Hi there,
If I understand correctly this log record (from SMTP server log) means that the sender is temporary blocked and the sending server gets notified to try again soon, right?
For some reason those emails don't come through even after several hours.
Am I missing anything here? Is there anything else I should check?
(I am using latest AMS on Win2003 server).
Thanks!
Grey List temp fail - what does this mean?
4 posts • Page 1 of 1
Grey List temp fail - what does this mean?
by david » Sat Jun 07, 2008 12:46 pm
- david
- Posts: 17
- Joined: Fri Jun 06, 2008 3:21 pm
Re: Grey List temp fail - what does this mean?
by Code Crafters » Mon Jun 09, 2008 12:03 pm
Let me explain how grey listing works. An email from an unknown IP is given a temporary failure message as if the mail server is unavailable and please try again soon. The sending client / mail server should then retry and delivery will be accepted within the grey listing window (default 1-3 hours later). Once accepted within this window the IP is white listed and not temp failed again.
This filter is very effective and will often stop 80% of all SPAM on its own. It filters out mail from SPAM clients which generally try once and then give up for a while. Proper sending mail servers will retry for many hours and will generally always be accepted. Obviously the default wait time of 1 hour means an delay in your mail delivery so you can change this 60 minute default to 1 or 5 minutes to reduce the delay without comprimising the effectiveness of the filter too much.
Clients sending directly to the mail server obviously can't retry as easily as another mail server can but you can use the relaying exemption and white listing options to allow clients that have logged into their mail client for outgoing mail relaying access to the mail server or who are white listed to skip all SPAM filtering and avoid this problem since they are already pre-authenticated.
This filter is very effective and will often stop 80% of all SPAM on its own. It filters out mail from SPAM clients which generally try once and then give up for a while. Proper sending mail servers will retry for many hours and will generally always be accepted. Obviously the default wait time of 1 hour means an delay in your mail delivery so you can change this 60 minute default to 1 or 5 minutes to reduce the delay without comprimising the effectiveness of the filter too much.
Clients sending directly to the mail server obviously can't retry as easily as another mail server can but you can use the relaying exemption and white listing options to allow clients that have logged into their mail client for outgoing mail relaying access to the mail server or who are white listed to skip all SPAM filtering and avoid this problem since they are already pre-authenticated.
- Code Crafters
- Posts: 943
- Joined: Mon Sep 10, 2007 2:35 pm
Re: Grey List temp fail - what does this mean?
by sillyme » Fri Jun 13, 2008 6:25 am
Correct me if I am wrong but grey list also relys on the senders email and server address as a pair for the first approval. Check the log file for the originating IP address. I have found some cases where the senders mail keeps moving from server to server (farm I guess). A few also just send once. These I just add to the white list.
- sillyme
- Posts: 49
- Joined: Wed Sep 19, 2007 3:30 pm
- Location: Cincinnati, Ohio
Re: Grey List temp fail - what does this mean?
by Code Crafters » Fri Jun 13, 2008 11:41 am
Actually, you are right. The identification of a grey listed sender is based on the SMTP envelope sender, SMTP envelope recipients and sender IP. All of these define a unique record for greater accuracy.
- Code Crafters
- Posts: 943
- Joined: Mon Sep 10, 2007 2:35 pm
4 posts • Page 1 of 1
Who is online
Users browsing this forum: No registered users and 5 guests