Re: Is gray-listing a one-shot anti-spam measure?

To: debian-isp@lists.debian.org
Cc: Adrian von Bidder <avbidder@fortytwo.ch>
Subject: Re: Is gray-listing a one-shot anti-spam measure?
From: Russell Coker <russell@coker.com.au>
Date: Tue, 28 Dec 2004 01:48:25 +1100
Message-id: <[🔎] 200412280148.28848.russell@coker.com.au>
Reply-to: russell@coker.com.au
In-reply-to: <[🔎] 200412101131.11593@fortytwo.ch>
References: <[🔎] 200412031855.41664.russell@coker.com.au> <[🔎] 41B6077C.9010705@restoel.net> <[🔎] 200412101131.11593@fortytwo.ch>

On Friday 10 December 2004 21:31, Adrian von Bidder <avbidder@fortytwo.ch> 
wrote:
> > >As has already been suggested it would be good to be able to configure
> > > the number of messages that come through before the client IP is
> > > white-listed.
> >
> > But I think the
> > problem of this would be that initial messages would be even more
> > delayed, depending on the sending server, than they are with normal
> > one-shot greylisting.
>
> I think you misunderstand Russel.  He does, afaict, not want the initial
> message be rejected multiple times, but he wants to see several messages
> coming through, with normal greylisting in effect, before the IP is
> whitelisted for all email.

You are correct.  My desire is to increase the number of messages that must be 
successfully delivered before white-listing, not to increase the number of 
attempts that is necessary to deliver a single message.

Also I would want to control the length of time that a white-list entry will 
remain if there is no appropriate traffic.  I think that a period of about a 
week of no traffic from that IP address is enough cause to remove the 
white-list entry.

The vast majority of email that I receive comes from a small set of IP 
addresses that send mail to me every day.  This includes the Debian list 
servers and other mailing lists.  A much smaller (but very significant) part 
of my email is from on-going discussions.  Sometimes I have email 
correspondence of 1-2 messages per day with one person for a period of a week 
or so, and often in those cases they use the same IP address to send all 
their email.

Finally an important part of my email is comprised of messages from people I 
know well, friends, relatives, and people I work with.  Assembling a 
permanent white-list of IP addresses that those people use would be 
reasonably easy.  Ideally the mail server would help in automating this by 
allowing me to white-list combinations of email address and IP address and 
then automatically remove them if mail stops from that address and starts 
coming from another.

We need a web-based front-end for managing these things so we can allow 
regular users to manage their white-list entries.

-- 
http://www.coker.com.au/selinux/   My NSA Security Enhanced Linux packages
http://www.coker.com.au/bonnie++/  Bonnie++ hard drive benchmark
http://www.coker.com.au/postal/    Postal SMTP/POP benchmark
http://www.coker.com.au/~russell/  My home page

Reply to:

References:
- Is gray-listing a one-shot anti-spam measure?
  - From: Russell Coker <russell@coker.com.au>
- Re: Is gray-listing a one-shot anti-spam measure?
  - From: mimo <mimo@restoel.net>
- Re: Is gray-listing a one-shot anti-spam measure?
  - From: Adrian von Bidder <avbidder@fortytwo.ch>

Prev by Date: Re: Accessing windows share throught http
Next by Date: Re: IPSec and L2TP
Previous by thread: Re: Is gray-listing a one-shot anti-spam measure?
Next by thread: SCSI Raid Controller recommendations
Index(es):
- Date
- Thread