On Sun, Feb 25, 2007 at 05:20:34PM -0500, m. allan noah wrote: > I have been using greylisting for a little while, and find that > managing the whitelist is sort of annoying. so, i updated my copy of > the plugin to use the query object that the SPF plugin squirrels away. > if the host is a valid smtp server for the sender, then i build the > greylist key using the word 'spfpass' instead of the IP of the remote > host. This requires that greylisting include the sender, and it does > not help if the domain does not define SPF records. In my case, it > takes care of places that use server farms like google, lots of big > mailing lists, etc.
I think that's a reasonable approach. I've also heard of people skipping greylisting if reverse dns is configured properly (for some value of properly), along the same lines - if someone's gone to the trouble of setting up SPF or reverse dns, they're likely also to be using a real mailer. On the implementation, why don't you just return DECLINED if it's an SPF pass, rather than touch the database at all? Cheers, Gavin
