Okay, sorry for no blog yesterday, but I spent most of yesterday and today trying to figure out why my server was so slow.
Turns out that my email server currently has 155,000 messages in the queue that are no good and timing out over the next few days. The kicker is that every time the mail server (qmail it’s the best) tries to clean up the queues it makes the server store up IO blocks because it takes so much hard disk activity to look through 155,000 messages.
So every minute or two my server takes a 10 second break. I’m not happy.
I’ve changed some setting and added a few more RBL lists to my server settings, but it got me thinking that there should be a few more RBLs out there. A really good anti-virus or worm RLB would be great. Something that will put an IP address in for 24 to 48 hours every time an email message with a virus goes through the mail servers. I saw one out there, but it didn’t look like it was very well supported.
Then I got to thinking about an anti-hacker RBL. Any time you can detect a port scan or something of the like from an IP address it could end up in a specific RBL.
Now here’s the next idea for all this. I want a firewall that will use an RBL to block IP addresses from accessing anything inside my network. If you are on the anti-spam, anti-virus or hacker RBL lists it would simply block all traffic to and from my network. That would be nice …