Re: smtp time spam filtering

To: debian-user@lists.debian.org
Subject: Re: smtp time spam filtering
From: Paul Johnson <baloo@ursine.ca>
Date: Mon, 26 Feb 2007 14:26:58 -0800
Message-id: <[🔎] ie3cb4xd7i.ln2@ursa-major.ursine.ca>
References: <[🔎] 45DCF5C4.3010401@gmail.com> <[🔎] erk5ep$8p0$1$8302bc10@news.demon.co.uk> <[🔎] 1172158414.28933.27.camel@princess.gregfolkert.net> <[🔎] 20070222163808.GD4332@yan.jynn.tonix.org> <[🔎] 1172167054.25645.65.camel@princess.gregfolkert.net> <[🔎] 20070223153259.GB20882@yan.jynn.tonix.org> <[🔎] 20070223161647.GA16163@localhost.localdomain> <[🔎] 20070223191548.GA25122@yan.jynn.tonix.org> <[🔎] 20070224222415.GB14299@fantomas.sk> <[🔎] 1172368991.18692.4.camel@princess.gregfolkert.net> <[🔎] 20070226140450.GB26151@yan.jynn.tonix.org>

David Hart wrote:

> On Sat 2007-02-24 21:03:11 -0500 Greg Folkert wrote:
>> On Sat, 2007-02-24 at 23:24 +0100, Matus UHLAR - fantomas wrote:
>> > > > On Fri, Feb 23, 2007 at 03:33:00PM +0000, David Hart wrote:
>> > > > > I must be missing something here.  In order to scan an email you
>> > > > > must
>> > > > > receive the email (I don't mean accept).  How can
>> > > > > rejecting/accepting emails at this stage make any significant
>> > > > > difference in bandwith used (let alone a quadrupling of
>> > > > > bandwidth)?
>> > 
>> > > On Fri 2007-02-23 08:16:48 -0800 Andrew Sackville-West wrote:
>> > > > isn't it just using RBL's at smtp time and rejecting before
>> > > > recieving the mail?
>> > 
>> > On 23.02.07 19:15, David Hart wrote:
>> > > AFAIU no, but that's the way I do it with postfix.  Both my primary
>> > > and secondary MXs do RBL checks and stuff like recipient validation
>> > > and then make the accept/reject decision after the RCPT TO: but
>> > > before the DATA.
>> > > 
>> > > Greg Folkert said that he uses SA-Exim (which calls spamassassin)
>> > > to do scans at smtp time but without any online checks.  I don't see
>> > > how you can do this without receiving the bulk of the email.
>> > 
>> > the advantage of smtp time rejection is, you will just reject the data
>> > with error and you don't have to do anything with it - the rest is up
>> > to sender. Especially if you would bounce the e-mail, you'll win this
>> > way...
>> 
>> Bouncing... bingo. If the sender doesn't handle it properly, it isn't my
>> problem.
> 
> You've already outlined a case where bouncing spam became your problem.
> You said in an earlier mail "I used to not whitelist murphy, but that
> got me auto-unsub'd from (most) Debian lists I subscribe to, for
> "bouncing" the SPAM"

4xx rejects work better than 5xx for content-related rejects:  After all
there is a chance the message would be accepted under better circumstances
in such a case.  Or read the list via
nntp://news.gmane.org/gmane.linux.debian.user instead.  :o)

Reply to:

Follow-Ups:
- Re: smtp time spam filtering
  - From: David Hart <debian@tonix.org>

References:
- Re: How does Cron send email?
  - From: Grok Mogger <linuximp@gmail.com>
- Re: How does Cron send email?
  - From: Joe <joe@jretrading.com>
- Re: How does Cron send email?
  - From: Greg Folkert <greg@gregfolkert.net>
- smtp time spam filtering (was: How does Cron send email?)
  - From: David Hart <debian@tonix.org>
- Re: smtp time spam filtering
  - From: Greg Folkert <greg@gregfolkert.net>
- Re: smtp time spam filtering
  - From: David Hart <debian@tonix.org>
- Re: smtp time spam filtering
  - From: Andrew Sackville-West <andrew@farwestbilliards.com>
- Re: smtp time spam filtering
  - From: David Hart <debian@tonix.org>
- Re: smtp time spam filtering
  - From: Matus UHLAR - fantomas <uhlar@fantomas.sk>
- Re: smtp time spam filtering
  - From: Greg Folkert <greg@gregfolkert.net>
- Re: smtp time spam filtering
  - From: David Hart <debian@tonix.org>

Prev by Date: Re: REALLY OT: News Flash
Next by Date: Re: Courier IMAP
Previous by thread: Re: smtp time spam filtering
Next by thread: Re: smtp time spam filtering
Index(es):
- Date
- Thread