>It's not unknown for legitimate SMTP servers to be named like
>'mx1.served.domain', etc. ('mx' being an abbreviation for 'mail exchanger'
>and the DNS record type for mail exchangers), so it's possible that you
>might get some false positives. For the most part, though, I'd guess that
>such names wouldn't show up very often in Return-Paths on legit messages.That is my concern. One of my old backup mail servers were all named as mx1 and so one. Its been a while since I've used those backup servers (they were provided by one of my old ISPs), so I don't recall what the return-path looked like on messages forwarded thru. I'm kind of figuring that I may just activate it, and be prepared that some people may complain that they can't email me. If that happens, then I'll just have to turn it back off. Meanwhile, the funny thing with the spams I am trying to block are... they never sell anything. They are always related to finances (mortages, stock trading, stuff like that) in the domain names, but the messages are always just clips of text that looks like they are plucked from books. Never more than a paragraph. I'm rather assuming they are just tests for good addresses which is why they are random text. That way the spammer hopes to get thru a server's spam filter that examines the body for specific topics. This is why I REALLY want to bounce them so the address doesn't continue to get added to MORE spam lists as a good address (they are also always to the same address). -chris <http://www.mythtech.net> ############################################################# This message is sent to you because you are subscribed to the mailing list <[EMAIL PROTECTED]>. To unsubscribe, E-mail to: <[EMAIL PROTECTED]> To switch to the DIGEST mode, E-mail to <[EMAIL PROTECTED]> To switch to the INDEX mode, E-mail to <[EMAIL PROTECTED]> Send administrative queries to <[EMAIL PROTECTED]>
