Date: Sat, 03 Feb 2007 20:37:25 +0100 From: peter@bsdly.net (Peter N. M. Hansteen) To: freebsd-pf@freebsd.org Subject: Re: SPAMD stop passing mail from WHITE-list Message-ID: <87veijkp6y.fsf@thingy.datadok.no> In-Reply-To: <E1HD4Bj-000D25-00.msgs_for_me-mail-ru@f30.mail.ru> (msgs_for_me@mail.ru's message of "Fri, 02 Feb 2007 22:35:11 %2B0300") References: <E1HD4Bj-000D25-00.msgs_for_me-mail-ru@f30.mail.ru>
next in thread | previous in thread | raw e-mail | index | archive | help
???????? ???????? <msgs_for_me@mail.ru> writes: > I have spamd configured like in > http://home.nuug.no/~peter/pf/en/spamd.html > with greylisting enabled > > and i meet some problems with it: Well, you have my attention. I am would be very interested in getting to know about any inaccuracies in that document, and certainly any that trip people up. > 1. My 2 FreeBSD routers stopped to pass mail from WHITE-list. First > one - when spamd grows to 500 Megabytes. Second - 350 Meg. At the point where things stop working, what content does the whitelist table have? ie, anything recognizable or (incredibly) zero size? One possibility - a far fetched one, admittedly - is that hosts in your whitelist got themselves greytrapped (if you did set that up). > When I do: > cat /dev/null > /var/db/spamd > all starts to work again This sounds like somehow your initally whitelisted hosts got themselves blacklisted, or the whitelist is somehow bypassed. > 2. If i have some malware on my PC and use mail-client program. If I > send the same message some times I automatically get into WHITE-list > and my malware can spam as much as it must? If your malware manages to behave RFC-correctly, that is, resend after what the greylisting host considers a reasonable interval, it will manage to send whatever it's trying to send. -- Peter N. M. Hansteen, member of the first RFC 1149 implementation team http://www.blug.linux.no/rfc1149/ http://www.datadok.no/ http://www.nuug.no/ "First, we kill all the spammers" The Usenet Bard, "Twice-forwarded tales" delilah spamd[29949]: 85.152.224.147: disconnected after 42673 seconds.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?87veijkp6y.fsf>