|Main Archive Page > Month Archives > postfix-users archives|
Jeroen Geilman put forth on 10/19/2010 8:09 PM:
> You're missing some of the better spam prevention methods here, such as
> decent HELO checks, and an RBL or two.
> I'd suggest at least adding reject_unknown_reverse_client_hostname in
> there, as well as (testing out)
This will probably be a big help to Steve.
This pcre rdns checker kills tons of bot spam from consumer IPs that
should not be sending direct smtp mail. It picks up where the PBL
leaves off. Zero FP rate. As always, exclude it from your own
submission smtpd or it ighty well reject your own users.
The check_policy_service line is the postgrey daemon. Doesn't stop
alot, maybe 5-10 per day of 1000, but it's a needed safety net. Your
anti spam toolbox needs many tools to make all the tools effective as a
whole. Merely adding fqrdns.pcre has put a big smile on the faces of
quite a few OPs.
As always, do a "postfix reload" after making changes to main.cf.