CC_SMTP_AUTH question not in documentation

Post Reply
wm0000
Junior Member
Posts: 7
Joined: 02 May 2012, 19:05

CC_SMTP_AUTH question not in documentation

Post by wm0000 »

I know that blocking countries in iptables is bad news - particularly if they run into 1,000 and more.

What is not clear to me is the consequence of having an absolutely huge /etc/exim.smtpauth file based on the new feature you recently provided.

For Example allowing all countries except for a few dozen would be pretty much most of the IP range. Would this kill EXIM?

The CPAN Net::CIDR package can help with this by concatenating very long lists and joining them where possible. For example, the USA shows 45,581 CIDR's. After running it through Net:CIDR it comes down to 15,340

The question still remains; what is the best guestimate on how many CIDR's would be "safe" to put into /etc/exim.smtpauth before things start slowing down?
wm0000
Junior Member
Posts: 7
Joined: 02 May 2012, 19:05

Re: CC_SMTP_AUTH question not in documentation

Post by wm0000 »

Jonathan, please give this some thought! There are several things "on the table" here :)
Post Reply