On Sun, Mar 02, 2003 at 01:46:47PM +0100, Emile van Bergen wrote: > > I use a program that does that to complement qmail's standard measures, >... > The attached perl script is intended to be used in a .qmail delivery >... > #!/usr/bin/perl -w > # > # RCVCHK (C) 2002 Emile van Bergen. Redistribution of this file is permitted > # under the conditions detailed in the GNU General Public License (GPL). > # > # This script is intended for use in .qmail files. It scans a message's > # Received: headers for IP addresses and checks each IP address that is not in > # an explicit permitted prefix list, against a configurable number of realtime > # DNS blacklists. The headers are scanned using 822field from djb's mess822 > # package; the DNS lookups are done using dnstxt from djbdns. >...
I agree with your idea here, but aren't the Received: headers mostly forged? I was recently "attacked" because some spammer used my domain name as the return address for his spam and i got 10's of thousands of bounced messages! Brought down my MTA! In case anybody on this list hasn't already been convinced that spam costs real money, wait until your domain name is forged. Maybe i missed it, but i didn't see code for checking the truth of the Received: IPs? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
