[Greylist-users] General Q about the milter interface and greylisting.

[Evan Harris]

> Well, I've got my greylisting implementation stable and I'll probably post
> it somewhere publicly accessible this weekend or Monday.  It needs a good
> bit of cleanup before anyone else would consider using it, though.

I look forward to seeing it.

> First, how does one tell if the rcpt to: is valid?  My implementation is
> collecting a few rows of data with a rcpt to: of non-existant users.
> Sure, they'll time out before too long and get nuked, but I'd rather not
> have them there in the first place.  In addition, I'd like to yank a few
> chains if someone is running a dictionary attack against me :-)

I'm actually in the process of solving this very problem, and think I've
come up with an elegant solution.  I won't go into it now before I validate
it, but I expect to have something workable after the weekend.

> Second, short of recompiling Sendmail to use Berkely DB 3.X is there any
> decent way to get at Sendmail's access.db?

Why would you need to recompile sendmail?  It should use whatever version is
standard for your system.

As far as the milter, there are perl libs that provide an interface to the
access.db, and I've been playing with one of them.  A simple solution that
handles common cases is pretty easy, but I'm still trying to make sure that
I've handled all the uncommon cases too.  This is the last major thing I'm
trying to get finished before releasing the next version of the milter.

Evan