OT: Blocking persistent spammers using IPTables?
hvdkooij
hvdkooij at vanderkooij.org
Thu Apr 29 08:48:42 IST 2010
On Wed, 28 Apr 2010 13:02:49 -0500, "Michael Masse"
<mrm at medicine.wisc.edu>
wrote:
> I second this. I've been using VISpan for a long time and it works
well
> at blocking persistent spammer IP's. It blocks at the MTA level and
not
> the network level, but since we're talking about a software firewall
> (IPTables) my guess is that the difference between the two in cpu
> utilization and network traffic is negligible even on very busy systems.
Blocking based on iptables is very, ver light. Spawning another postfix
process to handle the new connection and reject it is much more CPU
intensive.
I guess the impact with various MTA's may differ but all of them will need
to do a lot more then what iptables will do so iptables is much less weight
on your server.
Hugo.
--
hvdkooij at vanderkooij.org http://hugo.vanderkooij.org/
PGP/GPG? Use: http://hugo.vanderkooij.org/0x58F19981.asc
More information about the MailScanner
mailing list