1 |
On 1/23/2011 4:26 PM, Alan McKinnon wrote: |
2 |
> Apparently, though unproven, at 02:02 on Monday 24 January 2011, kashani did |
3 |
> opine thusly: |
4 |
> |
5 |
>> On 1/23/2011 12:20 PM, Alan McKinnon wrote: |
6 |
>>> It manages it's own queues beautifully. But, and this makes me sad, it |
7 |
>>> doesn't really want *me* to manage it's queues. Border controls are |
8 |
>>> hard, and finding the 1,000 mails some idiot with a Windows bot just |
9 |
>>> sent, and deleting them, is really hard. |
10 |
>>> |
11 |
>>> I'm redesigning our mail setup at work,a nd I'm going to do it with exim |
12 |
>>> *and* Postfix. Exim is the front end I can see, work with, and manage. |
13 |
>>> Exim sends on to Postfix as fast as it can, and Postfix transparently |
14 |
>>> relays to recipient. I get best of both worlds :-) |
15 |
>> |
16 |
>> I can't say I've ever needed anything more than mailq | grep |awk | |
17 |
>> postsuper -d - in order to delete mail from the Postfix queues. What |
18 |
>> sort of things are your trying to do other than delete a lot of spam or |
19 |
>> bounces? |
20 |
> |
21 |
> First, our internal mail system deals with about 3,000,000 mails a day Mon-Thu |
22 |
> so grep | postsuper is a tad inadequate, even if just on the basis of volume |
23 |
> |
24 |
> The basic tools are fine as long as you understand what they are dealing with |
25 |
> - raw text. As soon as you run mailq you have text, you no longer have |
26 |
> intelligence about what that text means. So you need lots of grep-fu. |
27 |
> |
28 |
> I can't control what the users mail out, sometimes they have automated systems |
29 |
> that do silly things like send 10,000 notifications an hour to an SMS gateway |
30 |
> when they cocked up Nagios. Finding the dodgy ones is no fun when there's a |
31 |
> lot of perfectly valid ones in the mix too, and grep doesn't help much other |
32 |
> than blindly selecting text matches. |
33 |
> |
34 |
> There's lots more examples, but they all follow a similar theme. |
35 |
> |
36 |
|
37 |
Thanks for the extra detail, I found what you're describing very |
38 |
interesting. I've never dealt with Postfix with more than a couple |
39 |
hundred internal users and more often as spam our customers system. |
40 |
Other than the occasional Nagios blasts I haven't had to deal with much |
41 |
of this. |
42 |
In regards to controlling what users send is it feasible to use a |
43 |
policy server for rate limiting them? The ability to use an extra lookup |
44 |
service to decide whether to access main, filter it, allow relay, etc is |
45 |
one of the things I think Postfix does well. However I suspect the |
46 |
management and hand holding of a rate limit system would create more |
47 |
overhead than cleaning out the queue periodically. |
48 |
|
49 |
kashani |