Anti-spam measures, grey listing very very impressed....

Discussion in 'NZ Computing' started by thingy, Apr 11, 2006.

  1. thingy

    thingy Guest

    For the Linux and BSD users out there running your own email system if
    you have not considered grey listing to stop spam, I would suggest it is
    worthwhile looking at it....

    Way impressed....zero spam except from my ISP (fetchmail) just watching
    the logs is great.....

    spammer (TEMP FAIL)
    spammer (TEMP FAIL)
    spammer (TEMP FAIL)
    etc
    etc

    just great cos they dont retry of course.....

    :D

    Writing my own pages as per usual (not finished yet btw)

    http://www.thing.dyndns.org/debian/grey.htm

    http://www.thing.dyndns.org/debian/mysql.htm

    http://www.thing.dyndns.org/debian/sendmaildeb.htm

    ===============

    Some links I found useful to assist in setting it up.

    http://www.freebsd.org/doc/en_US.ISO8859-1/articles/relaydelay/index.html

    http://www.sfobug.org/meeting_notes/chris_paul/greylist_openbsd.html

    http://dev.mysql.com/doc/refman/5.0/en/ (MYSQL manuals, excellent docs....)

    http://cvs.puremagic.com/viewcvs/*c...LL?content-type=text/plain&rev=RELAYDELAY_0_4

    http://dev.mysql.com/doc/refman/5.0/en/adding-users.html

    http://www.howtoforge.com/taxonomy_menu/1/7

    http://www.howtoforge.com/howto_linux_debian_server_setup

    regards

    Thing
    thingy, Apr 11, 2006
    #1
    1. Advertising

  2. thingy

    Steve Guest

    On Wed, 12 Apr 2006 07:21:01 +1200, thingy wrote:

    > For the Linux and BSD users out there running your own email system if you
    > have not considered grey listing to stop spam, I would suggest it is
    > worthwhile looking at it....
    >
    > Way impressed....zero spam except from my ISP (fetchmail) just watching
    > the logs is great.....
    >
    > spammer (TEMP FAIL)
    > spammer (TEMP FAIL)
    > spammer (TEMP FAIL)
    > etc
    > etc
    >
    > just great cos they dont retry of course.....
    >
    > :D
    >
    > Writing my own pages as per usual (not finished yet btw)
    >
    > http://www.thing.dyndns.org/debian/grey.htm
    >
    > http://www.thing.dyndns.org/debian/mysql.htm
    >
    > http://www.thing.dyndns.org/debian/sendmaildeb.htm
    >
    > ===============
    >
    > Some links I found useful to assist in setting it up.
    >
    > http://www.freebsd.org/doc/en_US.ISO8859-1/articles/relaydelay/index.html
    >
    > http://www.sfobug.org/meeting_notes/chris_paul/greylist_openbsd.html
    >
    > http://dev.mysql.com/doc/refman/5.0/en/ (MYSQL manuals, excellent
    > docs....)
    >
    > http://cvs.puremagic.com/viewcvs/*c...LL?content-type=text/plain&rev=RELAYDELAY_0_4
    >
    > http://dev.mysql.com/doc/refman/5.0/en/adding-users.html
    >
    > http://www.howtoforge.com/taxonomy_menu/1/7
    >
    > http://www.howtoforge.com/howto_linux_debian_server_setup
    >
    > regards
    >
    > Thing


    The problem with greylisting is that the algorithm used is well defined
    and published. This means that decent spammers will just work around it if
    they get dumped too often.

    As an alternative ( for sendmail/qmail users ), you might want to look at
    http://www.firetrust.org, coming to you all the way from sunny
    Christchurch. ( and yes, I do work for them ).

    Steve.
    Steve, Apr 12, 2006
    #2
    1. Advertising

  3. thingy

    thingy Guest

    Steve wrote:
    > On Wed, 12 Apr 2006 07:21:01 +1200, thingy wrote:
    >
    >
    >>For the Linux and BSD users out there running your own email system if you
    >>have not considered grey listing to stop spam, I would suggest it is
    >>worthwhile looking at it....
    >>
    >>Way impressed....zero spam except from my ISP (fetchmail) just watching
    >>the logs is great.....
    >>
    >>spammer (TEMP FAIL)
    >>spammer (TEMP FAIL)
    >>spammer (TEMP FAIL)
    >>etc
    >>etc
    >>
    >>just great cos they dont retry of course.....
    >>
    >>:D
    >>
    >>Writing my own pages as per usual (not finished yet btw)
    >>
    >>http://www.thing.dyndns.org/debian/grey.htm
    >>
    >>http://www.thing.dyndns.org/debian/mysql.htm
    >>
    >>http://www.thing.dyndns.org/debian/sendmaildeb.htm
    >>
    >>===============
    >>
    >>Some links I found useful to assist in setting it up.
    >>
    >>http://www.freebsd.org/doc/en_US.ISO8859-1/articles/relaydelay/index.html
    >>
    >>http://www.sfobug.org/meeting_notes/chris_paul/greylist_openbsd.html
    >>
    >>http://dev.mysql.com/doc/refman/5.0/en/ (MYSQL manuals, excellent
    >>docs....)
    >>
    >>http://cvs.puremagic.com/viewcvs/*c...LL?content-type=text/plain&rev=RELAYDELAY_0_4
    >>
    >>http://dev.mysql.com/doc/refman/5.0/en/adding-users.html
    >>
    >>http://www.howtoforge.com/taxonomy_menu/1/7
    >>
    >>http://www.howtoforge.com/howto_linux_debian_server_setup
    >>
    >>regards
    >>
    >>Thing

    >
    >
    > The problem with greylisting is that the algorithm used is well defined
    > and published. This means that decent spammers will just work around it if
    > they get dumped too often.
    >
    > As an alternative ( for sendmail/qmail users ), you might want to look at
    > http://www.firetrust.org, coming to you all the way from sunny
    > Christchurch. ( and yes, I do work for them ).
    >
    > Steve.
    >


    I have heard the spammers can work around this for the last two
    years...I have yet to see it....

    Even if I accept that argument (and never say never die) the same
    applies to any system and probably yours (though I will take a look).

    regards

    Thing
    thingy, Apr 15, 2006
    #3
  4. thingy

    thingy Guest

    Steve wrote:
    > On Wed, 12 Apr 2006 07:21:01 +1200, thingy wrote:
    >
    >
    >>For the Linux and BSD users out there running your own email system if you
    >>have not considered grey listing to stop spam, I would suggest it is
    >>worthwhile looking at it....
    >>
    >>Way impressed....zero spam except from my ISP (fetchmail) just watching
    >>the logs is great.....
    >>
    >>spammer (TEMP FAIL)
    >>spammer (TEMP FAIL)
    >>spammer (TEMP FAIL)
    >>etc
    >>etc
    >>
    >>just great cos they dont retry of course.....
    >>
    >>:D
    >>
    >>Writing my own pages as per usual (not finished yet btw)
    >>
    >>http://www.thing.dyndns.org/debian/grey.htm
    >>
    >>http://www.thing.dyndns.org/debian/mysql.htm
    >>
    >>http://www.thing.dyndns.org/debian/sendmaildeb.htm
    >>
    >>===============
    >>
    >>Some links I found useful to assist in setting it up.
    >>
    >>http://www.freebsd.org/doc/en_US.ISO8859-1/articles/relaydelay/index.html
    >>
    >>http://www.sfobug.org/meeting_notes/chris_paul/greylist_openbsd.html
    >>
    >>http://dev.mysql.com/doc/refman/5.0/en/ (MYSQL manuals, excellent
    >>docs....)
    >>
    >>http://cvs.puremagic.com/viewcvs/*c...LL?content-type=text/plain&rev=RELAYDELAY_0_4
    >>
    >>http://dev.mysql.com/doc/refman/5.0/en/adding-users.html
    >>
    >>http://www.howtoforge.com/taxonomy_menu/1/7
    >>
    >>http://www.howtoforge.com/howto_linux_debian_server_setup
    >>
    >>regards
    >>
    >>Thing

    >
    >
    > The problem with greylisting is that the algorithm used is well defined
    > and published. This means that decent spammers will just work around it if
    > they get dumped too often.
    >
    > As an alternative ( for sendmail/qmail users ), you might want to look at
    > http://www.firetrust.org, coming to you all the way from sunny
    > Christchurch. ( and yes, I do work for them ).
    >
    > Steve.
    >


    Mailwasher....we have used Puremessage for 2+ years and it is not the
    best package....stability being the biggest issue....it also returns a
    lot of false positives and misses some.....

    As with any fuzzy / algorithm based systems it is going to do well or
    not depending on its settings.....my experience has been they are easier
    to get around than grey listing....and certianly produce more false
    positives and misses than grey listing.....

    One of the biggest weaknesses is verifying a legit spam and getting it
    put into the master server(S), this means delay, grey listing does not
    suffer from this. From what I have seen spam attacks are over in as
    little as 5 minutes, ie a huge hit early on, these are going to beat a
    verification process....

    I would like to see some independant test(s) because at present the only
    one I have been impressed with is grey listing. If I have time I might
    set mailwasher rup on my Debian box, but 2 spams in 3 odd weeks is
    something I can live with.

    regards

    Thing
    thingy, Apr 15, 2006
    #4
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. Alan F Cross

    If I shoot a grey card, should this end up as 127 grey?

    Alan F Cross, Feb 25, 2004, in forum: Digital Photography
    Replies:
    8
    Views:
    1,077
    Robert E. Williams
    Feb 26, 2004
  2. Alan F Cross
    Replies:
    40
    Views:
    1,762
    zbzbzb
    Mar 2, 2004
  3. mcgyverjones

    anti-counterfeiting measures

    mcgyverjones, Oct 5, 2004, in forum: Digital Photography
    Replies:
    31
    Views:
    956
    Ray R
    Oct 9, 2004
  4. Replies:
    0
    Views:
    741
  5. Mr Scebe

    Very, very impressed.

    Mr Scebe, Nov 7, 2004, in forum: NZ Computing
    Replies:
    14
    Views:
    505
    Mr Scebe
    Nov 13, 2004
Loading...

Share This Page