Re: [qmailtoaster] Invalid recipient bounces
So basically no one should be using catch-all mailboxes? On 1/21/07, Alexey Loukianov [EMAIL PROTECTED] wrote: George Sweetnam wrote: You shouldn't set the catchall to bounce though... select delete. The dictionary attacks will harvest the valid users if you select bounce! Agreed. Accordingly to the latest SMTP/MTA RFCs, all mail, directed to the non-existing addresses should be bounced in SMTP session. To prevent harvest attacks SMTP daemons may implement tarpeting. In case catchall address is used, NO bounces should be sent back? but RFCs recommends against using catchall, as it makes your mailserver act as a black hole. Violating the rules above will shortly result in blacklisting your server by services like SpamCop and RFC-Ignorant. -- Best regards, Alexey Loukianov mailto:[EMAIL PROTECTED] System Engineer, IT Department, Lavtech Corp. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Invalid recipient bounces
slamp slamp wrote: In case catchall address is used, NO bounces should be sent back? but RFCs recommends against using catchall, as it makes your mailserver act as a black hole. Violating the rules above will shortly result in blacklisting your server by services like SpamCop and RFC-Ignorant. So basically no one should be using catch-all mailboxes? That is recommended, but not mandatory. You may use catchall mailbox, but then you should NOT send any bounce about any mail your SMTP server accepted for catchall address. P.S. Please, don't do top-posting. -- Best regards, Alexey Loukianov mailto:[EMAIL PROTECTED] System Engineer, IT Department, Lavtech Corp. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Invalid recipient bounces
slamp slamp wrote: So basically no one should be using catch-all mailboxes? On 1/21/07, *Alexey Loukianov* [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] wrote: George Sweetnam wrote: You shouldn't set the catchall to bounce though... select delete. The dictionary attacks will harvest the valid users if you select bounce! Depends on the situation. I run some domains that use a catchall (and someone goes through just to make sure that an email address didn't get mispelled) and others that do not (I bounce here). I think it really comes down to what you need for a particular situation. smime.p7s Description: S/MIME Cryptographic Signature
Re: [qmailtoaster] Invalid recipient bounces
Nathan Grennan wrote: I have started getting a lot of backscatter, and see it is coming from addresses that don't exist on the domain. I know there should be a way to do a check at rcpt to: for bad addresses, but need to know how to turn it on. I presume these are coming into your catchall account. Is http://wiki.qmailtoaster.com/index.php/Account_verification_using_badmailto what you're looking for? -- -Eric 'shubes' - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Invalid recipient bounces
Eric Shubes wrote: I presume these are coming into your catchall account. Is http://wiki.qmailtoaster.com/index.php/Account_verification_using_badmailto what you're looking for? I thought I had disabled the catchall a while back. I just checked and found it enabled on the postmaster account. I switched it to bounce. This should give me the desired recipient checking without any more backscatter? - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Invalid recipient bounces
Nathan Grennan wrote: Eric Shubes wrote: I presume these are coming into your catchall account. Is http://wiki.qmailtoaster.com/index.php/Account_verification_using_badmailto what you're looking for? I thought I had disabled the catchall a while back. I just checked and found it enabled on the postmaster account. I switched it to bounce. This should give me the desired recipient checking without any more backscatter? Yes (TTBOMK). -- -Eric 'shubes' - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Invalid recipient bounces
On Fri, 2007-01-12 at 10:48 -0800, Nathan Grennan wrote: I switched it to bounce. This should give me the desired recipient checking without any more backscatter? Problem now is backspam. Spammers use bogus addresses all the time. I have a couple of domains that have been the victim of just that thing. One was even blacklisted even though no mail had ever been sent using that domain name. What you need to do most is create an SPF record. This tells the other mail hosts that the mail is bogus. Doing this will greatly reduce the bounces from fake addresses. At least it did for me. http://www.openspf.org for more info. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Invalid recipient bounces
You shouldn't set the catchall to bounce though... select delete. The dictionary attacks will harvest the valid users if you select bounce! George. - Original Message - From: Nathan Grennan [EMAIL PROTECTED] To: qmailtoaster-list@qmailtoaster.com Sent: Friday, January 12, 2007 12:48 PM Subject: Re: [qmailtoaster] Invalid recipient bounces Eric Shubes wrote: I presume these are coming into your catchall account. Is http://wiki.qmailtoaster.com/index.php/Account_verification_using_badmailto what you're looking for? I thought I had disabled the catchall a while back. I just checked and found it enabled on the postmaster account. I switched it to bounce. This should give me the desired recipient checking without any more backscatter? - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Invalid recipient bounces
Most people recommend against catchall's. http://ask.slashdot.org/article.pl?sid=07/01/10/2349241 On 1/12/07, George Sweetnam [EMAIL PROTECTED] wrote: You shouldn't set the catchall to bounce though... select delete. The dictionary attacks will harvest the valid users if you select bounce! George. - Original Message - From: Nathan Grennan [EMAIL PROTECTED] To: qmailtoaster-list@qmailtoaster.com Sent: Friday, January 12, 2007 12:48 PM Subject: Re: [qmailtoaster] Invalid recipient bounces Eric Shubes wrote: I presume these are coming into your catchall account. Is http://wiki.qmailtoaster.com/index.php/Account_verification_using_badmailto what you're looking for? I thought I had disabled the catchall a while back. I just checked and found it enabled on the postmaster account. I switched it to bounce. This should give me the desired recipient checking without any more backscatter? - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]