Don't mind me, I just like the words pass and block to describe access control lists better than white and black lists. Not only is it more accurate, it doesn't have potentially negative connotations.
Anyway, back to the pass lists. I've just started to use dnswl.org to prevent false positive classification of email as spam and its working out really well. I'm using their rsync service to download the lists, then I actually split them up into lists that have single ip addresses and ip address cidr blocks. I do this because I'm under the impression that constant database hashes (cdb) lookups are faster and less resource intensive than cidr scans, but I could be wrong.
But so far, none of this really relates to Chimailmadmin, so let's talk about that instead, shall we? I've followed suit with the pass lists and I'm quite pleased with the results. I'm still doing things somewhat manually right now - I export the chimailmadmin list to the browser, I copy and paste it to the postfix directory, then I postmap it. I plan to use lua to script - automate the process once I've got it all figured out.
I'm not sure if I'll need to split up the lists into sender, client, and recipient. I'm leaning towards doing so, at least to be on the safe side. While I absolutely want to avoid flagging any good email as spam, I also want to avoid scanning messages with spamassassin if at all possible. That's one of the reasons why I like waitlisting (greylisting) so much - and with pass lists, its even better as you don't have to wait for good mail. Yay!
The instructions at dnswl.org are good, but I'll write up some myself one of these days. Speaking of which I've got to setup a wiki for Chimailmadmin....
