Results 1 to 3 of 3

Thread: Alert for Blocked mails

  1. #1
    Join Date
    Jul 2022

    Alert for Blocked mails

    Need a kind of alerting/reporting in case that mails are dropped.
    Would like to set up an alerting for the following recipient on a mca server in case that mails are blocked based on the whitelist configuration:
    Can someone help me with this.

    Note: Using Postfix


  2. #2
    Join Date
    Mar 2010

    Re: Alert for Blocked mails

    Email delivery isn't guaranteed, ever. If you need guaranteed delivery, use a different delivery method, like MQ-series. There are F/LOSS implementations - like Rabbit MQ. I don't know any other protocol that is guaranteed. I suppose the closest would be running rsync multiple times and seeing that the 2nd attempt worked without any errors?

    You could create a log watching script for the mail.log that looks for refused connections or bounced emails, but that won't help when people block at the firewall and simply drop all packets from the source. That's what I do for some source IPs. This eats up the spammer's CPU time and ports. They have to wait for the TCP packet timeout to know it didn't arrive. Most probably have altered the timeout from the default (30-90sec) to something like 5 seconds, so they can get onto spamming more systems.

    Lots of email servers implement a greylist. This rejects the first attempt automatically. Real email servers will wait 15-240 minutes and attempt delivery again. In the old days (when we used overnight modem connections for email), delivery would be attempted for 4 days before returning a failed delivery message. There is a greylist postfix addon, if you'd like to know more.

    I've been running email servers since the mid-1990s. Over all that time, things have drastically changed, mainly to deal with spammers and non-standard MTA programs. Having some of that history can aid in understanding why things are the way they are today and certain methods used to combat spam which can break other non-standard expectations. For example, there isn't any validation of the "FROM" field. It can be anything. It is a courtesy to have the FROM be correct, but it isn't in any standard. Lots of people think the FROM needs to have a real domain. That isn't in the standard. Some even try to validate that the FROM is a valid email address - hah.

  3. #3
    Join Date
    May 2010

    Re: Alert for Blocked mails

    Same post is on
    I have replied there. Just something I Googled

Tags for this Thread


Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts