Thanks for the feedback on Spamtrap's effectiveness. If we do decide to turn the feature on however, does anyone have any suggestions on configuring it? For example, we have an additional registered domain that's never been used for e-mail but if we throw up an MX record and listen we start getting connections. So, is there a way to enter the entire domain into the spamtrap _rcpt table (e.g., [EMAIL PROTECTED]) and spamtrap any servers trying to connect to it? Also, can you blacklist an entire net block using spamtrap? Finally, as I had asked originally do I need to turn on blacklisting as well as spamtrap to get this all to work?
Thanks, Joe Lanager Penn State University Joe Lanager wrote: > We currently use Policyd just for greylisting but we're thinking of > implementing Spamtrap so I just had some general questions. Is anyone > currently using this feature and if so has it been very effective? In my case it was not effective. After running a low volume site (~1000/day) for 6 months, I had very few repeat offenders caught by the spam trap. I did find some, but most were mainly bot spam coming from different IP's. On the negative side, I found several legitimate outgoing mail servers from COX and comcast that I had to whitelist after they were being used to hit my spamtraps multiple times. I found that simply rejecting the unknown users and parsing the logs over time I could find which netblocks to block if any. YMMV john > Also, we initially just want to enter some static targeted recipient > addresses and have the trapped IPs expire after a day so am I correct in > assuming that all we need to do to get this working is to: > > > > 1. Set SPAMTRAPPING = 1 in policyd.conf > > 2. Set SPAMTRAP_AUTO_EXPIRE=1d in policyd.conf > > 3. Enter the trap address(es) in the spamtrap table in MySQL > (e.g., _rcpt = [EMAIL PROTECTED] and _active=1) > > > > Also, I'm assuming that the blacklist table is where the trapped > addresses go so do I need to enable blacklisting as well or will it work > without expressly turning on blacklisting? > > > > Thanks very much, > > > > Joe Lanager > > Penn State University > > > > > ------------------------------------------------------------------------ > > ------------------------------------------------------------------------ - > This SF.net email is sponsored by DB2 Express > Download DB2 Express C - the FREE version of DB2 express and take > control of your XML. No limits. Just data. Click to get it now. > http://sourceforge.net/powerbar/db2/ > > > ------------------------------------------------------------------------ > > _______________________________________________ > policyd-users mailing list > policyd-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/policyd-users ------------------------------------------------------------------------ - This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/ _______________________________________________ policyd-users mailing list policyd-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/policyd-users ------------------------------------------------------------------------- This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/ _______________________________________________ policyd-users mailing list policyd-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/policyd-users
