Login or Register to Ask a Question and Join Our Community


UNIX for Advanced & Expert Users

Sendmail Access DB Scalability

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Top Forums UNIX for Advanced & Expert Users Sendmail Access DB Scalability
# 1  
Old 02-06-2012
Sendmail Access DB Scalability
Hello,

So here's what I am trying to accomplish. We have a sendmail server and we are trying to stop backscattering. One idea that we came up with to prevent this is to utilize sendmail's access database.

Basically we'd have the first line bounce all mail coming in to our mail server to users in our domain. So for example if my domain is example.com:

example.com REJECT

After that, we'd have a list of users that we'll accept and relay through our servers, like so:

user1@example.com RELAY
user2@example.com RELAY
user3@example.com RELAY
user4@example.com RELAY
...

To get this list of users, we'd have a script that runs a query to our ldap server for a list of active users and dump all of those users into the access file.

My question is, how scalable is the access database file? Would this approach work if our domain contained nearly 50k users?

Thanks in advance,
Corey
# 2  
Old 02-06-2012
Alright, I'm going to bite, what is "backscattering"?
# 3  
Old 02-06-2012
What's been happening to us is :

The bad guys craft a spam message and spoofs the sender address to be let's say user1@foo.com and sends it to a completely made up and not real recipient not.a.real.user@example.com. My system accepts the mail then sends back a bounce message to user1@foo.com because the user does not exist. Because of the reputation of example.com, the message gets sent through and the victim, user1@foo.com, gets spam in their inbox.

The site wouldn't let me link to the wiki on it because I'm a new member here, but it exists.
# 4  
Old 02-07-2012
Corey would this help?
This is a webinar for database sharding?
# 5  
Old 02-17-2012
I'm not sure what you're talking about.
# 6  
Old 02-17-2012
How much users is now being dumped to file ?
What is the load of the machine during time with current number of users ?

What is the HW involved ?

Best way to find out performance is to test, of course.

Or post as much information as you can (including software and OS type and revision, available memory and cpu etc.)
# 7  
Old 02-17-2012
How much users is now being dumped to file ?

Right now there are no users in the file, it just relays from specific IP addresses and for users in our domain

What is the load of the machine during time with current number of users ?

~4.4 GB of RAM and < 5% cpu usage

What is the HW involved ?

Quadcore 64 bit Xeon CPUX3460 @ 2.80GHz

8GB RAM (roughly 3.5 GB free)

Sendmail Version 8.13.8

OS: Red Hat 4.1.2
Login or Register to Ask a Question

Previous Thread | Next Thread

4 More Discussions You Might Find Interesting

1. UNIX for Advanced & Expert Users

Unix high availability and scalability survey

we're in the process of reviewing of unix infrastructure main objective is to consolidate on the less versions possible key decision factors are scalability and high availability options given our multi-datacenter infrastructure, features like HP's continental cluster are top on our wish list... (9 Replies)
Discussion started by: iacopet
9 Replies

2. Linux

sendmail access file problem

I am trying to configure access file of sendmail to relay on certain domain. I noticed that it does not work if I put domain name but it works when I put the IP address of that domain. for example: zgoldz.com RELAY (does not work) RELAY (works fine) ... (1 Reply)
Discussion started by: jalmod
1 Replies

3. Email Antispam Techniques and Email Filtering

Sendmail Access DB TLD Blocking ....

Now this is a bit tricky, but works great if you can decide which Top Level Domains or TLDs you want to receive mail We are getting so much spam from countries we never receive useful mail, I've been experimenting with blocking entire TLDs using sendmail access_db as an antispam technique. ... (0 Replies)
Discussion started by: Neo
0 Replies

4. UNIX for Dummies Questions & Answers

access file for sendmail

Hi, I have created an access file using makemap and write in user email address that wish to be rejected by the mail server but it doesn't work. I still can receive the emails from the domains that are supposed to be REJECTED. Please help. Sendmail version 8.9.1 Solaris 2.6 TQ (3 Replies)
Discussion started by: liyas
3 Replies
Login or Register to Ask a Question