On 12/1/10 10:33 AM, David F. Skoll wrote:
And authentication will stop spam... how?
> Thoughts?
You're wasting your time.
Regards,
David.
Ditto. we can't even get big providers (Microsoft/blackberry) or ISP's
to adhere to current RFC's.
If you enforce ALL the RFC's in a pre-queue filter, you would reduce
your spam. Go head. Set up your mail server to only accept email from
RFC complaint senders.
1) FQDN for (e)helo / domain, hostname, with full path RDNS
2) not on RFC ignorant list (must have working postmaster,abuse, whois
address. yes, its in the RFC's)
3) SPF (IF IT USES SPF) must follow spec, including SRS. if it doesn't
publish SPF, then don't worry about this (I put this in for all of you
to argue back and forth about SPF. but it is in the RFC's)
4) DNS/NDR's . (guess what!!) the RFC's say you MUST reject the email if
you can't deliver it..
5) only accept email from hostname/domains that block outbound port 25
from workstations (RBL's for that)
6) block email from ip's that are zombots, open relays, have broken,
abuseable web email forms.
As the links above mention, we have fought this battle since 1994. I
have personally fought this battle since 1994.
How much email do you think you will get if you follow ALL the RFC's?
Oh, lets start a NEW spec that no one will follow. Considering how easy
it is to force senders to follow the current specs.
--
Michael Scheidell, CTO
o: 561-999-5000
d: 561-948-2259
ISN: 1259*1300
>*| *SECNAP Network Security Corporation
* Certified SNORT Integrator
* 2008-9 Hot Company Award Winner, World Executive Alliance
* Five-Star Partner Program 2009, VARBusiness
* Best in Email Security,2010: Network Products Guide
* King of Spam Filters, SC Magazine 2008
______________________________________________________________________
This email has been scanned and certified safe by SpammerTrap(r).
For Information please see http://www.secnap.com/products/spammertrap/
______________________________________________________________________
