I'm using XWall and this is what it states:
----------------------------------------------------------- GreyListing
GreyListing spam filter, based on http://projects.puremagic.com/greylisting
The GreyListing method looks at three pieces of information about any particular mail delivery attempt:
The IP address of the host attempting the delivery The envelope sender address The envelope recipient address
From this an unique triplet for identifying a message is created and if this
triplet was never been seen before, or the sender is not excluded or on the white list, then the message delivery is refused with a temporary failure.
Any normal SMTP server will reschedule the message and will resend it after some time ( usually 10 - 15 minutes ).
Spammers however are sending applications designed specifically for spamming. These applications usually adopt the fire-and-forget methodology. That is, they attempt to send the spam to one or several MX hosts for a domain, but then never attempt a true retry as a real SMTP server would.
There are some misbehaving mail servers that have a problem with GreyListing and XWall automatically excludes them. You will find the list at GreyListing Exclusions
Note: Make sure your backup MX SMTP also runs XWall or any other SMTP server that support GreyListing or else the spammer will bypass XWall by sending to XWall first and then to the backup MX.
Max triplets to gather
Defines how many triples XWall should member
Initial delay of a previously unknown triplet Lifetime of triplets that have allowed mail to pass Lifetime of triplets that have not yet allowed a mail to pass
Defines the time interval of the triples
Show detailed triplet description (last seen, time elapsed)
If this is enabled XWall shows a detailed description about the status of the triplet, including the last seen and elapsed time.
-----------------------------------------------------------
-----Original Message----- From: discuss-bounces@lists.surbl.org [mailto:discuss-bounces@lists.surbl.org] On Behalf Of Jeff Chan Sent: Tuesday, December 07, 2004 1:10 AM To: SURBL Discussion list Subject: Re: [SURBL-Discuss] Hi I'm new and I like SURBL
On Monday, December 6, 2004, 8:54:09 PM, Joseph Burford wrote: (Paul Schwarz writes:)
Is anyone else recommending or not recommending greylisting and what are your experiences. Seems like surbl should get more effective over the
Greylisting rocks, however I've been building a greylist whitelist to help get over the problem of various people who run non-compliant systems.
So with a good list of trusted netblocks not to greylist, it is even more effective. I've been sharing this with a few people, if you or anyone else is interested please mail me offlist.
OK I think there may be some confusion about the term 'greylisting' here. Greylisting is one of those terms that can mean different things in different contexts. In this case, it looks like:
1. Paul may be referring to putting marginal spams into a separate mail folder or mailbox so that they can be checked manually for spamminess, then delivered or deleted. Perhaps Paul can clarify if that's what he meant.
2. Joseph means using blocklists based on 'grey' criteria, i.e. domains are mentioned in some legitimate mail and also some spams.
Jeff C. -- "If it appears in hams, then don't list it."
_______________________________________________ Discuss mailing list Discuss@lists.surbl.org http://lists.surbl.org/mailman/listinfo/discuss