Terry Soucy wrote:
In the testing we have done here, less than 1% of connections to our low
priority MX actually cycled around to one of the higher priority MX
systems to deliver the message. I'm still not sure if this is a growing
pattern yet, but it could be a sign of spambots catching on. Whether or
not they hit a *randon* MX record is kind of difficult to determin. As
already mentioned, I would *love* to see this information.
But legit email would not hit these higher mx records so I doubt I'll
have a problem with false positives.
I think you're mistaken about this. To assume that legitimate mail
servers won't use legitimate methods of delivering mail in the instance
of service unavailability, IMHO, is a mistake.
I think you're missing an important fact. The lowest 4 MX records point
to legitimate servers. The highest 4 MX records point to the spamtrap
which is on the lowest MX server. And it takes a lot of hits to get listed.
