Op 22-09-19 om 17:59 schreef Dominic Raferd: > I have been tweaking my settings for the last three years largely > based on advice from this list. I give below my (slightly simplified) > smtpd_recipient_restrictions settings for unauthenticated connections > (suggestions for improvement very welcome). I also apply some > header_checks and use spamassassin and clamav (via amavis) with some > bespoke rules.
Much thanks for your help. It will take some time to study it. > I think it is inadvisable to use reject_unknown_client_hostname (risk > of fps) but I have found reject_unknown_reverse_client_hostname very > effective. I have heard that more. > I tried greylisting but gave it up - it isn't necessary and > the delays were very irritating to users (e.g. for password reset > emails). I don't like it too. With regards, Paul -- Paul van der Vlis Linux systeembeheer Groningen https://www.vandervlis.nl/