On Mar 11, 2007, at 2:08 PM, John Levine wrote:
I have some fairly heavily forged domains, and on a bad day I see
upwards of 300,000 connections from bounces, "validation", and the
like attacking the little BSD box under my desk where the MTA is.
Gee, thanks a lot.
Verification has nothing to do with bounces and mail bombs. You may
get some traffic from verification but you would need to separate
that out from the rest which is unrelated before you have a
meaningful statistic.
I have, it's meaningful. Verizon is the worst offender, but at least
they put their attack hosts in a separate easy to block IP range.
Amazing, as I run mail for lots of domains, and replying to sender
verification is almost a nonexistent load compared to the mail bombs
and bounces etc.
Show me your numbers.
What planet have you been on? A few years back spam return
addresses
were typically complete fakes in nonexistent domains. Now they're
picked out of the same victim lists as the targets.
They have been doing that for ages. I run a hosting service and have
had that problem way before sender verification became in vogue.
Definitely different planets. Bye.
When you come back to earth, let us know :-)
R's,
John
PS:
YOU are responsible for the mail sent with your domain on it.
Oh, OK. So when someone sends out mail with your forged return
address saying "buy this worthless stock, then get your kiddy porn
here", you will report directly to jail without complaining, right?
I phrased it wrong. You are not responsible for the content, but you
are responsible for the mail domain and that includes verifying that
mail is validly from your domain you are responsible for. email is a
cooperative service where all people promise to expend resources to
make it work, and to follow the RFCs. If you block valid
verification, you are abrogating your responsibility to the rest of
the net to cooperate in the exchange of email and you are breaking
the RFCs. (valid verification includes checking that the sender can
accept a proper DSN back, which is required of the sender to do).
Chad
---
Chad Leigh -- Shire.Net LLC
Your Web App and Email hosting provider
chad at shire.net
_______________________________________________
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
