Op Tue, 19 Sep 2017 09:35:04 +0200 schreef Peter N. M. Hansteen
<peter@bsdly.net>:
> On 09/19/17 09:10, rosjat wrote:
>
>> I like to get some opinions on where to use the spamd daemon. Is it
>> better to do the heavy stuff on the firewall or let it all pass to the
>> mailsystem and do the filtering there?
>
> OpenBSD's spamd is not in any way a 'heavy' service.
Indeed. On my site, with 12k messages tarpitted last week, spamd (with
-v) took about the same cpu time as ntpd. Spamlogd even less. Together
about 7.5M resident memory.
> It's entirely
> possible to run it on the actual mail server, but I tend to recommend
> stopping unwanted traffic early and set up on the directly
> internet-facing host (aka the firewall).
Note that the spamd(8) manual page assumes it's the same machine, so using
different machines is a less trivial pf.conf setup. IIRC it requires
route-to in stead of divert-to for your whitelist(s), or a divert-to with
a relayd/nc relay.
--
Gemaakt met Opera's e-mailprogramma: http://www.opera.com/mail/
No comments:
Post a Comment