|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: how block spammers? (slow server)
From: Černý Robert (forum
codefritters.com)
Date: Tue Jun 06 2006 - 05:02:59 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On 6.6.2006, at 2:01, Erwan David wrote:
> Le Mon 5/06/2006, Noel Jones disait
>> At 05:27 PM 6/5/2006, Octavio wrote:
>>> Hi one server I have, is getting a looot of
>>> connections of spammers all of them are rejected by
>>> 450 or 554 (rbl) but those conections make my server
>>> very low
>>
>> What is being rejected with 450? That signals the client
>> to retry later. Don't do that.
>>
>> Standard advice includes:
>> - reject (550) unknown recipients
>> http://www.postfix.org/LOCAL_RECIPIENT_README.html
>> and don't use wildcard canonical or virtual aliases.
>> - increase number of smtpd processes
>> http://www.postfix.org/TUNING_README.html#proc_limit
>> - send error messages quickly by using
>> smtpd_error_sleep_time = 0
>> - hang up on bad clients by using smtpd_hard_error_limit =
>> 5 (or less)
>> - use anvil(8) limits to throttle runaway clients. This is
>> not intended for traffic shaping!
>> http://www.postfix.org/TUNING_README.html#conn_limit
>
> Very effective is a restriction on helo <your ip address> or helo
> <your
> domain>, the latter being more dangerous to filter since some
> clients use the
> right part of the sender address for helo.
>
> --
> Erwan
Hi Octavio,
we found postgrey to be very valuable piece of our setup.
HTH
Robert
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]