[142278] in North American Network Operators' Group
Re: Address Assignment Question
daemon@ATHENA.MIT.EDU (Seth Mos)
Mon Jun 20 17:41:05 2011
From: Seth Mos <seth.mos@dds.nl>
In-Reply-To: <EFD18A55-37E9-4B0D-877A-4124EB179EAA@dotat.at>
Date: Mon, 20 Jun 2011 23:40:48 +0200
To: NANOG <nanog@nanog.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
Op 20 jun 2011, om 23:24 heeft Tony Finch het volgende geschreven:
> On 20 Jun 2011, at 16:26, J=E9r=F4me Nicolle <jerome@ceriz.fr> wrote:
>>=20
>> But most RBL managers are shitheads anyway, so help them evade, =
that'll be one more proof of spamhaus &co. uselessness and negative =
impact on the Internet's best practices.
>=20
> An organization that blocks 90% of spam with no false positives is =
incredibly useful.
Using a greylisting system is equally effective without the black list =
part.
My milter-greylist installation is aimed at allowing as much mail =
through as it can, instead of the other way around. Milter-greylist has =
a nice urlcheck feature and/or ldap verification for users. In my case =
it's a PHP script.
If I can verify the IP to be inside a /22 of the MX records, www records =
or domain records that is sufficient to bypass the greylisting. The =
timers are also quite lenient. Just 15 minutes of wait is enough, of =
they are persistent if we've seen them before by domain. We get the =
email regardless and phone calls are rare, and I never run the risk of =
never getting the email.
This has turned out to be a really effective way to allow normal email =
through without much delay. After just 2 days at work it's whitelisted =
over 75% of the active domains we do business with.
We have about 17 domains and I know what the poster is asking, we've =
been emailing our customers before, subscribed customers none the less. =
We've had our share of blacklisting before. And we even sent the emails =
with unsubscribe links.
But some of them will click the "report this as spam" link in their =
favourite mail agent as a means to unsubscribe. I mean, clicking a link =
is hard. The end result is that we end up on various block lists. It's a =
good thing that the email servers at large isps are often sensible =
enough to let the email through.
Some of the smaller ones had rather odd draconian limits set. This makes =
the situation for all of us worse.
Regards,
Seth=
