----- Original Message -----
From: "R. Scott Perry" <[EMAIL PROTECTED]>
> Not only do you need your own nameservers, but you also need your upstream
> to delegate authority for the reverse DNS entries to you. So any open
> relays or open proxies will not have forged reverse DNS. Then, there are
> the potential legal consequences of a spammer using a reverse DNS entry
> like "mail.paypal.com" -- they could very likely get sued for trademark
> infringement, false advertising, etc. And a spammer with the ability to
> change their own reverse DNS entries would be much easier to track down
> than a typical spammer.
Yep, all of this it true, however, as a spammer I would only use the PTR for
that single spam run and then change it. Spammers abuse trademarked names
in their HELO and MAILFROM addresses, why would you think they would be
opposed to using them in RDNS, if they have the ability to? Again, my only
point was that it is not a good idea to share your whitelists on a public
forum, not the how-to's of spamming.
> So it definitely is possible, but unlikely. I'm sure that if a spammer
> *does* change their reverse DNS entry to something that may commonly be
> whitelisted, it would be detected quite quickly ("Gee, why did this spam
> get through -- ah, it was whitelisted, I wonder why? -- oh, the reverse
DNS
> entry is mail.paypal.com").
Still does not make it wise to share whitelists on a public forum. However,
if you are promoting a whitelist exchange on this list, so be it; however,
it's not a practice I plan to participate in.
Bill
---
[This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)]
---
This E-mail came from the Declude.JunkMail mailing list. To
unsubscribe, just send an E-mail to [EMAIL PROTECTED], and
type "unsubscribe Declude.JunkMail". The archives can be found
at http://www.mail-archive.com.
