What DUL should I use + help on SPF with postfix
Hello!
I am hosting a company's mail domain. Since the domain is setup on it's
server (a VPS), since this morning, it has rejected 19735 mail in less
than 12 hours, due to many reasons (helo not being a valid fqdn,
recipient that does not exists, and many other silly stuff). What's
silly is that there is only about 5 low traffic mailbox on this domain,
so I don't understand what's happening. The traffic is coming from many
DSL lines, and many different IPs.
The basic checkings that I always use in production seems to be working
quite well, but it's taking a LOT of CPU and disk I/O that I would have
like to save using efficient RBL and SPF. So here are my 2 questions:
1. I want to use a dynamic IP RBL, but I don't know what list I should
use. Could one of you give me a good advice ? (note that because of the
biggest thread of this summer, I'm not very confident that SORB will be
a good choice (please do not comment on this point))
2. I have tried to use SPF on that Postfix server. In the past, I did
the implementation on a Qmail server, but it's quite hard to have a
Qmail setup that beats the Postfix one that I use currently (using
amavis, courier-maildrop, clamav, spamassassin, etc...). I used this:
master.cf:
spfpolicy unix - n n - - spawn
user=nobody argv=/usr/bin/perl /etc/postfix/spf-policy.pl
main.cf:
check_policy_service unix:private/spfpolicy
with spf-policy.pl being the last downloaded script from openspf.org.
Unfortunatly, when I use this configuration, I can't send any mail to
the server and it writes "prematur end-of-input" or something like that
in the mail.log (even if running the script by hand on the shell works:
I've checked). What did I miss???
Thanks for those who will help.
Thomas
Reply to: