Hi there,
On Sun, 10 May 2020, Paul Kosinski via clamav-users wrote:
> Our email handling is [...snip...]
Mail system design isn't really the topic for this list, so I won't
comment further on your setup.
> (You might be surprised how much email to made-up user names ...
Back in the 1980s I might have been surprised, but now about the only
thing that surprises me with emails is when one arrives which should
have been rejected by my filters. It happens very rarely, and when it
does I shout abuse at my screen.
> P.S. G.W Haywood ought to consider something like our email reply
> database.
You asked for help. I provided the help, and I explained that you can
contact me via this list. Please try to keep to the list topics.
> When I replied to an email he sent me from what seemed to be
> his private email address (i.e., not his clamav address), it was held
> for a few days at his MTA, "timed out"
No, if mail is delayed it's held on the sender's server, not on mine.
That's the whole point - upping the ante for spammers. Evidently my
take on email is different from what you'd like it to be, in that you
seem to think I should be trying harder to accept mail, whereas I'm
always trying to find more ways to reject it. My use of ClamAV, to
stay on topic, isn't about protection from viruses but about rejecting
the unwanted mail. To that end some of the third party databases kick
serious butt and at your request I've sent you privately a list of the
databases that I use. The official databases don't do much by way of
rejecting junk mail, but that's not really why they exist so it isn't
a criticism of them.
As I've already explained to you, aside from the fact that your IPs
are on a blacklist, _all_ Level3 IPs are blacklisted here. Given the
history of Level3 and CenturyLink (who bought Level3 in 2017, and who
are also blacklisted here), that is unlikely to change anytime soon.
If you're offended that my servers won't accept your private mail then
please be assured that it isn't personal. I'm just blocking garbage,
and as I've explained there may unfortunately be collateral damage in
some cases - such as if you're in one of over a hundred blacklisted
countries, and/or you use IPs from one of a few named ASN owners, or
one of a few dozen specific ASNs. Regrettably AS3356 is one of those.
> and was then bounced -- twice.
Again no, my servers never bounce mail. Either it's accepted, or it's
rejected, or the sending server gives up. Until one of those results
appears there is the possibility of greylisting TEMPFAILs, but the way
that SMTP works means that the _sending_ server retains responsibility
for the message during the greylisting period. Something like 30% of
the IPs on the planet are firewalled here, so they can't even make a
TCP connection. The firewalling is dynamic, driven by a milter which
uses a custom database of things like ASNs, countries, and some other
things that I don't want to talk about in public. If a firewalled IP
tries to send mail it will get a "connection refused". The Internet
is infested by criminals, many of whom are sponsored by governments
and have vastly greater resources than we do, so I make no apologies
for that.
You still seem to me to be worrying about the wrong things.
--
73,
Ged.
_______________________________________________
clamav-users mailing list
clamav-users@lists.clamav.net
https://lists.clamav.net/mailman/listinfo/clamav-users Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq http://www.clamav.net/contact.html#ml