Quote:
Originally Posted by alivebyscience  Sorry man, call me dumb, but graylisting? Is that the same as RBLs? |
Basically, graylisting means only mail from senders who are persistent (attempt delivery twice) get through right away. Other email gets held for a bit/extra points added/extra hard spam processing etc.
The server looks at any combination of from address, from IP, and TO address then puts the mail in a 'queue' and it sends a a temporary delivery failure. -which tells most servers to retry in say 5 minutes
Greylisting.org - Postfix implementations Connecting with SQLGrey - ZimbraWiki Greylisting - Wikipedia, the free encyclopedia - "If the mail is legitimate, the originating server will try again to send it later, at which time the destination will accept it. If the mail is from a spammer, it will probably not be retried. The assumption is that since temporary failures are built into the RFC specifications for e-mail delivery, a legitimate server will attempt to connect again later on to deliver the e-mail."
Now I'm sure your asking what happens if a server doesn't retry?
Several methods could be used:
-You might compare against any other emails (sent to other accounts in the same domain) from that IP/from: address that have re-tried and delivered.
-You might run the email through a stricter spam filter process.
-Deliver the email after x timeperiod, but give the email x amount of points if a re-send never occurred.
(of course you an always have a whitelist of domains and IP ranges that always go through)
For RBL's it's all about personal preference-and how you like their practices.
For instance I'm a fan of spamhaus's sbl and xbl but I don't use zen (their combined list) because I don't agree with their pbl policies.
-we might occasionally deal with a client who might fall under:
"Spamhaus's Policy Block List (PBL) is a DNSBL database of end-user IP address ranges which should not be delivering unauthenticated SMTP email to any Internet mail server except those provided for specifically by an ISP for that customer's use. The PBL helps networks enforce their Acceptable Use Policy for dynamic and non-MTA customer IP ranges.
Obviously with all the spammers out there things do overlap-for instance:
"NJABL.org will be working with Spamhaus on the PBL"
or
spamcop might copy some of abuseat's definitions every so often etc
Yup, mail-abuse.org is now a trend micro paid service.
Personally, I'd try out the major free one's first-if they don't do the job well enough for you then maybe consider a paid service. Though you said your a reseller-if you can get it for cheap that's a plus.
A lot of them-even the free one's-sometimes also allow you to get a copy of their lists via rsync so the lookups can be performed against a machine on your network instead of using your internet bandwidth.
there are other's out there too-hunt for 'RBL providers compatible with spamassassin'
Visit their respective sites, check their stats, policies on identifying spammers, IP removal policies for accidental blocks, etc.
dnsbl.njabl.org
cbl.abuseat.org
bl.spamcop.net
dnsbl.sorbs.net
sbl.spamhaus.org (or zen.spamhaus.org also xbl.spamhaus.org)
Bugzilla
Wiki
Source
Spam Filter - a few questions 
Linear Mode
