Re: [Sqlgrey-users] Excessive X-Greylist headers

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

Hi,

>>>> X-Greylist: whitelisted by SQLgrey-1.8.0
>>>
>>> Is this inbound, outbound, or relayed mail?
>>
>> This is from the headers on the destination system. It is received by
>> our mail relay, where the header is added, then sent to the
>> destination system where the user reads the mail.
>
> You shouldn't be relaying except from trusted systems,
> so your smtpd_relay_restrictions should include
> something like "permit_mynetworks", in addition
> to your check_policy_service that runs sqlgrey.
> Then relayed mail won't go through sqlgrey.
> (Use smtpd_recipient_restrictions on older
> versions of postfix.)

The check_policy_service is in smtpd_recipient_restrictions. Is that not 
correct?

The smtpd_relay_restrictions is as follows:

smtpd_relay_restrictions = permit_mynetworks, permit_sasl_authenticated, 
defer_unauth_destination

This is on postfix-2.10.

> Whitelisting via sqlgrey is the wong approach.

It looks like this was auto-whitelisted, because it has seen this 
IP/email combination previously, no?

> But it looks to me like you've got something
> else wrong since I wouldn't think, without
> having really investigated, that any piece of
> mail should go through sqlgrey more than once.
> So you should only get one header no matter what.

Yes, I agree. It would be great to figure out how to configure it so 
trusted networks weren't greylisted.

Sure appreciate any ideas you might have.
Thanks,
Alex