On Wed, 29 Aug 2007, Robert Felber wrote:
On Wed, Aug 29, 2007 at 12:43:33PM +0200, [EMAIL PROTECTED] wrote:
Hi! I have some problems with this feature of policyd-weight.
The messages "Recipient address rejected: temporarily blocked because of
previous errors - retrying too fast. penalty: 30 seconds x 0 retries." apears
too often in my maillogs for real, non-spam-senders.
What can i do to dissable this feature or to lower the probability of a false
positive?
You could try to set NTTL to 0 (default: 1).
But, this are cached entries which had a score higher than REJECTLEVEL.
So, you should look first "why" they were REJECTed in the first place.
The default working scheme is such:
evaluate first time -
REJECET => SPAM cache with NTTL
DUNNO => HAM cache
resend after more than 30 seconds -
NTTL lowered, REJECT
resend after more than 30 seconds -
evaluate again - if REJECET => SPAM cache again
(In other words, the user must resend at least two times with an intervall
of 30 seconds in order to be re-evaluated again, this is to ensure, that a
human sits and reads at the other side).
The cache mechanism is merely a "feature" in order to reduce the bandwidth
for RBL providers and DNS.
If you want to disable caching completely set
$POSCACHESIZE = 0;
$CACHESIZE= 0;
Also, if you have that many "false positives" then you might want to increase
REJECTLEVEL to 4 or 5. Be aware that you explicitly want spam/viruses then in
order to tolerate misconfiguration even more.
--
Robert Felber (PGP: 896CF30B)
Munich, Germany
Policyd-weight Mailinglist - http://www.policyd-weight.org/
Personally I love this feature, it allows me to ban IPs that continually
retry on 550x errors. Thanks for the explanation Robert!
Justin.
Policyd-weight Mailinglist - http://www.policyd-weight.org/
