how to bock mailservers that have only an ip address

Kai Schaetzl maillists at conactive.com
Mon May 1 15:31:21 IST 2006 

John Rudd wrote on Mon, 1 May 2006 03:18:31 -0700:

> Which doesn't answer the part about SMTP-AUTH.  Which was the important 
> part, really.

I suppose you have to use delay_checks to make smtp-auth succeed as it is 
with other sendmail recipes. I've never used that specific hack since I 
felt there might be too many false positives and greylisting throws these 
out, anyway, it seems.

> It is both alternative and complementary.  Depending on how you use it.

I agree with Jim. I think that both packages are really alternatives, not 
complimentary. If you use both that means you double the memory usage and 
since both are Perl based that means you need a *lot* of memory. Both 
packages are similar in many aspects. I doesn't make too much sense for me 
to run them both just to get that tiny fraction that is missing from one 
of them. Other aspects which might make up your decision about using the 
one or the other are ease of configuration (which I cannot assess, I 
decided years ago to go with MailScanner and never had MimeDefang running, 
but it were MailScanner and MimeDefang which were my competing 
alternatives when I decided to drop MailCorral), update cycles/policy (as 
above, again) and performance (and I think here's a clear advantage for 
MailScanner: the more mail you get the better should MailScanner perform 
in contrast to MimeDefang because it runs in queue mode and you can accept 
mail all the time with the MTA whereas with a milter you have to spawn 
another instance of it for every open connection). And, of course, there's 
that basic decision: do you want to reject virus mail at MTA level or 
quarantine it, just in case it got assessed wrong. Same thing with spam. 
If one is so confident that the scoring/decision always is right then go 
with rejecting at MTA level (=MimeDefang or amavisd), if one is not so 
confident about it then quarantine it (=MailScanner).
I for one do it the following way: reject mainly because of "technical" 
reasons at MTA level (which rejects around 70/80% of all mail, only around 
3% of the remaining mail is spam or bad content) and quarantine because of 
content. 


Kai

-- 
Kai Schätzl, Berlin, Germany
Get your web at Conactive Internet Services: http://www.conactive.com

More information about the MailScanner mailing list