> If I were to add a feature to periodically extract a list of IPs > (blocking list) from the GBUdb, what would be the best way to > integrate this list into IMail's ACL?
You seem specifically averse to using IP4R-style lookups; I can fully understand this if the purpose of your DB is dropping connections before an SMTP convo; that is, that the reputation system is so absolute that no counterweighting/whitelisting need be possible. However, if you want to provide pre-SMTP protection, you should absolutely not do this within the SMTP daemon at all. IMail's access control can be easily overwhelmed by a concerted DoS, for quite obvious reasons (it needs to handle and close every socket). Shove your anti-abuse at least down to the OS stack level, importing into Windows TCP/IP stack filters. Likewise for any other OS. Or, if you want to assume that the mail admin is also the edge router admin, develop import/export routines for common router/firewall ACLs and skip over mailhosts completely. I would not suggest wasting any time on app-specific access control syntax. --Sandy ------------------------------------ Sanford Whiteman, Chief Technologist Broadleaf Systems, a division of Cypress Integrated Systems, Inc. e-mail: [EMAIL PROTECTED] SpamAssassin plugs into Declude! http://www.imprimia.com/products/software/freeutils/SPAMC32/download/release/ Defuse Dictionary Attacks: Turn Exchange or IMail mailboxes into IMail Aliases! http://www.imprimia.com/products/software/freeutils/exchange2aliases/download/release/ http://www.imprimia.com/products/software/freeutils/ldap2aliases/download/release/ To Unsubscribe: http://www.ipswitch.com/support/mailing-lists.html List Archive: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/ Knowledge Base/FAQ: http://www.ipswitch.com/support/IMail/
