From owner-freebsd-isp@FreeBSD.ORG Thu Mar 3 14:44:29 2005 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id B607816A4CE for ; Thu, 3 Mar 2005 14:44:29 +0000 (GMT) Received: from pythagoras.zen.co.uk (pythagoras.zen.co.uk [212.23.3.140]) by mx1.FreeBSD.org (Postfix) with ESMTP id 3119243D39 for ; Thu, 3 Mar 2005 14:44:29 +0000 (GMT) (envelope-from lists@subhi.com) Received: from [82.70.161.145] (helo=localhost) by pythagoras.zen.co.uk with esmtp (Exim 4.30) id 1D6rYv-0002dD-Iu; Thu, 03 Mar 2005 14:44:25 +0000 Date: Thu, 3 Mar 2005 01:07:30 +0000 From: Subhi S Hashwa X-Mailer: The Bat! (v2.12.00) Business X-Priority: 3 (Normal) Message-ID: <1825493014.20050303010730@subhi.com> To: Christian Damm In-Reply-To: <421EF571.40101@diewebmaster.at> References: <20050223110037.177AB43D2F@mx1.FreeBSD.org> <20050224164327.56d29617@it.buh.tecnik93.com> <421DEC44.5030100@diewebmaster.at> <200502250202.21232.asstec@matik.com.br> <421EF571.40101@diewebmaster.at> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Originating-Pythagoras-IP: [82.70.161.145] cc: freebsd-isp@freebsd.org cc: Suporte Matik Subject: Re: SpamAssassian with FreeBSD and Big Mail Server X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: Subhi S Hashwa List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 03 Mar 2005 14:44:29 -0000 Friday, February 25, 2005, 9:52:49 AM, Christian Damm wrote: > yes - without real load...it all depends on tuning the box/environment. > amavisd/clamd/vexira (our second av scanner)/dspam dont get much mails > delivered because of our extremely strict postfix anti spam config > (mostily at the smtp level - BEFORE fully accepting the mail)...we block > around 90-95% of junk at the doors and let the other (resource > intensive) daemons/services do the final cleaning. also keep in mind > that we are talking about an inbound antispam/virus gateway - no > pop3/imap or stuff like that...drawback is: we cant integrate things > like full av/spam quarantine into this system - but on the other hand we > have an extremely low false positive rate (when it comes to > RBL`s/DUL`s/RHSBL`s etc. im real "picky") - and greylisting also helps > much (we use gld / http://www.gasmi.net/gld.html). A good tip is to reject mailservers that EHLO/HELO as yourself or your mailserver IP address at SMTP level. If you want something 'nastier' and may catch some misconfigured genuine senders is to reject all servers that EHLO with an IP address. -- Best regards, Subhi S Hashwa mailto:lists@subhi.com When everything is heading your way, you're in the wrong lane.