Email Greylisting Tester
Test if a mail server implements greylisting by performing multiple connection attempts and analyzing rejection patterns
Test Mail Server Greylisting
 Quick Examples
 Understanding Greylisting
 What is Greylisting?
 Greylisting is an anti-spam technique where a mail server temporarily rejects emails from unknown senders. The sending server is expected to retry delivery after a delay (typically 1-15 minutes). Legitimate mail servers will retry, while many spam sources will not, effectively reducing spam without blocking legitimate mail.
 How Greylisting Works
 - Initial Connection: First email delivery attempt from unknown sender (triplet: sender IP, sender address, recipient address)
- Temporary Rejection: Server responds with 4xx temporary error code (usually 450 or 451) asking sender to try again later
- Retry Period: Legitimate mail servers wait a specified period (usually 1-15 minutes) before retrying
- Acceptance: After retry delay, server accepts the email and adds triplet to whitelist for future deliveries
 SMTP Response Codes
 220
 Service Ready 
Server is ready to accept mail - no greylisting active
421
 Service Not Available 
Server is temporarily unavailable - may indicate greylisting
450
 Mailbox Unavailable 
Temporary failure - common greylisting response code
451
 Local Error 
Temporary error processing request - another greylisting indicator
 Confidence Levels
 - High: Explicit greylisting keywords in response + subsequent acceptance after delay
- Medium: Temporary rejection codes (450/451) + subsequent acceptance
- Low: Inconsistent behavior or unclear rejection pattern
- None: No greylisting detected - consistent acceptance or rejection
 Benefits of Greylisting
 - Spam Reduction: Blocks 50-90% of spam without false positives, as most spam sources do not retry
- Resource Efficient: Minimal server resources required compared to content filtering
- No False Positives: Legitimate mail is always delivered, just with a slight delay
- Compliant: Works within SMTP RFC standards - temporary rejection is expected behavior
 Drawbacks of Greylisting
 - Delivery Delay: Initial emails from new senders are delayed by 1-15 minutes
- Time-Sensitive Issues: Can cause problems with password resets, verification codes, and urgent communications
- Legitimate Failures: Some legitimate mail servers or services may not retry properly
- Resource Usage: Requires database to track triplets and manage whitelist
 Best Practices
 - Use shorter retry delays (1-5 minutes) to minimize user impact
- Implement automatic whitelisting of known good servers
- Provide bypass mechanisms for time-sensitive emails
- Combine with SPF, DKIM, and DMARC for better protection
- Monitor false positive rates and adjust policies accordingly
- Whitelist common email services (Gmail, Outlook, etc.) to reduce delays
 Quick Tips
 - Greylisting typically delays first-time emails by 1-15 minutes
- Look for SMTP codes 450 or 451 as indicators of greylisting
- Most greylisting implementations whitelist senders after successful retry
- Greylisting is most effective when combined with other anti-spam measures
- Some mail servers use adaptive greylisting that adjusts based on sender reputation