On Sep 27, 2004, at 12:59 PM, Raymond Dijkxhoorn wrote:
Hi!
Rejects Since Sunday 4:00 am via rbls:
spamcop: 65 maps rbl+: 154 dsbl.org: 9 njabl.org: 18 spamhaus: 18
The question is always, did you block any legit mail...
I realize that the thread here is specifically about DNSBL's, but I think one tool alone isn't going to be much use. I use a number of things on my MTA in addition to using SpamAssassin+Razor. Here are the things I use on my MTA (sendmail 8.13):
1) Greet_Delay (default 30 seconds) -- had some brief false positives with mac.com, but they fixed their MTA to stop being so impatient.
2) Connection Rate Control (default 2 connections) -- I have had one site try to send me quick messages, from a mailing list my wife is on, that got blocked, but they trickle through later in the day when that happens. Otherwise, I've seen a few sites show up in there that were clearly trying to spam me (and/or do a dictionary type attack on me), but got caught by the connection rate control.
3) SBL and XBL, listed separately so that I can track them individually. I block FAR more SBL than XBL hosts, and I have yet to see any host names in the logs that look even remotely legitimate. And no complaints from anyone that I have been blocking their legit mail.
Since I started using those, I get so few spam messages that I almost never have something for spam assassin to drop into my spam folder. Yet, all of my legit mail still comes through.
