On 12/21/05, Matt Lemke <[EMAIL PROTECTED]> wrote: > In your implementation of Greylisting do you delay all mail for the > recommended 1 > hour before allowing delivery? > I am looking for a solid solution to these dictionary attacks, but wonder > what end users > think about this type of delay.
No I sure don't. I use the default of 5 minutes, which is what ASSP is set for out of the box IIRC. That delay is plenty to turn away an enormous amount of spam and short enough that -- so far -- not one client has commented on it. Usually a correspondent is only delayed once. Once a triplet has retried and been accepted, it is also whitelisted (from greylisting). If after making it past the greylist and being whitelisted from that feature, one of the other filters bags it, the triplet's whitelisting from the greylist feature is immediately reversed and the triplet is delayed again the next time mail from it arrives. And of course an email from a locally auth'd user whitelists the recipient from all spam filtering for up to 90 days (the 90-day renewal is renewed whenever there is email going to or coming from the whitelisted address). -- --mattRobertson-- Janitor, MSB Web Systems mysecretbase.com To Unsubscribe: http://www.ipswitch.com/support/mailing-lists.html List Archive: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/ Knowledge Base/FAQ: http://www.ipswitch.com/support/IMail/
