After playing around with my electronic mail server I have decided to only accept outgoing mail from authenticated clients via the Submission ( 587 ) and SMTPS ( 465 ) ports on all servers under my control, during the past few days I noticed that server load and spam are way down; since I can now be more strict with client name and HELO/EHLO checks on all connections via the standard SMTP (25) port, something I could not do before.
Authenticated client messages can bypass strict SPAM checks but do get checked for virus infection and are signed with the server’s DomainKey on their way out.
Blocking port 25 doesn’t sound like such a bad idea to me now because 95% of spam attempts on my servers seem to be from windows zombies. After I implemented the new checks I just get a handful of spam from a few hijacked servers and open relays. SpamAssassin gets most of them in the first try.
I am quite happy with the results so far. :-)
November 28th, 2007 at 10:49 pm
s/hand full/handful/
ain’t english fun? ;)
November 29th, 2007 at 1:03 am
RFC4409 you mean http://tools.ietf.org/html/rfc4409 ;)
November 29th, 2007 at 1:54 am
Thanks you guys! *shrugs* I really need to start double checking before post.
January 24th, 2008 at 4:16 am
Why the little frenchgirl does not sent emails?
March 14th, 2008 at 12:18 pm
does anyone knows if there is any other information about this subject in other languages?