I use a similar approach and advertise a dummy sub-domain name in my smtp banner. Then using a custom rule I look for spammers to use that name in their message. A lot of the time I see it used in the From and To lines to make it look like it came from our customers. Is their anything wrong with doing this as far as RFC's go? It would look like this: 220 nospam.domain.com SMTP banner In my rule I check for nospam.domain.com in the headers. It does not appear in legitimate e-mail (yet).
I like the idea of using a multi-line banner but our SMTP server doesn't allow it to be changed.. Frederic Tarasevicius Internet Information Services, Inc. ----- Original Message ----- From: "Bob Apthorpe" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Wednesday, August 13, 2003 10:02 AM Subject: Re: [SAtalk] user_prefs configuration > On Wed, 13 Aug 2003 08:42:46 -0400 Larry Gilson <[EMAIL PROTECTED]> wrote: > > > >-----Original Message----- > > >From: Bob Apthorpe > > > > >smtpd_banner = $myhostname ESMTP $mail_name\n > > > By sending mail to this server, you agree to abide by the terms\n > > > and conditions set forth on http://www.example.com/aup/\n > > > Do not send unsolicited bulk mail to this server.\n > > > All transactions are logged and security incidents are reported.\n > > > Please use our mail system responsibly.\n > > > > Are you suggesting that a multiline banner actually helps prevent spam or > > that it is a good configuration for legal purposes? > > Most spamware doesn't expect a multiline banner and can't deliver to > mailservers that use them. Basically, this will stop RFC non-compliant > mailers in their tracks. The legal stuff is just for show but it's > helpful to unambiguously post your policy (authorized use only, you > consent to being monitored) if ever you need to sue someone. > > > ># ^^^^ four tabs > > > > Why the four tabs? > > Dunno. That's how the technique was described on SPAM-L or spamtools; I > can't remember which. > > > >and you'll kill off a surprising amount of spam. > > > > Agreed! Recipient maps help too if the box is just a relay with no user > > accounts. > > Yup; I'm still trying to sort out LDAP for my single-user domain[1] :) > > -- Bob > > [1] Yes, it's overkill but I pride myself on having a more solid, > scalable services at home than at we maintain at work. > > > ------------------------------------------------------- > This SF.Net email sponsored by: Free pre-built ASP.NET sites including > Data Reports, E-commerce, Portals, and Forums are available now. > Download today and enter to win an XBOX or Visual Studio .NET. > http://aspnet.click-url.com/go/psa00100003ave/direct;at.aspnet_072303_01/01 > _______________________________________________ > Spamassassin-talk mailing list > [EMAIL PROTECTED] > https://lists.sourceforge.net/lists/listinfo/spamassassin-talk ------------------------------------------------------- This SF.Net email sponsored by: Free pre-built ASP.NET sites including Data Reports, E-commerce, Portals, and Forums are available now. Download today and enter to win an XBOX or Visual Studio .NET. http://aspnet.click-url.com/go/psa00100003ave/direct;at.aspnet_072303_01/01 _______________________________________________ Spamassassin-talk mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/spamassassin-talk
