>we have noticed that sagrey has roughly 95% effective re: % of spam hits in >our environments
We find that bad recipients, then selective greylisting kills 90%+. >is anyone here that is using sagrey come up with some really effective meta >rules using it?? greylisting after DATA seems so inefficient that it's counter-productive (more processing on DATA) when compared with greylisting pre-DATA. I find the idea bizarre. Applying greylisting selectively is important (debatable). One can be very selective pre-DATA with envelope rules and restriction classes that channel suspect MTAs into restriction classes that greylist and are more aggressive. Simply, we greylist every msg unless it has non-suspect PTR and HELO, and we do it all pre-DATA/envelope. iow, a legit sender who has either a suspect PTR or a suspect HELO won't get rejected, but they will get beat up more. content-scanning is so expensive that we put a lot of effort pre-DATA into feeding it a little traffic as possible. Len
