Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with HTTPS or Subversion.

Download ZIP
Make Postfix reject mails sent from domains with suspicious registrations
branch: master
Failed to load latest commit information.
bin Always inspect whois
.rvmrc Initial commit
Gemfile Query dodgy registrars' whois servers directly, dropping dependency o…
Gemfile.lock Query dodgy registrars' whois servers directly, dropping dependency o…
README.md

README.md

Postfix Policy Daemon using whois data

This simple postfix policy daemon rejects emails sent from domains registered without publicly-accessible contact information, since those domains are often owned by spammers. Some mail server administrators might consider this too draconian for their tastes.

The policy daemon also rejects mail from domains which are pending expiry, or are in their initial grace period after new registration ("ADDPERIOD"): sophisticated spam outfits frequently register fresh domains and provision servers which send mail that passes all reasonable header checks

Rejecting mail during the sending domain's ADDPERIOD gives time for others to report abuse to the hosting provider, and allows spamcop and other blocklist maintainers a chance to add that domain.

Current status: testing privately in a moderately large production environment


Steve Purcell's blog // @sanityinc on Twitter

Something went wrong with that request. Please try again.