Ricardo, > Setup is via dual-sendmail and latest amavisd. > It seems that the ammount of spam received is too much and basically > I have sendmail accepting more mail that it can process... Our > sendmail-rx takes everything (does have some rate limits in place) but > do not do any RBLs nor username checks. We are still running the latest > SA 3.0.x but will switch soon to 3.1.x.
Rejecting mail addressed to nonexistent local users is paramount. I see two possible directions: add more servers to the mix, or go for greylisting. I still manage to do without graylisting, hope it stays that way, but it a single major tool to cut down the traffic reaching SA without doing too much harm. > No immediate plans to switch to > postfix (although this might change if we need to add support for spf). Mentioning SPF on a Postfix list is banned :) The future is supposed to be in DKIM, but there's still a long way to go. > Would going to sendmail-milter help with this ? Not much. SA is the major burden, you can only escape it by not letting it see all the traffic (RBL, greylisting, rejecting mail to nonexistent users, sender address verification, ...) > I might have to do RBLs if not (suggestions for this ?) RBLs impose higher risks of rejecting valid mail than greylisting. In my view RBLs only belongs into SA rules, otherwise one is putting (arbitraty) decisions into foreign hands with little control over it. > Is there anyone with good experience in a dual setup that can provide > some pointers with regards on setting up more restrictions on the > sendmail-rx part of it ? Timing looks ok, with over 75% of it being SA > which has some safe rules from the SARE ninjas and also Fred rules. > We get about 300K messages per day, with 90% of it being spam > Hardware probably needs to be upgraded at this point (P4 3.0ghz, > 2Gb RAM - 2 boxes). When you switch to 3.1.x don't forget the sa-update rules. Mark ------------------------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 _______________________________________________ AMaViS-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/amavis-user AMaViS-FAQ:http://www.amavis.org/amavis-faq.php3 AMaViS-HowTos:http://www.amavis.org/howto/
