Re: [Declude.JunkMail] 1.28 - More "FROM" issues

Fri, 30 Nov 2001 12:12:30 -0800 


>However, I now realize that my "militant" position is weak because of how
>MAILFROM only inspects the envelope - NOT the headers.  Also, it only checks
>the FQDN not just the 2nd level domain name.  Neither is a BUG - but it
>limits the usefulness of the test.

That is how the test is designed to work.

The MAIL FROM address is used because that's the E-mail address that bounce 
messages will go to, and is required to be a valid address.

The FQDN is used because it has to -- if mail the MAIL FROM address is 
"[EMAIL PROTECTED]", and "host.example.com" doesn't have any MX/A 
records, mail won't be able to get there.

>Here is a good example - the envelop "from" contains a host name - but the
>header "from" contains a valid email address. The recipients mail software
>would use the header from and thus allow the recipient to reply to this
>message:
>
>11/29/2001 20:40:25 Qe37d174 Msg failed MAILFROM (Domain
>ALANTNOTE.passportcorp.com has no MX/A records.).
>11/29/2001 20:40:25 Qe37d174 Msg failed REVDNS (This E-mail was sent from a
>mail server with no reverse DNS entry.).
>11/29/2001 20:40:25 Qe37d174 Subject: Read: Performance 2000 Information
>11/29/2001 20:40:25 Qe37d174 From: [EMAIL PROTECTED]
>To: [EMAIL PROTECTED]

In this case, mail can't get to [EMAIL PROTECTED]  It 
just isn't valid.

>But, when you look at the header, you'll see that a valid from/reply-to is
>present. And the 2nd level domain name "passportcorp.com" would have been a
>valid MAILFROM.

"would have been" is the key here.

The real question is why does the sender want your server to deal with 
bounce messages, rather than them?  Do you want to do that extra work for 
them?  If their E-mails are sent to invalid users, you're going to get 
files left sitting in the spool directory forever.

However, you are correct that it would be nice if Declude also could check 
the "From:" header (which might be added as another test in the future).
                                                -Scott

---

This E-mail came from the Declude.JunkMail mailing list.  To
unsubscribe, just send an E-mail to [EMAIL PROTECTED], and
type "unsubscribe Declude.JunkMail".  You can E-mail
[EMAIL PROTECTED] for assistance.  You can visit our web
site at http://www.declude.com .

Reply via email to