Repeated Blacklisting / IP reputation
jgreco at ns.sol.net
Sat Sep 12 21:10:37 UTC 2009
> >>>>> "Joe" == Joe Greco <jgreco at ns.sol.net> writes:
> Joe> Show me ONE major MTA which allows you to configure an expiration
> Joe> for an ACL entry.
> Any MTA which supports using an sql db as its backend. Postfix is a
> fine example.
> You just define the table and the query to either have an until column,
> or have a column with the timestamp of when the entry was added and have
> the query ignore rows which are older than some given time.
> And with postfix, using its sql proxy capability, using a sql backend is
> fully performant.
So, you agree, MTA's do not implement this functionality. It's obviously
possible to make it happen through shell scripting, database tricks, etc.,
but the point was that if this was commonly desired, then MTA's would be
supporting it directly. It isn't commonly desired, most people just block
It never ceases to amaze me how technical people so often easily miss the
Joe Greco - sol.net Network Services - Milwaukee, WI - http://www.sol.net
"We call it the 'one bite at the apple' rule. Give me one chance [and] then I
won't contact you again." - Direct Marketing Ass'n position on e-mail spam(CNN)
With 24 million small businesses in the US alone, that's way too many apples.
More information about the NANOG