Date: Tue, 19 Dec 2006 12:46:26 -0500 From: Christopher Hilton <chris@vindaloo.com> To: JoaoBR <joao@matik.com.br> Cc: freebsd-stable@freebsd.org Subject: Re: OpenBSD's spamd. Message-ID: <45882572.7040707@vindaloo.com> In-Reply-To: <200612191146.45521.joao@matik.com.br> References: <200612191227.kBJCRRLJ054427@lurza.secnetix.de> <4587D1B6.6060500@andric.com> <200612191146.45521.joao@matik.com.br>
next in thread | previous in thread | raw e-mail | index | archive | help
JoaoBR wrote: > > why the spam daemon should introduce an artificial delay > (tarpit) if this can be done already before like Oliver > said, it would only eat up and slow down threads between > both daemons (smtp + spamd) and overall spamd doesn't even > talk directly to the remote smtp > Spamd does talk to the remote smtp. It does this until it determines that the remote smtp is RFC compliant in the area of retrying mail. On the first delivery attempt it sets up a time window for the delivery tuple: (server, sender, recipient). If it receives another delivery attempt within this time window it modifies a PF table which allows further delivery attempts to bypass spamd and talk directly to your actual smtp daemon. Without this entry remote smtp daemons talk to your spamd. The tarpitting features of spamd are handy. Bob Beck, the author IIRC, watched connections to his spamd and noticed that the when tarpitted, the spammers and only the spammers were disconnecting from his machine and giving up on delivering the spam at all after ever shorter intervals. When the spammers got down to 3 seconds of tarpitting before they disconnected he added a feature to spamd that allows you to tarpit all inbound smtp connections for a configurable period of time (default: 10 seconds). So imagine being able to eliminate a portion of the spam that you get. This is spam that never gets to your MTA. It doesn't cost you CPU cycles in SpamAssassin and procmail or clamav. And all you pay is three seconds of the your firewall's time. -- Chris
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?45882572.7040707>