Sahil Tandon a écrit :
> On Sun, 13 Sep 2009, mouss wrote:
>
>>> What I mean by this is, if a malicious attacker send an email from
>>> dam...@hotmail.com is there anyway to check that the email came from
>>> hotmail.com via a DNS lookup?
>> the simplest thing you can do is something like this:
>>
On Sun, 13 Sep 2009, James Hankins wrote:
> If you could please point me to blacklists that are using Sender
> Verification as qualification for being on it, I'd be interested in
> seeing this.
[snip off-topic noise]
See: http://www.backscatterer.org/?target=sendercallouts. Please take
all fo
If you could please point me to blacklists that are using Sender
Verification as qualification for being on it, I'd be interested in
seeing this. This feature has been around for some 10 years as a
means for helping to thwart spam. It would seem to me this is a win
for the spammers if the
On Sun, 13 Sep 2009, Noel Jones wrote:
> On 9/13/2009 7:14 PM, Sahil Tandon wrote:
> >On Sun, 13 Sep 2009, Noel Jones wrote:
> >
> >>On 9/13/2009 10:45 AM, Sahil Tandon wrote:
> >>>On Sun, 13 Sep 2009, mouss wrote:
>
> smtpd_sender_restrictions =
> ...
> check_client_access ha
On 9/13/2009 7:14 PM, Sahil Tandon wrote:
On Sun, 13 Sep 2009, Noel Jones wrote:
On 9/13/2009 10:45 AM, Sahil Tandon wrote:
On Sun, 13 Sep 2009, mouss wrote:
smtpd_sender_restrictions =
...
check_client_access hash:/etc/postfix/forged_sender_wl
check_sender_access has
On Sun, 13 Sep 2009, Noel Jones wrote:
> On 9/13/2009 10:45 AM, Sahil Tandon wrote:
> >On Sun, 13 Sep 2009, mouss wrote:
> >>
> >>smtpd_sender_restrictions =
> >>...
> >>check_client_access hash:/etc/postfix/forged_sender_wl
> >>check_sender_access hash:/etc/postfix/forged_sender_bl
>
On 9/13/2009 10:45 AM, Sahil Tandon wrote:
On Sun, 13 Sep 2009, mouss wrote:
What I mean by this is, if a malicious attacker send an email from
dam...@hotmail.com is there anyway to check that the email came from
hotmail.com via a DNS lookup?
the simplest thing you can do is something like th
On Sun, 13 Sep 2009, mouss wrote:
> > What I mean by this is, if a malicious attacker send an email from
> > dam...@hotmail.com is there anyway to check that the email came from
> > hotmail.com via a DNS lookup?
>
> the simplest thing you can do is something like this:
>
> smtpd_sender_restricti
Damian Myerscough a écrit :
> Hello all,
>
> I thought there was a way in Postfix to perform DNS lookups on the
> senders domain.
>
> For example, if I send a forged mail from my machine to say my gmail
> address then
> if I look at the full headers I can see the actual IP address it was
> sent f
Damian Myerscough:
> Hello all,
>
> I thought there was a way in Postfix to perform DNS lookups on the
> senders domain.
Perhaps you meant: http://www.google.com/search?q=postfix+spf
This creates problems when mail is forwarded so that it
comes from a different IP address.
Wietse
Hello all,
I thought there was a way in Postfix to perform DNS lookups on the
senders domain.
For example, if I send a forged mail from my machine to say my gmail
address then
if I look at the full headers I can see the actual IP address it was
sent from and it does
not resolve the the forged add
James Hankins a écrit :
> One way, albiet expensive on CPU util is reject_unverified_sender.
What are the chances that dam...@largedomain does not exist?
and what if this is used as a "spam trap" by hotmail?
> [snip]
>
Damian Myerscough a écrit :
> Hello,
>
> I had a question regarding forged mail. I wanted to know if it was
> possible for Postfix for
> postfix to check the integrity of incoming emails?
>
> What I mean by this is, if a malicious attacker send an email from
> dam...@hotmail.com is
> there anyway
On 9/12/2009 1:00 PM, James Hankins wrote:
> One way, albiet expensive on CPU util is reject_unverified_sender.
> Sends probes to determine if address is valid before accepting
> delivery.
Careful... applying Sender Verification to all inbound mail is a form of
abuse and will eventually get you on
One way, albiet expensive on CPU util is reject_unverified_sender.
Sends probes to determine if address is valid before accepting
delivery. Very effective but if a very busy system you will want to
limit it's use. Also exceptions will need to be made for noreply type
senders, otherwise man
15 matches
Mail list logo
