Op Tue, 19 Sep 2017 09:35:04 +0200 schreef Peter N. M. Hansteen
<[email protected]>:
On 09/19/17 09:10, rosjat wrote:
I like to get some opinions on where to use the spamd daemon. Is it
better to do the heavy stuff on the firewall or let it all pass to the
mailsystem and do the filtering there?
OpenBSD's spamd is not in any way a 'heavy' service.
Indeed. On my site, with 12k messages tarpitted last week, spamd (with
-v) took about the same cpu time as ntpd. Spamlogd even less. Together
about 7.5M resident memory.
It's entirely
possible to run it on the actual mail server, but I tend to recommend
stopping unwanted traffic early and set up on the directly
internet-facing host (aka the firewall).
Note that the spamd(8) manual page assumes it's the same machine, so using
different machines is a less trivial pf.conf setup. IIRC it requires
route-to in stead of divert-to for your whitelist(s), or a divert-to with
a relayd/nc relay.
--
Gemaakt met Opera's e-mailprogramma: http://www.opera.com/mail/
