The HELO or EHLO commands are supposed to be used to identify the name of the mail server making the connection, but is essentially meaningless these days and is just a vestige of a time long forgotten when everyone played nice and gave valid information. Think of it as the SMTP equivilent of an appendix :)
The envelope sender is provied in the MAIL FROM: exchange that happens after the HELO/EHLO exchange. Indeed, _both_ are usually forged by spammers....
I, and many other (increasingly many other) mailadmins refuse on invalid HELO/EHLO credentials. Many can not afford to, many see this as a main weapon against non-ham.
My main tools are SA-Exim 4.20/3.0 and Postfix 2.0.12. My policy remains the same with both.
Best,
Tony
-- Tony Earnshaw
Humor him, and he'll go away again
http://j-walk.com/blog/docs/conference.htm http://www.billy.demon.nl Mail: [EMAIL PROTECTED]
------------------------------------------------------- This SF.Net email is sponsored by: INetU Attention Web Developers & Consultants: Become An INetU Hosting Partner. Refer Dedicated Servers. We Manage Them. You Get 10% Monthly Commission! INetU Dedicated Managed Hosting http://www.inetu.net/partner/index.php _______________________________________________ Spamassassin-talk mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/spamassassin-talk
