Spam suggestions?

Brennan Stehling brennan at offwhite.net
Fri Jan 5 23:16:08 CET 2007 

 Thanks Phil,   
 Is there a way to use policyd with Sendmail?  I have used Sendmail
for years and it has worked alright.  
 One solution I have considered but have no idea to implement is to
have my mail go to another server using the MX routing in DNS and have
it forward the "clean" messages to my server.  I have looked for a
paid mail host which would provide this sort of service but I have not
found anything.  
 Brennan   
 On Fri, 5 Jan 2007 15:52:09 -0600, "Phil Cryer"  wrote:   
  On 1/5/07, Brennan Stehling  wrote:  
 I have been using SpamAssassin, but I have had problems where
incoming spam causes the server to become unresponsive for long
periods of time.  This is obviously unacceptable.  I am pretty sure
the biggest part of the problem is that fact that is running with
Perl.  I have had problems with Perl before when I wrote CGI
applications where it can lock up a server if you are handling a lot
of data.  
 I specifically have it set to only handle messages under a certain
size, but I still have problems.  
 I host other things on the same server, like my DNS and Web servers
so I cannot allow the spam filter to kill the performance of all
applications.  Is there something better that I could do?  I am
seriously considering having all of my mail aliased to my Gmail
account and not allow incoming mail to be stored on this server.  If I
do that I will not be using RC, which I would like to continue using
and helping with the development effort.     
 Brenden
 Two ideas, one, use spamc
http://spamassassin.apache.org/full/3.0.x/dist/doc/spamc.html for SA
checks and two use something like policyd
http://policyd.sourceforge.net/ that will handle greylisting, rate 
limiting, Spamtrap monitoring and blacklisting, HELO checks, with auto
 blacklisting.  Basically it listens before Postfix (or whatever MTA)
and grabs the mail first, only passing it on once it's happy with it. 
It's also a c program, and you can now have it hook into clamav as
well.  It's pretty light, plus it takes away a bunch of work that your
MTA used to have to do.  Honestly I've been running it lately and not
bothering with SA, since I have a .procmailrc rule to fwd all mail to
my Gmail acct which deals with the spam really well - just as you
desc.  It can check with clamav if it has an attachment and deny it
there.  The downside is I haven't had time to configure/use RC for
awhile (I used to have Gmail forward all mail to my home server since
I only used RC back then!) 
 I used to have a very convoluted plan with
greylisting/sa/rules-du-jour/clam/razor/dcc and other checks, all
handled by  Mailscanner, which is more perl, and yeah, I felt the heat
and dropped most of it after I discovered policyd.  If you do that
alone you'll reduce your load a lot.  Just adding that w/o sa really
reduced my spam amount, if I get back into it I need to put SA (or as
I was leaning towards dspam) in the mix with it.  I also still want to
get my openbsd box in the mix to handle spamd to do the phoney smtp
tarpit server, but that's later even though it's pretty much setup. 
Anyway, a simplier plan right now at home: 
 INTERNET -> policyd -> (clamav) -> Postfix -> procmail -> Gmail
 hth
 P
 Brennan Stehling
 Offwhite.net LLC
 brennan at offwhite.net       
 -- 
 "Without music, life would be a mistake" - Friedrich Nietzsche   
 Brennan Stehling Offwhite.net LLC brennan at offwhite.net  
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.roundcube.net/pipermail/dev/attachments/20070105/8ad11c5f/attachment-0001.html>

More information about the Dev mailing list