[TriLUG] spam attack help?
Alan Porter
porter at trilug.org
Wed Apr 2 10:59:35 EDT 2008
I only manage mail for my handful of (almost no volume) domains,
but I have not seen any increase in spam over the last week or so.
By far, 99% of the junk sent to me is rejected before it ever
gets to spamassassin.
> smtpd_helo_restrictions
> smtpd_sender_restrictions
You can also add client restrictions and recipient restrictions.
In my client restrictions, I added two RBL's.
In each of the four cases (helo, client, sender, recipient), I
have a local database of white/blacklisted values, and then I check
for other things (like RBL's). That way, I can over-ride "bad"
values from the RBL's.
For example, I discovered last night that my mom's office has been
blacklisted. So I added her mail server to my whitelist. That way,
the mail from her still comes through in spite of them being on the
RBL.
I also have greylisting. It was trivial to implement in Debian...
just install "postgrey".
Alan
.
More information about the TriLUG
mailing list