proto tcp from to any port smtp -> 127.0.0.1 port spamd rdr pass on $ext_if inet6 proto tcp from to any port smtp -> ::ffff:127.0.0.1 port spamd In /usr/local/etc/spamd/spamd.conf I use two of the example lists: all:\ :uatraps:nixspam: # University of Alberta greytrap hits. # Addresses stay in it for 24 hours from time they misbehave. uatraps:\ :black:\ :msg="Your address %A has sent mail to a ualberta.ca spamtrap\n\ within the last 24 hours":\ :method=http:\ :file=www.openbsd.org/spamd/traplist.gz # Nixspam recent sources list. # Mirrored from http://www.heise.de/ix/nixspam nixspam:\ :black:\ :msg="Your address %A is in the nixspam list\n\ See http://www.heise.de/ix/nixspam/dnsbl_en/ for details":\ :method=http:\ :file=www.openbsd.org/spamd/nixspam.gz What I like about the concept is that false positives will get a reply that their mail was considered spam. This way they can try to contact me over a different channel. The problem I see with "traditional" spam checking (moving spam into a spam folder) is that the sender does not know whether their mail was classified as spam or not. And the other way I don't have to check a spam folder for false positives. I must confess though 1. I trust the quality of the blacklists. 2. The mail servers where I'm using mail/spamd at the moment don't get lots of traffic. So I can't really tell how efficient that is. I just started using postscreen(8) and will see whether the combination of mail/spamd and postscreen(8) is a good one. I hope that I don't have to opt for mail/spamassassin because I find it difficult to configure. Niklaas