On Mon, Feb 02, 2004, Alexander Samad wrote: > Why not reject them at the rcpt command again just reject it.
In this situation, SMTP errors are no better than generating a bounce after accepting the message: Virus SMTP server ------> Relay SMTP server -------> My SMTP server If a mail has come through a relay (someone's ISP's SMTP relay for example, or an open relay, whatever), and I give a 5xx (permanent failure SMTP code) then that relay is unable to pass on the SMTP error because the original sender has disconnected at least 10 seconds before. Thus the relay is forced to generate a bounce and send it to the envelope from, which for most viruses is set to some poor sod who isn't infected, and thus I've just added to the noise, not taken away from it. As far as I know, there's no way I can guarentee that "this will tell that stupid virus's SMTP server to go away" because I don't know if it's a direct connection or a relayed mail. -Mary -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
