1. 2009
    Feb
    10

    Greylisting really works

    There are a lot of programs and protocols out there devoted to stopping, or at least reducing, the flow of spam email around the internet. But one of the most effective is also one of the simplest: greylisting.

    In order to understand greylisting, you first need to know that a typical email message on its way through the internet travels through four computers (“nodes”):

    1. The origin client (often a personal computer running a MUA - mail user agent - like Thunderbird, Outlook, Evolution, etc.)
    2. The relaying server (this server would be named in the configuration of Thunderbird, Outlook, Evolution, etc. as the SMTP server)
    3. The destination server (for mail sent to user@example.com, this is the email server for example.com)
    4. The receiving client (often another personal computer running another MUA)

    Greylisting is actually a simple process: the first time node 2 tries to send the email to node 3, node 3 responds with an SMTP 450 error code, which basically means “try again later”. And a standards-compliant mail server will indeed try again later. But a spammer’s server usually won’t. Spammers typically operate their own mail servers which are specially designed to send out as many emails as …