> >Any thoughts on how we can not be an accomplice in joe jobbing someone
to
> >death ?
>
> very easy, the MX must reject unknown recipients
To clarify what Len said:
The last server to accept an email is responsible for it. If it can not
deliver the mail, it is supposed to generate an error message and perhaps
bounce.
Therefore, if your gateway server does not accept the mail, it should not
create bounces.
Examples:
Mail accepted, bounce generated example.
JoJob Spammer MTA -> Gateway (accepted)
Gateway -> Main Mail server (550 Unknown)
Gateway (bounce msg) -> Victim of JoJob MTA
The above is what has been happening to your user. Gateways are
bombarding you.
SAV/RAV Reject Example:
JoJob Spammer MTA -> Gateway (paused for SAV/RAV)
Gateway SAV -> Victim of JoJob MTA (pass)
Gateway RAV -> Your Server (fail)
Gateway Rejects
JoJob Spammer MTA is now supposed to do bounce.
In this second example, the gateway rejected, and therefore never assumed
responsibility for the mail. This means the JoJob Spammer MTA is the one
that should generate any error messages and bounces. Because the spammer
does not care, his software probably just goes on working without the
error meaning anything.
If anything, the spammer will harvest known bad addresses, but even that
is unlikely. Just because an address is invalid today does not mean it is
invalid tomorrow, so they will try again tomorrow.
Exporting known users from IMail to the gateway will make the RAV test
obsolete. This will cause a faster reject, and less overhead.
--Eric
