15 messages in net.sourceforge.lists.courier-usersRe: [courier-users] Greylisting with ...
FromSent OnAttachments
Tim LythSep 23, 2007 7:50 am 
cour...@thefreecat.orgSep 23, 2007 1:12 pm 
Tim LythSep 23, 2007 6:40 pm 
Tim LythSep 23, 2007 7:15 pm 
Jeff JansenSep 23, 2007 7:21 pm 
Arturo 'Buanzo' BusleimanSep 23, 2007 8:11 pm 
ScottSep 23, 2007 9:49 pm 
Gordon MessmerSep 23, 2007 10:44 pm 
Bernd WurstSep 23, 2007 11:07 pm 
Nathan HarrisSep 24, 2007 6:28 am 
Tim LythSep 24, 2007 7:08 am 
Tim LythSep 26, 2007 5:27 am 
JC BoggioSep 26, 2007 4:01 pm 
Tim LythSep 30, 2007 7:38 pm 
Georg LutzOct 5, 2007 5:41 am 
Actions with this message:
Paste this link in email or IM:
Paste this link in email or IM:
Atom feed for this thread
Paste this URL into your reader:
Subject:Re: [courier-users] Greylisting with Courier-MTA on DebianActions...
From:Tim Lyth (tc@tcl.homedns.org)
Date:Sep 24, 2007 7:08:50 am
List:net.sourceforge.lists.courier-users

So far:

8 unique spammers GL'd (GreyListed), a 9th got past but was rated 28.7 by SA. 1 of the 8th spammers has been firewalled - trying a DoS-style attack (250~260 SMTP connections between when greylisting was activated and when I firewalled them off) - greylisting started at 11:49, Sept 24, started spamming at 18:51, firewalled at 23:50.

Genuine email is getting through, spammers who can't be bothered re-trying aren't, and the only one who has gotten through so far has been caught by SA. :D

Looking good indeed as I'd have probably received 10~20 spam out of the GL'd hosts.

I'll have to develop some means of sifting through the log files instead of doing it myself (unless someone else has already done this) - it took 30~60 minutes to sift through 12hrs of log file - I don't have the time to do that every day for a 24hr period - any suggestions/hints on what to do?

Cheers, Tim Lyth

Jeff Jansen wrote:

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1

Tim Lyth wrote:

Thanks for the pointers to look in the folder. Followed the rest of the instructions and my MX now greylists.

Goodbye spam (hopefully).

I'm sure many of us would appreciate it if you'd update the list in the future on how well this works at preventing spam. (At least I know I would.) I've seen mixed reviews about the efficacy of greylisting, and I'd love to hear first-hand from someone using courier how effective it really was.

Jeff Jansen