Forums & Blog

Hey there,

Since upgrading to SM4 I have been loving the improvements a great deal.
Greylisting has reduced my spam a great deal, but in just the intrest of trying to speed up the legitimate mail I think there should be an option to skip greylisting on SPF passing. I know that this will potentially allow more spam through, but spamassassin can take care of that.
If someone has bothered to set up a SPF record correctly then they should be allowed through.

Also will give more incentive for people to set them up in the 1st place.

I second that feature request. That would be a really sweet feature to add!

As long as it is an option on Greylisting, people can turn it back on for SPF Pass if the Spam amount increases.

/jp

...and I third that motion, that would be awesome.

Greylisting is done prior to any DNS lookups.  If we didn't do this, a denial of service attack could be done against the server as it wouldn't be able to handle all the DNS lookups.  It is critical to eliminate as many IP from getting into the system and doing intensive routines, and GreyList is a very important piece of that!

Hope that helps,

Our mail server receives plenty of spam that has passed SPF.  Just because an email has passed SPF doesn't mean it should be automatically whitelisted.  Like all spam tests, SPF should be weighted.

And I was corrected by a developer today.  SPF is done prior to Greylisting and needs to be.  I was thinking of Reverse DNS checks which are very time consuming.  Sorry for the confusion!

So is this going to be considered then to be implemented?

Just because spam is getting in with SPF pass on your server then you should review you spam settings.I agree SPF by itself is not sufficent for determining spam emails, but this feature would just help speed up the delivery of legitimate email and spam emails should be caught through other tests.

The only SPF weight I use is the SPF fail which denies the connection.