Michael, > One thing I would like to see (and this is a different subject: > Marc: take note: Id like to NOT BOUNCE an email back to the victim of > backscatter if they bothered to publish SPF or SENDER ID records that > don't match the incoming.
mouss writes: > It's the other way around. you should only bounce if you can be sure the > sender was not forged. So, if there is no SPF record, or if the SPD > record allows the whole universe (or a significant part of it:), then > you must not bounce. > anyway, SPF penetration is too low to change anything to the problem > here. same for DKIM for now. I have considered it (specially for the DKIM in case From matches envelope sender address), but mouss is quite right, the current use isn't spread widely enough to make much difference. I'll keep it in mind though. Actually, amavisd does suppress bounces (even if configured) to spam mail coming from Windows machines. The p0f setup must be operational for this to be possible. Mark ------------------------------------------------------------------------- This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2005. http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/ _______________________________________________ AMaViS-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/amavis-user AMaViS-FAQ:http://www.amavis.org/amavis-faq.php3 AMaViS-HowTos:http://www.amavis.org/howto/
