On Tue, December 26, 2006 3:05 pm, Howard Lowndes wrote: >>> Sonia, why don't you look at the other restrictions that are >>> available in postfix. >>> >>> I'm currently handling around 200,000 emails per day, but by the time >>> they have run the gauntlet only about 5 spam emails per day make it >>> into my INBOX. >> [snip]
yes, definitely worth doing whilst I handle somewhat less mail than you, I have excellent results from Postfix 'counter measures', the added benefit, most of the junk never enters the server conversely, very few, if any, spams make it through whilst not as sophisticated as yours, if anyone is interested, my setup is as follows: body_checks_size_limit = 150000 body_checks = pcre:/etc/postfix/body_checks header_checks = pcre:/etc/postfix/header_checks smtpd_helo_required = yes disable_vrfy_command = yes smtpd_restriction_classes = from_freemail_host from_freemail_host = reject_unknown_client, check_client_access hash:/etc/postfix/freemail_hosts, check_client_access regexp:/etc/postfix/freemail_reject, reject smtpd_helo_restrictions = permit_mynetworks, check_helo_access regexp:/etc/postfix/helo_access smtpd_recipient_restrictions = permit_mynetworks, check_client_access hash:/etc/postfix/pop-before-smtp, reject_unauth_destination, check_recipient_access hash:/etc/postfix/recipient_no_checks, reject_non_fqdn_sender, reject_non_fqdn_recipient, reject_invalid_hostname, reject_non_fqdn_hostname, reject_unknown_sender_domain, reject_unknown_recipient_domain, reject_unlisted_recipient, check_policy_service inet:127.0.0.1:10031, check_sender_access hash:/etc/postfix/freemail_access, check_recipient_access hash:/etc/postfix/recipient_checks, check_recipient_access pcre:/etc/postfix/recipient_checks.pcre, check_helo_access hash:/etc/postfix/helo_checks, check_sender_access hash:/etc/postfix/sender_checks, check_client_access hash:/etc/postfix/client_checks, check_client_access pcre:/etc/postfix/client_checks.pcre, reject_rbl_client zen.spamhaus.org, reject_rbl_client list.dsbl.org, reject_rbl_client combined.njabl.org, reject_rhsbl_sender dsn.rfc-ignorant.org, reject_rbl_client korea.services.net, reject_rbl_client dul.dnsbl.sorbs.net, permit -- Voytek -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
