| 1 |
On Fri, 30 Nov 2007 02:00:20 -0500 |
| 2 |
Randy Barlow <randy@×××××××××××××××××.com> wrote: |
| 3 |
|
| 4 |
> I am getting a huge number of connections to my mail server (postfix) |
| 5 |
> compared to usual. I've seen as many as 50 connections open at one |
| 6 |
> time. The logs show that the connections are from several computers |
| 7 |
> of varying IPs, and they are all trying to send mail to random |
| 8 |
> mailboxes on my domain. It's very annoying, and I have noticed that |
| 9 |
> inbound mail seems to be lagging by several hours. Is there |
| 10 |
> something similar to denyhosts for spammers? Any other suggestions? |
| 11 |
> |
| 12 |
|
| 13 |
There are a variety of reasons this many incoming connections can be |
| 14 |
generated. No amount of blacklist/greylist filtering will do anything |
| 15 |
to prevent them from happening. If you block them at the firewall, they |
| 16 |
will just keep retrying and you'll end up making the problem worse. You |
| 17 |
need to give a 550 to every incoming connection, regardless. It sounds |
| 18 |
like you are using a DB on the backend for user lookups. If so, there |
| 19 |
are important optimizations that need to be made to make this issue a |
| 20 |
moot point. |
| 21 |
|
| 22 |
First, it would be nice to know what MTA you are using, and secondly if |
| 23 |
you are using a database backend for lookups. With that information, I |
| 24 |
could give some specific answers on how to better optimize your setup |
| 25 |
for dealing with the garbage. |
| 26 |
|
| 27 |
Wendall |
| 28 |
-- |
| 29 |
gentoo-server@g.o mailing list |
Archives