Just discovered that gmail is now retrying greylisted email from not only multiple servers, but from multiple servers located within different subnets...which totally breaks breaks tumgreyspf greylisting implementation. I kind of like it cuz it uses the filesystem to store its data. However, there's no way to whitelist every one of their smtp servers.
This leaves is with 4 options: a) do nothing and hope it's a crapshoot that gmail will retry from the same smtp server within a reasonable timeframe (if at all!) Not a good option. b) turn off greylisting entirely. (It still stops a lot of spam...just not as much as before. Not a good option) c) switch to another greylisting implementation (uses a database...not the preferred option) d) have postfix bypass that policy service if the sender's smtp connection/envelope sender (vs the from) is from gmail. I have no idea how to do that--if possible--hence this request to the list. Is that possible? Thanks! postconf -n address_verify_negative_cache = yes address_verify_negative_expire_time = 1d address_verify_positive_refresh_time = 2d address_verify_sender = <> alias_maps = hash:/etc/aliases biff = no body_checks = regexp:/etc/postfix/body_checks bounce_template_file = /etc/postfix/bounce.cf canonical_maps = hash:/etc/postfix/canonical command_directory = /usr/sbin config_directory = /etc/postfix content_filter = amavisfeed:[127.0.0.1]:10024 daemon_directory = /usr/lib/postfix data_directory = /var/lib/postfix debug_peer_level = 2 delay_warning_time = 4h disable_dns_lookups = no disable_vrfy_command = yes html_directory = /usr/share/doc/packages/postfix/html local_recipient_maps = local_transport = error:local mail delivery is disabled mail_owner = postfix mail_spool_directory = /var/mail mailbox_command = mailbox_transport = mailq_path = /usr/bin/mailq manpage_directory = /usr/share/man masquerade_classes = envelope_sender, header_sender, header_recipient masquerade_domains = masquerade_exceptions = root message_size_limit = 25680000 mime_header_checks = regexp:/etc/postfix/mime_header_checks mydestination = myhostname = mail.melwood.org mynetworks = 127.0.0.0/8 192.168.1.0/24 myorigin = $mydomain newaliases_path = /usr/bin/newaliases parent_domain_matches_subdomains = debug_peer_list smtpd_access_maps queue_directory = /var/spool/postfix readme_directory = /usr/share/doc/packages/postfix/README_FILES relay_domains = melwood.com, melwood.org, melwoodgardencenter.com relay_recipient_maps = relocated_maps = hash:/etc/postfix/relocated sample_directory = /usr/share/doc/packages/postfix/samples sender_canonical_maps = hash:/etc/postfix/sender_canonical sendmail_path = /usr/sbin/sendmail setgid_group = maildrop smtp_tls_CAfile = /etc/postfix/certs/cacert.pem smtp_tls_cert_file = /etc/postfix/certs/postfix_public_cert.pem smtp_tls_key_file = /etc/postfix/certs/postfix_private_key.pem smtp_tls_loglevel = 0 smtp_tls_session_cache_database = btree:/var/lib/postfix/smtp_tls_session_cache smtp_use_tls = yes smtpd_banner = mail.melwood.org ESMTP - All use subject to Melwood's Internet Use Policy. smtpd_client_restrictions = permit_mynetworks reject_rbl_client zen.spamhaus.orgreject_rbl_client list.dsbl.org reject_rbl_client combined.njabl.org permit smtpd_data_restrictions = reject_unauth_pipelining, permit smtpd_delay_reject = yes smtpd_error_sleep_time = 3s smtpd_hard_error_limit = 4 smtpd_helo_required = yes smtpd_helo_restrictions = permit_mynetworks reject_invalid_hostname check_helo_access hash:/etc/postfix/helo_access permit smtpd_recipient_restrictions = permit_mynetworks reject_unauth_destinationreject_unverified_recipient check_recipient_access hash:/etc/postfix/always_allowed check_recipient_access hash:/etc/postfix/not_accepted check_policy_service unix:private/tumgreyspf smtpd_sasl_auth_enable = no smtpd_sender_restrictions = hash:/etc/postfix/access smtpd_tls_CAfile = /etc/postfix/certs/cacert.pem smtpd_tls_cert_file = /etc/postfix/certs/postfix_public_cert.pem smtpd_tls_key_file = /etc/postfix/certs/postfix_private_key.pem smtpd_tls_loglevel = 0 smtpd_tls_received_header = yes smtpd_tls_session_cache_database = btree:/var/lib/postfix/smtpd_tls_session_cache smtpd_use_tls = yes soft_bounce = no strict_rfc821_envelopes = no transport_maps = hash:/etc/postfix/transport unknown_local_recipient_reject_code = 550 unverified_recipient_reject_code = 550
