Skip site navigation (1)Skip section navigation (2) 
Date:      Fri, 05 Mar 2010 16:44:17 +0000
From:      Matthew Seaman <m.seaman@infracaninophile.co.uk>
To:        John <john@starfire.mn.org>
Cc:        mikel king <mikel.king@olivent.com>, Programmer In Training <pit@joseph-a-nagy-jr.us>, freebsd-questions@freebsd.org
Subject:   Re: pf overload for SMTP
Message-ID:  <4B9134E1.7060501@infracaninophile.co.uk>
In-Reply-To: <20100305163507.GA18338@elwood.starfire.mn.org>
References:  <20100305125446.GA14774@elwood.starfire.mn.org> <4B910139.1080908@joseph-a-nagy-jr.us> <20100305132604.GC14774@elwood.starfire.mn.org> <F4960422-5F59-4FF4-A2E4-1F0A4772B78B@olivent.com> <20100305154439.GA17456@elwood.starfire.mn.org> <4B912ADC.1040802@infracaninophile.co.uk> <20100305163507.GA18338@elwood.starfire.mn.org>
next in thread | previous in thread | raw e-mail | index | archive | help 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 05/03/2010 16:35:07, John wrote:
> Is there any reason one couldn't do something similar for SMTP?  Maybe
> a little wider sample window, like 10/300?  Or would you end up blocking
> too any things that you don't mean to block?  Anyone played with this
> for SMTP?

You can do this with SMTP, but I'm not sure quite how useful it would be
given the different usage patterns for e-mail.  (I've applied it quite
happly for FTP servers, for example)

If you want to do some pf-level antispam stuff, then look at spamd -- in
the ports as obspamd to prevent confusion with SpamAssassin's spamd.
http://www.openbsd.org/cgi-bin/man.cgi?query=spamd&apropos=0&sektion=0&manpath=OpenBSD+Current&arch=i386&format=html

This implements greylisting, greytrapping and teergrube against
addresses blacklisted as spam sources.  Last I checked it only worked on
IPv4 though.

It's a fairly light-weight means of eliminating quite a lot of spam, but
it should be used in conjunction with other MTA mediated anti-spam
techniques, for example SpamAssassin

 	Cheers,

	Matthew

- -- 
Dr Matthew J Seaman MA, D.Phil.                   7 Priory Courtyard
                                                  Flat 3
PGP: http://www.infracaninophile.co.uk/pgpkey     Ramsgate
                                                  Kent, CT11 9PW
-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.14 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAkuRNOEACgkQ8Mjk52CukIzcGACePJLeg/yorVq8vpVA6Nr7WBbI
FksAn0hkNVrOo/m9o5gClh7J7zGoWdvU
=JW5l
-----END PGP SIGNATURE-----

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4B9134E1.7060501>