The chain of flexible filters stops more than 95% of unwanted emails out of the box (more than 99% with Message Sniffer), dropping the mail server load by more than 90%. It monitors the SMTP traffic in real-time, catching the majority of spam and viruses. I`m planning that sa-update will be updated via cron.EWall is a Microsoft Windows based gateway between the Internet and your mail server. Spamd just like the two biggest commercial antispam tools use a mundial database for ip reputation and other mail stuff. Many checks nowadays are based on sourceip or live lists(white, gray,black,etc). Even then, it would require herculean effort to keep up to date and would never be appropriate for anything more than a small network. If any one are willing to contribute with the project, the time has surprisingly, I agree with jimp on this, such a package would require several thousand dollars at least and probably closer to ten thousand to do anything close to correctly. Third stage antispam checks(high cpu usage): I'm working on it and I agree that firewall is not the best place for a antispam system, but you can put it on another pfSense box/vm and use the same great pfSense GUI/rules to configure it. I like the idea of 'several thousand dollars' ) (And I still wouldn't want to run that on my firewall… :-) You'd realistically be looking at a several thousand dollars to have someone do that properly. An actual spam filter package would involve running a full mail server on the firewall, plus all of the spam scanning software, plus coming up with some kind of GUI for it, and a way to manage not only the global spam filter settings but probably per-address options, and updating the spamassassin rules, etc, etc. So it wasn't rejecting anything, but making it easier for the client to do is a big difference in configuring a greylisting daemon and configuring a full spam filter package. In those cases, it simply marked messages with a SPAM tag. I've only done Spamassassin in between my POP server and my local client. If it scanned the stream as it flowed through the message would already be delivered to your mail server by the time SpamAssassin scanned it. It can't just grab the traffic stream, scan it live, and then forward/reject it after the whole message has been received, not without a program receiving the message and forwarding it to your internal mail server. That just isn't how it but you are not correct. Something has to accept the entire message, then let spamassin scan it, and then based on that result, send it to your mail server. Other places run it through scripts hooked in from postfix/exim/sendmail/etc. A common way is via something like amavisd, which is essentially a mail server (rather, an MTA, to be more precise). SpamAssassin on its own is not a mail server, cannot accept messages, it cannot send them out, it requires another program to feed it the messages and then deal with the result. I have setup spamassassin on mail servers before, and run it in a couple locations.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |