|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: relaying seems to be killing spam detection
From: /dev/rob0 (rob0
gmx.co.uk)
Date: Thu Jul 20 2006 - 01:58:43 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On Wednesday 19 July 2006 08:54, Chris McKeever wrote:
> For our domain, we accept delivery for mailfoo.com and then
> rewrite it to mailgmail.foo.com (google hosted)
This makes no sense to me. Why use Google hosting if you're acting as
your own MX?
> These are the spam/spoof detection settings on the postfix side:
>
> smtpd_sender_restrictions = reject_unknown_sender_domain,
> reject_rhsbl_sender dsn.rfc-ignorant.org
rfc-ignorant.org is likely to be a bit aggressive used in such a way.
You're losing some real mail and not blocking much spam here.
> smtpd_client_restrictions = reject_rbl_client relays.ordb.org
>
>
> any suggestions as to how to tighten it on our end, to help alleviate
> the SPAM issue in the gmail inbox?
http://jimsun.linxnet.com/misc/postfix-anti-UCE.txt
The HELO checks section is very important.
http://www.spamhaus.org/effective_filtering.html
Omits the HELO checking idea, perhaps because some MTA's might have
trouble implementing that, but otherwise good advice.
In addition to Spamhaus and ORDB, NJABL is a very good service. Part of
the NJABL data is included in Spamhaus XBL, but there are other NJABL
lists not included.
Always ALWAYS always check the policies of any RBL or RHSBL before you
rely on it to filter your mail. Real senders don't like rejection.
--
Offlist mail to this address is discarded unless
"/dev/rob0" or "not-spam" is in Subject: header
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]