> -----Original Message-----
> From: Greg Allen [mailto:[EMAIL PROTECTED]
> If it wasn't for a handful of users I would block everything
> outside the continental US, and certain companies can still
> do that if they do not do business outside the US.
>
RBLs in SA with judicious use of:
WHITELIST_FROM_RCVD and/or
SUBJECT_IN_WHITELIST
(These were add-ons I believe but both are going
to be standard by SA 3.10 "real soon now.")
Or whitelisting your front end RBLs that block.
(a local DNS server works great for this.)
But my favorite (this week) is using HELO names
and patterns, RBLs, and even SpamAssassin to drive
greylisting.
Greylisting knocks down 92% of everything we ask
it to check -- and so far we have identified ZERO
lost mail.
We do NOT greylist all email, which practically avoids
the only significant greylist "issue" of delaying
"good mail." Most of the items greylisted are not
useful, and the few that are get delayed once.
Usually the delay is 10 minutes to an hour, and even
most of that stuff is "optional" mail.
Having SA (spamd) checks drive greylisting for Spam=Yes
mail means that even less gets through; less requires
review by users.
(We check Spam=yes AND_NOT Already_Greylisted to avoid
unnecessary checks although that would not really hurt
if the same IP/sender/rcpt is used.)
--
Herb Martin
