Launch: Greylisting, Version 1.0

Filed in by Rackspace Blogger | September 4, 2006 3:03 pm

We recently launched the first version of our selective greylisting system. Here is a definition of greylisting from Wikipedia:
“Greylisting is a simple method of defending electronic mail users against email spam. In short, a mail transfer agent which uses greylisting will “temporarily reject” any email from a sender it does not recognize. If the mail is legitimate, the originating server will try again to send it later, at which time the destination will accept it. If the mail is from a spammer, it will probably not be retried. Greylisting is designed as a complement to existing defenses against spam, and not as a replacement.”
Go here[1] for the full definition from Wikipedia.
When we launched, we started by only greylisting incoming mail that is sent to our backup and secondary mail servers and catch-all email accounts. There was an immediate positive impact.
Last week we rolled out a bit more greylisting that applies to mail that is sent from dynamic IP ranges such as computers connected behind DSL and Cable networks, any network that does not have valid reverse DNS records set up, or any server that identifies itself (HELO) with an invalid hostname such a non-fully qualified domain name or an IP address. This made even more of a positive impact on our spam defenses.
In a few weeks, customers will have the option to turn on greylisting for all mail they receive from new sources (this will be disabled by default). They will also have advance whitelisting capabilities for greylisting. These options will be located on the spam preferences pages both in webmail and in the control panel. We are also adding more intelligence to the greylisting system so that once a sender’s server has proven to consistently pass greylisting, future mail will skip greylisting.
As an FYI, much of this system was built around a great open-source project called Policyd[2].

Endnotes:
  1. Go here: http://en.wikipedia.org/wiki/Greylisting
  2. Policyd: http://policyd.sourceforge.net

Source URL: http://www.rackspace.com/blog/launch_greylisting_version_10/