Alessandro Vesely writes:
Sam Varshavchik writes:I suggest that you shold stop worrying about it. If you set up a typical address, such as sales@, it will get harvested whether DSNs are sent, or not. It doesn't matter. It's a red herring.
Alessandro Vesely writes:Spammers just use typical addresses (e.g. sales@yourdomain).
Spammers do not need DSNs to confirm addresses.if such [DSNs] specifications can/should be overridden, so as to avoid helping spammers confirm addresses.
Did you actually ever log a succesful dictionary attack against a Courier server? What happened?
Also, many people give away what they believe to be a fancy address,
but may actually match some aliasing criteria at the domain.
In addition, some spammers, after giving a wrong sender address,
also require a DSN that will thus bounce to postmaster's box.
What would you suggest? I'd be tempted to build a white list for DSNs.
-------------------------------------------------------
This SF.NET email is sponsored by:
SourceForge Enterprise Edition + IBM + LinuxWorld = Something 2 See!
http://www.vasoftware.com
_______________________________________________
courier-users mailing list
[EMAIL PROTECTED]
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
