From owner-freebsd-questions@FreeBSD.ORG Mon Oct 23 06:20:36 2006 Return-Path: X-Original-To: questions@freebsd.org Delivered-To: freebsd-questions@FreeBSD.ORG Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id BA48A16A4C2 for ; Mon, 23 Oct 2006 06:20:36 +0000 (UTC) (envelope-from peter@bgnett.no) Received: from skapet.datadok.no (skapet.datadok.no [194.54.107.19]) by mx1.FreeBSD.org (Postfix) with ESMTP id 5109B43D49 for ; Mon, 23 Oct 2006 06:20:36 +0000 (GMT) (envelope-from peter@bgnett.no) Received: from [10.168.103.3] (helo=amidala.kakemonster.bsdly.net.bsdly.net ident=peter) by skapet.datadok.no with esmtp (Exim 4.60) (envelope-from ) id 1GbtAo-0005Ne-KU; Mon, 23 Oct 2006 08:20:34 +0200 To: questions@freebsd.org From: peter@bgnett.no (Peter N. M. Hansteen) Date: Mon, 23 Oct 2006 08:20:32 +0200 Message-ID: <87ods3wo27.fsf@amidala.kakemonster.bsdly.net> User-Agent: Gnus/5.1007 (Gnus v5.10.7) XEmacs/21.4.17 (berkeley-unix) MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Cc: mwlucas@blackhelicopters.org Subject: Re: pfspamd greylisting stuttering at everything X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 23 Oct 2006 06:20:36 -0000 > I'm set up just like the man page, but every incoming connection is > being stuttered at. This plays havoc with incoming legit mail, of > course, and I've been forced to fall back on older antispam tools. Are you sure you are actually seeing stuttering, not just the greylisting database getting (slowly) initialized? You should expect a 'silent period' while the machines which are trying to send you mail prove their good intentions to your greylister. The point of greylisting, after all, is to force correspondents to retry 'within a reasonable time'. The lower threshold for 'reasonable' is set with the first of the -G arguments to spamd. The other factor is how long the correspondent takes to actually retry, which depends on a number of other factors you really can't influence much, such as the size of that server's outgoing queue. I would give the initial database buildup a few hours at least. If you're impatient and you have a few addresses which you consider 'known good', you could whitelist them using # spamdb -a nnn.nnn.nnn.nnn see spamdb(8) for details. I suppose that man page could do with a bit more text. PS My favorite quote about spamd and greylisting at the moment is this recent message to openbsd-misc: http://marc.theaimsgroup.com/?l=openbsd-misc&m=116136841831550&w=2 -- Peter N. M. Hansteen, member of the first RFC 1149 implementation team http://www.blug.linux.no/rfc1149/ http://www.datadok.no/ http://www.nuug.no/ "First, we kill all the spammers" The Usenet Bard, "Twice-forwarded tales" 20:11:56 delilah spamd[26905]: 146.151.48.74: disconnected after 36099 seconds