Hi Michael,
> > OK that is fine but a large majority of spam is sent from
> > dynamic IP addresses which are NOT open relays but just used
> > to spew out millions of emails to the rest of us poor suckers.
>
> So we have tons of people out there who have their windows machines wide
> open and are getting infected by worms, maybe we should just completely
shut
> those people off the net?
Hell if they are that poor an admin to be infected by worms that usually
exploit OLD vunerabilities then HELL YES they deserve to be ignored on the
Internet!
Try having your mailserver bombarded by thousands of machines around the
world from such poor people as you describe and you won't have any sympathy
for them.
I routinely firewall consistent spammers so they cannot even get through to
my mailserver. I only block port 25 though so it is only email I ignore
from them. This is perfectly legitimate defence against mail "attacks" in
my books.
> > Not only does being on the dynamic IP address make it hard to
> > track down who is responsible but also makes it hard to block
> > effectively.
> >
>
> My ISP has names associated with all the IP addresses, those names are in
> return my customer ID. So far my IP has changed only when I moved,
otherwise
> it remained the same and even if I would move and get a new IP according
to
> my DNS Rcord by my ISP you could identify me (and anybody else on the
> network).
So your ISP changes the reverse DNS of your IP address every time you shift
to a new IP address?
> > Add to that the people on dynamic addresses who THINK they
> > know how to set up mailservers but don't have a clue about
> > proper configuration and security. This makes open relays
> > and adds even more problems.
>
> I think most people who know this don't even set them up on purpose. If
you
> install certain Windows development packages you get IIS, and with IIS you
> get a mailserver and that thing was (in the past) by default open.
And the rest of us should suffer because of this? I think not!
> > The fact is, if you are running a mailserver then you should
> > be doing it from a static IP address which makes you easily
> > identified if there is a problem so you can either fix it or
> > we can ignore your server if you wont.
> >
>
> You could do the same thing: Email comes in on a dynamic address, see if
it
> is an open relay. Even easier: Only do it if you get a certain amount of
> addresses it is delivering to or x amount of connections in y period of
> time.
But it is NOT JUST OPEN RELAYS that spew out this garbage! You seem
obsessed that the only place spam comes from is open relays! A lot of spam
comes from machines that are dynamically assigned addresses that are NOT
open relays.
You cannot block them cause they shift around. If they are on static IP
addresses they are easy to firewall and/or code reject rules in your
mailserver to ignore that particular problem IP address.
> In both cases you have the same effect without closing the door on
> everybody.
Nope, not the same thing.
> > So use your ISP's mail relay. That is what they are for!
>
> Which (ironically enough) doesn't allow me to relay with my OWN domain
name.
> I can only relay with my ISP's domain name which sort of makes that thing
> useless to me.
OK that's bugger then. So look for:
1) A web hosting company who can host your domain and email on a static IP
address for you!
2) Find a few friends and share a co-location box?
> > It is normally the home users that get steamed up about not
> > allowing dynamic IP addresses to send email because their
> > occaisonal email gets rejected.
>
> I just find it very irritating that I am accused of having an open relay
> when I don't. And those "blanket approach" to spam fighting doesn't seem
to
> work, looking at my mailbox every day.
Again with the open relay obsessiveness! You are not being accused of being
an open relay. You are being accused of running a mailserver on a
"residential" class IP address.
They are not the same thing my friend.
Regards,
+-----------------------------+---------------------------------+
| Peter Kiem .^. | E-Mail : <[EMAIL PROTECTED]> |
| Zordah IT /V\ | Mobile : +61 0414 724 766 |
| IT Consultancy & /( )\ | WWW : www.zordah.net |
| Internet Hosting ^^-^^ | ICQ : "Zordah" 866661 |
+-----------------------------+---------------------------------+
My current spamtrap address is [EMAIL PROTECTED]
--
redhat-list mailing list
unsubscribe mailto:[EMAIL PROTECTED]
https://www.redhat.com/mailman/listinfo/redhat-list
