On Sun, Nov 30, 2014 at 3:19 PM, Sam Varshavchik <[email protected]>
wrote:
>
>
> I'll confirm that a HELO check blocks a lot of junk.
>
> The default settings do not enable SPF checking at all; so the default
> configuration does not check the HELO.
>
> But, if someone wants to do that, this setting is available; and, since
> it's their server, and if they wish to ignore the requirement to not
> validate the HELO, it's their prerogative to do so.
>
> At some point, I suppose that the junk senders will wise up and will
> prudently set up their spam spewers, and at that point this check will lose
> its usefulness. But, until that happens, this is very useful.
>
>
So that would be until around 2008, then? :)
Spammers wisened up a long time ago, and are using a wide range of tricks
to send their messages.
One of the most popular in recent years, is to use legitimate e-mail
accounts and servers to pass on their crap.
This is a huge PITA for those of us working to provide a legitimate e-mail
service to more than just a few handfuls of users, since inevitably,
several of the users will lose their passwords, will have their Wordpress
compromised, or their Mailchimp account stolen.
I think that perhaps, but only perhaps, what is written in the HELO string
can be used as an indication that all is not well, and therefore as one of
many inputs into a spam evaluation program.
But outright rejecting it? Well, I guarantee that this will catch a LOT of
ham.
As you say, though, if someone wants to break their MTA so that it's harder
to accept messages, it's their own poison pill.
--
Jan
------------------------------------------------------------------------------
Download BIRT iHub F-Type - The Free Enterprise-Grade BIRT Server
from Actuate! Instantly Supercharge Your Business Reports and Dashboards
with Interactivity, Sharing, Native Excel Exports, App Integration & more
Get technology previously reserved for billion-dollar corporations, FREE
http://pubads.g.doubleclick.net/gampad/clk?id=157005751&iu=/4140/ostg.clktrk
_______________________________________________
courier-users mailing list
[email protected]
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
