Matt Sergeant wrote:
I don't think we should care so much about the RFCs. If there are bits in connection notes that might help determining if this is spam (or some other thing we're trying to detect) before STARTTLS we need to allow qpsmtpd to keep that information.
I'm talking about keeping the *connection* notes, but not the *transaction* notes (which is what my one-line change would do).
On a more pragmatic note: do we have any evidence whatsoever that spammers are using TLS at all? This may be a completely theoretical exercise, since AFAIK, all standard MTA's will switch to TLS as soon as the received the EHLO prompt, in which case there is no transaction information at all (that is if they are configured to use TLS at all).
John
