GRYNX

22nd 2006f November, 2006

Greylist – freeware Grey list for Exchange v1.2

by @ 4:04. Filed under
GreylistThis is an old version – click here for latest version

Introduction

Since I have had a lot of problems with false positives with the black lists that I’m using on my Exchange 2003 server I started looking into another way of filtering spam.
The obvious choice of additional protection fell on grey listing ( you can read more about what it is here ).
The problem with this is that there doesn’t seem to be any free products out there for Exchange and as I don’t want to set up a Linux box ( yet another box in the rack ) I decided to write one myself.

Usually i receive 3500-4000 spam attempts per day so that means that 70 mails a day are slipping trough. These 70 get matched to a blacklist that is not that aggressive and the result of this is that my spam level has gone down to almost 0% while I haven’t had a single false positive yet.

Latest version: v1.2.4

About the program. It consists of two parts.

Requirements:

Features:
Greylist

Greylist admin


New in version v1.2.4:
Greylist

Greylist admin

This is an old version – click here for latest version

Install package Greylist_v1.2.4.zip
Documentation Readme.doc
Source Greylist Greylist_source_VS.NET.v1.2.4.zip.htm

Previous versions:
Greylist v1.1
Greylist v1.0

 

For support, feature requests and general chit-chat check out the Greylist forum
For comments like ‘Hey – great app!’ use the form at the end of the page.


What does it cost?
Nada. Nothing. It’s for free!
See it as a contribution to a better world :) A free contribution! I’ve released this under a Creative Commonce license, which comes down to that you can use it and redistribute it as long as you refer to me and this site while using any part of my program. The full license is available in the readme file.


Click to register
But – please consider this especially if your a corporate user –
Register it! It will cost you 50 euro (about 65 USD) and will support the continued development.
The registration license will be mailed to you as soon as I’ve registered the payment.
And if your boss wants an invoice – no problem! I’ll mail that to you upon request.

The program is distributed ‘as-is’ and I don’t intend to provide any support for it.
But feel free to send me any suggestions to improvements or your own modifications.

Cheers,
Chris

33 Responses to “Greylist – freeware Grey list for Exchange v1.2”

  1. Michael Hensley Says:

    It works great on my Exchange 2003 front-end server. Thanks!

    I tried to join the forum (username: mhensley) but haven’t received the registration email yet. Do I just need to be more patient?

    Thanks for a great product! I’ll be submitting a PO request at my office next week.

  2. Rob Says:

    Trying for the first time on Exchange 2003 server; I will leave more info after further testing. Thank you.

  3. Chris J. Says:

    Michael: I moved the websites a couple of days ago and forgot to change some settings. That was the reason why you couldn’t register – but now you can.

  4. John Says:

    Hi. Thanks for a very nice utility and an excellent tool in the battle against today’s oppressive spam regime. Early indications are that it is working very well in my home setup. Installation was simple and setup straightforward (although successfully setting it up for SQL logging, rather than Access MDBs, is still eluding me somewhat).

  5. Alexander Kobbevik Says:

    Hi,

    Is it possible to create a setting to only save parts of the IP.
    i.e. 123.123.*.* so that big SMTP services like hotmail and gmail gets through faster? They send from random/different servers even when resending after an error liks greylisting uses. I know they use different ip’s because I seen logs of another greylisting service for RaidenMailD.

    Thanks.
    Alex

  6. Chris J. Says:

    Alexander: I know it’s not crystal clear on how to do this in Greylist, but it is described in the readme.doc
    You can enter partials in the whitelist source ip, in you case you can type 123.123. and everything that begins with 123.123. will be let through.
    Then again – I wouldn’t do this as it opens up for spammers to come from those ranges. Your greylist will learn soon enough where your mail is coming from and then the delay will disappear.

    Cheers,
    Chris

  7. Kelly Sutherland Says:

    Hey – nice little program. A feature I would love to see (and I would suggest adding) is the ability to disable the IP address portion of the triplet check. Greylisting works really well without the IP portion of the triplet check, and this means that important messages from large ISP’s, hotmail etc aren’t delayed for days… as they are often send from multiple addresses in mail server farms! thanks.

  8. Kelly Sutherland Says:

    Sorry – I didn’t realise the option is on the CFG file. I’ve changed UseSourceIP to FALSE, so I’ll se how that goes.

  9. Chris J. Says:

    Kelly: Even better then that! You can control it in the Greylist Admin program. Look at the picture in the beginning of this article and you’ll see that it’s the first check box.

    Cheers,
    Chris

  10. Ralf Says:

    Hey,

    thank you for your nice Tool.
    We have a special configuration here. Out Exchange is not getting eMails direct via MX in DNS. A Tool installed on our Exchange is checking POP3 Boxes and delivers the eMails via SMTP to the Exchange. Do you see any possibility to use your Greylisting-Tool?
    Thanks
    Ralf

  11. Chris J. Says:

    Ralf: Unfortunatley not. If the Exchange server itself is not recieving SMTP emails then the Greylist is useless. It only works when Exchange is handeling the SMTP traffic directly according to the MX records.

    Cheers,
    Chris

  12. Ryan O'Dwyer Says:

    Is it possible to use MSDE2000? I’ve set this up with the following connection string: PROVIDER=SQLOLEDB;DATA SOURCE=(local)\GREYLIST;Initial Catalog=GreylistData;User ID=sa;Password=****** I’m using a named instance for Greylist.

    Is this correct? I have created a table in the MSDE database called GreylistData, i’ve also run an iisreset, and i’m getting all the emails passed straight through to exchange, the database test said it was successful too. :(

  13. Chris J. Says:

    Ryan: I’ve moved your question to the forum -> here.

  14. jaller Says:

    now @inexa.cn can not send mail to @perstorp.com
    because your software.pls help me!!

  15. Anonymous Says:

    Will this work for exchange 5.5?

  16. jaller Says:

    no,Exchange 2000

  17. Mike Says:

    Hi, like the tool and saves me lot of e-mail, BUT,
    I have reports of MISSING mail which are never delivered!
    It’s seems only to happen to mails with to: and cc: field used.
    I have isue’s of a cc: not receiving it mail the to: arrived fine.
    But today i had it the other way arround.

    The log file says 200 but the mail never arrives at our mail server?

    Any sugesstions?

    Mike

  18. Chris J. Says:

    Mike: I’ve replied to your question in the forum -> here.

  19. Bharat Suneja Says:

    Hi Chris,

    Thanks a lot for a great utility you’re providing to the Exchange community!

    How can we make this work for Exchange Server 2007 which has its own transport stack (does not use IIS SMTPsvc)?

    Thanks!
    Bharat Suneja
    http://www.exchangepedia.com/blog

  20. Daniele Says:

    The software is fantastic but how can i recover an email that was been blocked but it comes from a trusted user?
    write me soon as possible
    thank you a lot

  21. Chris J. Says:

    Bharat Suneja: Oooooh! That’s one for a rainy day. So far I haven’t even installed a trial for E2k7, but I’ll look into it.

  22. Chris J. Says:

    Daniele: There’s a simple answer to that – You don’t.
    The reason for this is that when you block an email then you don’t receive it and if you don’t receive it then you can’t recover it.
    If the senders mailserver works properly (which could safely presumed) then it will retry to send the email and if for whatever reason it can’t deliver it then it will send a NDR report to the original sender.

    Cheers,
    Chris

  23. Daniele Says:

    It will be better if i can have the option to insert in my whiteList the address of my contact every mail that i send.
    The system may be intelligent in this way. what do you think?

  24. Chris J. Says:

    Daniele: I agree that this is an interesting option and it’s already on my to-do list for any future versions.
    You can see the future features -> here

  25. weed Says:

    Works really GREAT – receiving about 3000 messages/days less than without it. Combines perfekt with GFI MailEssentials. And I agree to your Whishlist 😉

  26. Damjan Says:

    Hello
    Is it possible to use MySql server for database?

  27. Chris J. Says:

    Damjan: No, not at this point and probably not in the future. The reason for this is that almost all organizations that run Exchange also already have MsSQL. And if you don’t have it then you can download SQL server express from MS for free to run on your Exchange box.
    There’s just not any benefit of using MySQL at this point.

    Cheers,
    Chris

  28. Allen Says:

    Hi Chris,
    I was just wondering if anyone has seen this behavior before.
    We are testing on 3 mailboxes and have a couple of odd things happen.

    The first is that sometimes a message will get greylisted but still get delivered, when this happens the message is totally blank with only a recipient address in the to field, no subject or body.
    Each time the senders server retries sending the message during the quarantine period the same blank message is delivered. When the quarantine period expires the full message is delivered as well as all subsequent messages. The only thing in common I can see is that the message is in HTML format.
    Any Ideas?

    The second is a bit more straight forward
    We seem to receive the same message several times a day, It is a HTML message with 2 or 3 valid recipients of our company in the to field and a couple more in the cc field.
    My address is not in any of the visible fields so I assume it is in a bcc field. The issue is I receive this message and it is never greylisted, it’s like someone found a hole in the way the greylist works.

    Do you know if there is another message format exchange will accept mail from other then SMTP that may bypass the event sink filters?

    Thanks again
    Allen

  29. Christian Says:

    hi,

    first of all i wanted to say that you’ve done great work. there’s only one thing which i’m missing and which hasn’t brought to you yet (maybe).

    it would be great to have a chance (without recompiling the dlls) to change the default-message when rejecting emails to give a personal website or contact-information in case of anyone does not understand why his mail was rejected.

    thanks.

    greets,
    chris

  30. Chris J. Says:

    Allen: Support questions go in the forum and your answer is –> here.

  31. dan g. Says:

    Anyone know if this will run on a Win2k/Exch2k active/passive cluster?

  32. Marc Says:

    I can’t seem to install .Net 2.0 on my exchange server.
    Is it possible to manage the config from another computer and just copy the files over?
    Is it just the management program that needs .Net 2.0? or the .DLL?
    Thanks

  33. Chris J. Says:

    Hi Marc: Both the .dll and Greylist admin depends on .Net 2.0.
    If you can’t get it installed then you won’t be able to run it.

    Cheers,
    Chris

Leave a Reply

You must be logged in to post a comment.

Host your project

Write for Grynx:

Do you have what it takes? If you're the right person then email us.

Archives:

Support Grynx:

Help us continue our work with a donation

Website promotion SEO Managed Advertising

5 Most popular articles:

Google

Categories:

Do it yourself - DIY
Our projects collection

19 queries. 0.219 seconds

Home