Language Selection

English French German Italian Portuguese Spanish

Admins try another weapon against spam

Filed under
Security

With the volume of spam showing no sign of abating any time soon, system administrators are beginning to turn to one more weapon - greylisting, a technique which some have found to be remarkably successful.

Craig Sanders, a Melbourne-based independent IT consultant and a long-time sysadmin, said greylisting worked by keeping track of how many times a particular combination of IP address, sender, and recipient had appeared.

"The first time a given combination is seen, the sender is told to 'try again later'. If they try again later (after a configurable time period, usually around five minutes) then the message is accepted. The combination is then remembered and, if seen again, is allowed in without any further delay. Since most viruses only try once for each victim address, and also send from random/forged sender addresses, greylisting is extremely effective at blocking them."

Sanders said greylisting was an important part of any anti-spam/anti-virus arsenal. "It's not the whole solution - nothing is - but it is an essential component," he said.

"I implement it on every mail server I build and currently use the postgrey greylisting program (which works with the Postfix mail server)."

He said greylisting seemed to be popular on the Postfix mailing list and on other mail expert lists, "but that's representative of the experts who are really into mail systems and how they work, rather than representative of the bulk of mail server operators."

Full Story.

More in Tux Machines

Android Leftovers

Canonical Releases Small Kernel Patch for Ubuntu 16.04 LTS to Fix a Regression

Last week, Canonical released a kernel update for the Ubuntu 16.04 LTS (Xenial Xerus) operating system patching a total of four security issues, including a use-after-free vulnerability in the Netlink subsystem (XFRM), an out-of-bounds read in the GTCO digitizer USB driver, a bug in the associative array implementation, and improper copy-on-write (COW) handling of transparent huge pages. However, it would appear that the respective kernel update also introduced a regression, which apparently prevented the use of the Ceph network file system on machines that upgraded to the new kernel versions. Canonical patched the issue and released a new Linux kernel update that addresses the problem on all Ubuntu 16.04 LTS systems, as well as Ubuntu 14.04.5 LTS machines. Read more

FreeNAS, World’s Most Popular Storage OS, Gets AMD Ryzen Support, Cloud Sync

Coming six months after the release of the FreeNAS 11 stable series, the FreeNAS 11.1 update is based on FreeBSD 11.1 and introduces cloud integration, support for AMD Ryzen and Intel Xeon Scalable family of processors, OpenZFS performance improvements, as well as preliminary support for Docker application container engine through a virtual machine built from RancherOS. "FreeNAS 11.1 adds a cloud sync (data import/export to the cloud) feature," reads the announcement. "This new feature lets you sync (similar to backup), move (erase from source), or copy (only changed data) data to and from public cloud providers that include Amazon S3 (Simple Storage Services), Backblaze B2 Cloud, Google Cloud, and Microsoft Azure." Read more

Amazon Linux 2 Benchmarks, 6-Way Linux OS EC2 Compute Cloud Comparison

With Amazon AWS this week having released Amazon Linux 2 LTS I was excited to put this updated cloud-focused operating system through some performance tests to see how it stacks up with the more well known Linux distributions. Read more