Marc Perkel wrote:
I've written a best practices guide and suggestions on how to defeat
the spam bot armies. If anyone wants to comment I'm looking for
feedback and new ideas.
http://wiki.junkemailfilter.com/index.php/How_to_put_an_end_to_Virus_Infected_Spam_Bots
You didn't listen to the feedback given in this list. There is no
security difference between 587 and 25. Incoming MX's shouldn't relay
unless it is to the domains they are responsible for. The only advantage
in offering 587 is for roaming customers that are on a network where 25
outgoing is firewalled. We have 4 incoming and 2 outgoing servers, all
listening to 25. We don't have virus problems.
Second, NAT is evil, okay? Talk to a network admin for a large network.
NAT is evil and offers no protection at all. In fact, it tends to make
many things worse. Firewalls are good, but NAT is not a firewall. One of
the great things about IPv6 is it makes NAT obsolete.
- Re: How to defeat the spam bot armies Richard Frovarp
-
