Matt Sergeant wrote:
On 2 Feb 2005, at 17:40, David Nicol wrote:
the idea is, reject any unseen source the first time it is seen, for an hour
or two. This cuts down on bot-sent messages at the small price of
delaying (!!! not requiring a full c/r) the first message from a new RAPNAP.
Aside from the other replies, watch out because older versions of Lotus Notes treat a soft fail as a hard failure. So it's not great in a corporate setting.
Matt.
I download the whitelist regularly, too, to be used by the plugins/extra/whitelist_soft plugin which denysoft_greylist respects.
whitelist-- http://cvs.puremagic.com/viewcvs/greylisting/schema/whitelist_ip.txt
http://www.greylisting.org/whitelisting.shtml
Whitelisting
When one does greylisting one generally also need to do some whitelisting. Whitelisting basically means having a list of sender email servers (IPs) / sender email addresses that are never refused on first try (as greylisting does). In some cases you might do this because you trust the mailer and do not want to delay whatever mail it sends to you. However, and this is the case to note(!); there are misbehaving mailers (MTAs) out there that will not be able to get a legitimate email through a greylisting server BECAUSE IT DOES NOT TRY AGAIN LATER (as the RFC email server standards defines that it has to do)!. Of course you may say: "f*** them for not adhering to the standards! we do not want mail from them anyway!", however this is a baaaad solution as 1) you may lose important mail this way 2) your clients may lose important mail this way (and they will not appreciate this!). Therefore: Whitelisting is a _must_ for a production server that uses greylisting. Whitelisting some IPs/email addresses generally is included with all greylisting implementations (do not choose an implementation that does not allow you to define some IPs to whitelist!).
Known misbehaving/incompatible mailers (MTAs)
This is an INCOMPLETE list of misbehaving mailers. The list is copied from: http://cvs.puremagic.com/viewcvs/greylisting/schema/whitelist_ip.txt
