|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: All these reject_*_sender restrictions...
From: Adrian von Bidder (avbidder
fortytwo.ch)
Date: Mon Jul 25 2005 - 10:00:02 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On Monday 25 July 2005 12.56, Tony Earnshaw wrote:
> --vbi wrote
> > As I said, I have a very low volume site, so I think enabling
> > reject_unverified_sender for all mail shouldn't create any problems.
> Ok, try it out and let us all know.
First lesson: caching negative lookups is a BAD IDEA if 4xx responses are
cached, too. This gives bad interactions when the sending site uses
greylisting - AFAICT negative answers are cached for 3h by default.
The obvious solution: address_verify_negative_cache = no
The (somewhat) easy solution: don't cache 4xx responses at all.
The better solution: have separate
address_verify_negative_{4xx,5xx}_{expire,refresh}_time values.
cheers
-- vbi
--
featured link: http://fortytwo.ch/blog
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)
Comment: get my key from http://fortytwo.ch/gpg/92082481
iKcEABECAGcFAkLk/nJgGmh0dHA6Ly9mb3J0eXR3by5jaC9sZWdhbC9ncGcvZW1h
aWwuMjAwMjA4MjI/dmVyc2lvbj0xLjUmbWQ1c3VtPTVkZmY4NjhkMTE4NDMyNzYw
NzFiMjVlYjcwMDZkYTNlAAoJECqqZti935l6i4sAoLwRuLjMzqa7/H9AUOmRX8p8
ZU98AJ9RG4EsEz1rNKMyww4UcWrha4Km3g==
=/X7x
-----END PGP SIGNATURE-----
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]