Spammers need to clean their address lists once in a while, lest they end up with a very low proportion of valid addresses, right?
Question: Is there any knowledge as to how spammers deal with different kinds of failure? Does it matter if I reject the RCPT command or the MAIL command, or even drop the connection right away (e.g. if the remote host is found in SBL)? Does it matter if the remote host is a zombie or owned (not pwn3d) by the spammer? Most spammers don't treat temporary failures specially, so you might suspect that they wouldn't care much about exactly what went wrong -- just whether their message was accepted or not. Nevertheless, I currently do all rejection before DATA at RCPT, none upon connection, HELO or MAIL. At least it's the only way not to hinder the food for the spamtraps (except having all spamtraps in a separate domain with a separate MX). What do you say? -- Magnus Holmgren
signature.asc
Description: OpenPGP digital signature
