On 10/01/18 23:36, Antonino Sidoti wrote: > I notice that Spamd when seeing a first time sender is not being labelled > with “GREY” even though the log says it is. > > /var/log/maillog shows a sender being flagged as ‘GREY’; > > Oct 1 17:43:24 obsd-svr3 spamd[84545]: (GREY) 67.219.xxx.250: > <ad...@network-tools.com> -> <b...@example.com> > Oct 1 17:43:24 obsd-svr3 spamd[16185]: Trapping 67.219.xxx.250 for tuple > 67.219.xxx.250 test.network-tools.com <ad...@network-tools.com> > <b...@example.com> > Oct 1 17:43:24 obsd-svr3 spamd[84545]: 67.219.149.250: disconnected after 13 > seconds.
This is a sender getting greytrapped. The most likely explanation is that b...@example.com is either an explicit spamtrap or fails to match the allowed suffixes in /etc/mail/spamd.alloweddomains -- Peter N. M. Hansteen, member of the first RFC 1149 implementation team http://bsdly.blogspot.com/ http://www.bsdly.net/ http://www.nuug.no/ "Remember to set the evil bit on all malicious network traffic" delilah spamd[29949]: 85.152.224.147: disconnected after 42673 seconds.
