Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations SkipVought on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Which MTA to choose

Status
Not open for further replies.
RoryJMcKenna

RoryJMcKenna

MIS
Apr 24, 2003
164
0
0
CA
I am trying to come up with a solution that will minimize mail being accepted for a particular domain without getting myself blacklisted. Can anyone point me in a general direction on which MTA handles this well.

I have an external mail server that routes mail to an internal mail server (This houses Spamassin) The issue is that the volume of spam that is let into the network is slowly killing the mail server.

I would 1. Appreciate opinions on which spam filtering software to use as well as 2. which MTA is most efficient at dropping invalid mail before it enters the network without landing me on a blacklist.

Thanks in advance!
 
Sort by date Sort by votes
postfix + amavisd + spamassassin + orbs.
Scales well,easy to configure and has highly
spam resistant characteristics.
 
Upvote 0 Downvote
OK, the "which MTA" question is a holy war topic. PPL here will wait for me to chant "qmail" until I fall down, so I won't. ;-)

However, your questions REALLY are NOT about the MTA, per se. You are asking about how to stop in the inbound flow of spam. This really ISN'T a function of the MTA, but is something that plugins/addons to the MTA do.

Your questions
#1) Which SPAM filtering software to use? SpamAssassin is the reigning king of this and it has a few additional layers that are optional that you can enable. Adding Anti-Virus (such as ClamAV) will stop a decent amount of crap incoming.

Your Q#2) Is the most interesting to me. Again, I don't know if the MTAs are the real issue. It's the resources you have available on your machine to have perl instances thrown for each incoming email to run SpamAssassin and then run the message past the anti-virus scanner too. This is NOT an efficiency that the MTA should be attributed to, IMHO.

Also, you seem to have some fear about being blacklisted for NOT accepting SPAM/Virii. I would argue that you would be regarded as quite the good email admin if you DID take a harder line on rejecting SPAM. Your users will thank you, your bandwidth cost/usage will thank you. Certainly your servers will thank you. I'm NOT aware of any blacklists that are derived from criteria in which the accepting MTA (you) were choosy about the kind of email ACCEPTED.

Two more thoughts....
First, there are MORE options to consider including the use of several Blocklist... Marsd mentioned the 'orbs' lists, but there are (many others), each with their own benefits and risks. You should consider using these to refuse connections from high-risk IPs/Network ranges before your poor server has to spawn a single instance of SpamAssassin

Next, there are other anti-spam technologies such as the use of the "SPF" proposals and requiring valid "PTR" (Reverse DNS) against the sending email server as requirements before you'll even accept an SMTP connection from them.

Finally, a practice I have now adopted on my serves is to stop sending bounce messages altogether. You can end up generating a hugh volume of email outbound from your network in "friendly" response to notices of virii found and unknown recipient messages. Since I found that 90%+ of the bounce messages were going back to fraudulent senders in the first place, I just /dev/null the delivery of these anomalies and sleep well at night. This posture puts a slight bit more responsiblity on the users in resolving "missing email" issues when the sender mis-types the "To:" field, but my users are not requesting "catch-all" accounts to solve this and they understand the benefit of NOT accepting hundreds of spam a day for this tiny extra bit of effort.

Hope that helps.



Hosting Solutions for Home or Business.
 
Upvote 0 Downvote
Symantec Brightmail (the only supported version of Linux is Red Hat). We use it for an enterprise of 2000+ users and have had great success. It eats about 70% of all incoming e-mail and we have had no "false positives". The only downside is that it is quite expense.
 
Upvote 0 Downvote
Done better with spamassassin, orbs and regexp matches.
96% of all spam id'd with over 1200 users, and 90+% dropped.
 
Upvote 0 Downvote
Sendmail, ClamAV, grey-listing, and SpamAssassin.

I run this on our mail server which processes mail for over 100,000 web based mail accounts. Rarely have issues.

 
Upvote 0 Downvote
Hey thanks for all the suggestions!
I guess that was a bit of an open ended question as everyone has a slightly different opinion on this sort of thing. I guess I will put a little more thought into it and read up on some of the suggestions that you all put out there for me.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

donald lepariku
  • Locked
  • Question
Error: 694, Severity: 24, State: 10 An attempt was made to read logical page '153', virtpage '616' f 1
Replies
3
Views
113
spamjim
spamjim
kasperelectronics
  • Locked
  • Question
Desktop streaming from a server to low power front end device e.g. RasPi
Replies
0
Views
50
kasperelectronics
kasperelectronics
Edwin Reyes
  • Locked
  • Question
High CPU utilization Linux Server due to mysql
Replies
1
Views
63
spamjim
spamjim
waydown
  • Locked
  • Question
Unable to connect to server
Replies
4
Views
86
RhythmAce
RhythmAce
montyzummer
  • Locked
  • Question
Backup Linux DIR to windows via NFS
Replies
4
Views
77
kjv1611
kjv1611

Part and Inventory Search

Sponsor

Back
Top