mdaemon 9.51 防治垃信有點無厘頭!!
先讓我們來看看LOG訊息:<br><br>----------我是分隔線,以下是第一個LOG----------<br>Tue 2006-10-31 16:00:23: Performing DNS-BL lookup (59.124.225.11 - connecting IP)<br>Tue 2006-10-31 16:00:23: * sbl-xbl.spamhaus.org - passed<br>Tue 2006-10-31 16:00:24: * opm.blitzed.org - passed<br>Tue 2006-10-31 16:00:24: * relays.ordb.org - passed<br>Tue 2006-10-31 16:00:26: * bl.spamcop.net - passed<br>Tue 2006-10-31 16:00:26: ---- End DNS-BL results<br>Tue 2006-10-31 16:00:26: --> 250 <[email protected]>, Recipient ok<br>Tue 2006-10-31 16:00:26: <-- DATA<br>Tue 2006-10-31 16:00:26: Creating temp file (SMTP): c:\mdaemon\queues\temp\md50000000006.tmp<br>Tue 2006-10-31 16:00:26: --> 354 Enter mail, end with <CRLF>.<CRLF><br>Tue 2006-10-31 16:00:27: Message size: 45709 bytes<br>Tue 2006-10-31 16:00:27: Passing message through AntiVirus (Size: 45709)...<br>Tue 2006-10-31 16:00:27: * Message is clean (no viruses found)<br>Tue 2006-10-31 16:00:27: ---- End AntiVirus results<br>Tue 2006-10-31 16:00:28: Passing message through Outbreak Protection...<br>Tue 2006-10-31 16:00:28: * Message-ID: <br>Tue 2006-10-31 16:00:28: * Reference-ID: str=0001.0A010201.4547024A.0047,ss=1,vtr=str,vl=2,fgs=0<br>Tue 2006-10-31 16:00:28: * Spam/phishing threat level: 1 - Clean<br>Tue 2006-10-31 16:00:28: * Virus threat level: 2 - Infected<br>Tue 2006-10-31 16:00:28: ---- End Outbreak Protection results<br>Tue 2006-10-31 16:00:28: --> 554 Sorry, message likely to contain a virus (OP)<br>Tue 2006-10-31 16:00:28: SMTP session terminated (Bytes in/out: 45801/293)<br>Tue 2006-10-31 16:00:28: ----------<br><br>----------我是分隔線,以下是第二個LOG----------<br>Tue 2006-10-31 16:22:25: --> 250 <[email protected]>, Sender ok<br>Tue 2006-10-31 16:22:28: <-- RCPT TO: <[email protected]><br>Tue 2006-10-31 16:22:28: Performing DNS-BL lookup (83.143.180.129 - connecting IP)<br>Tue 2006-10-31 16:22:29: * sbl-xbl.spamhaus.org - failed<br>Tue 2006-10-31 16:22:29: * opm.blitzed.org - passed<br>Tue 2006-10-31 16:22:29: * relays.ordb.org - passed<br>Tue 2006-10-31 16:22:29: * bl.spamcop.net - failed<br>Tue 2006-10-31 16:22:29: ---- End DNS-BL results<br>Tue 2006-10-31 16:22:29: 'Recipient unknown' given and connection dropped to divert future spam<br>Tue 2006-10-31 16:22:29: --> 550 <[email protected]>, Recipient unknown<br>Tue 2006-10-31 16:22:29: SMTP session terminated (Bytes in/out: 124/220)<br><br>這二個不同的LOG,收件人都為同一個人,在第一個LOG中,我們可以看到,ANTIVIRUS已經判定這個信件沒有病毒,讓它繼續往下走,但是OP(9.5X版提供新的垃圾信判斷功能),認為這封信有病毒就把它給刪除,這是否表示我們根本不用買ANTIVIRUS 了,因為有OP就夠了。<br><br>第二個LOG就更妙了,明明收件者和第一個LOG是相同的,在22分鐘後就自動把收件者設定為'Recipient unknown' given and connection dropped to divert future spam<br>'中文的意思為找不到收件者而且我把寄件者放到垃圾信區去了。<br><br>看來MDAEMON愈來愈總明了,它想儘各種辦法把這些發垃圾信的人阻擋在外,可是也苦了我們這些網管,不知道什麼時候他會阻檔掉正常信件,不過這幾天來,我只看到一封類似正常信被阻檔,其餘的因為早就被列入了白名單,大都可正常收信。<br> 你有開 DNS-BL?我們是不敢打開,如你第二個 log,國內某些 ISP 經常名列其中,這樣一來會有不少正常信件收不到。 正常來往的信件,都已經加入信任主機以及白名單中,只要USER告訴我收不到信,我就會再加入,不然的話垃圾信收不完!<br><br>第二個LOG中,連線IP絕對是有問題的,其實只要把一些國內正常發信者的主機及IP加入到信任主機中就沒問題了!<br><br>其它的就等USER反應了!
頁:
[1]