Orlando Andico said: > > hello all, > > e.g. spammers are fond of using forged email addresses, e.g. > "[EMAIL PROTECTED]" etc. which change for every spam sent. > Traditionally this is hard to block. However Postfix will query > Hotmail.com as to whether such an account really exists. If it does not > -- the mail is rejected.
hi orly, if this system uses RCPT TO to gauge whether the sender's address is real or not, does it have a dummy email account that it uses to send test email and does it handle email bounces transparently? there are some servers that accept any address in RCPT TO that belongs to their domain, but then upon actual delivery, they find out that the account doesn't really exist and then bounce 'em back. in my honest opinion, I think SMTP is such a kludge that it needs to be replaced. SMTP authentication doesn't really solve spam, it just prevents spammers from using your SMTP server as a jump-off point. Checking for PTR or reverse DNS records doesn't solve everything, because legal mail servers may not have PTR records and bogus mail servers may have PTR records, for all we know. i'm sure everybody agrees that SMTP was "naively" designed and badly needs replacement... -dre _ Philippine Linux Users Group. Web site and archives at http://plug.linux.org.ph To leave: send "unsubscribe" in the body to [EMAIL PROTECTED] Fully Searchable Archives With Friendly Web Interface at http://marc.free.net.ph To subscribe to the Linux Newbies' List: send "subscribe" in the body to [EMAIL PROTECTED]
