Morten Nilsen, 09.11.2006 16:45: > Ariën Huisken wrote: >> I just put in my main.cf: > > With these rules, I get next to no spam.. > > smtpd_sasl_auth_enable = yes > smtpd_sasl_security_options = noanonymous > smtpd_sasl_tls_security_options = $smtpd_sasl_security_options > smtpd_tls_auth_only = no > smtpd_sasl_local_domain = These have nothing to do with spam, though. It enables sasl, which is to authenticate your users when sending email.
> > smtpd_delay_reject = yes > smtpd_helo_required = yes > smtpd_helo_restrictions = > reject_non_fqdn_hostname, This will cause a lot of false positives in my experience. DNS is widely broken out there as it's put in the hands of too many clueless admins. There are more risky settings here I would not recommend for business usage. The main problem with this strict aproach is that you reject or accept based on a single parameter. I find this far too risky! I would put more effort into amavisd and spamassassin where multiple checks are performed and no single rule will throwaway any mail. I removed all these extremist checks and all RBL checks from postfix and let spamassassin deal with them. Of course, my subjective opinion. _______________________________________________ tsl-discuss mailing list [email protected] http://lists.trustix.org/mailman/listinfo/tsl-discuss
