Question on "YAHOO FORGED RULES"...
I was under the impression that this rule was saying I have a yahoo email address but the mail is not from a yahoo MTA. Am I correct or not? If I am correct, then I would never want email from someone claiming to have a yahoo mail box but not using yahoo to send their message, the same would be true for any other major mail network (i.e. HotMail, MSN Mail, Eudora Free Mail, etc).
Patrick Shoaf
At 10:02 AM 7/26/2004, Bob Apthorpe wrote:
On Fri, 23 Jul 2004 19:22:18 +0200 Marc Kool <[EMAIL PROTECTED]> wrote:
> John Hardin wrote: > > > Personally, I think it's a bad idea these days to accept SMTP from > > dynamic IP addresses in the first place. It shouldn't have even gotten > > as far as SpamAssassin - a DNSBL should have rejected it at the HELO. > > Hmmm. Why would you want to exclude those who have a personal domain, > ADSL and a small server at home ?
For every secure, well-run mail server run on a dynamically-allocated broadband network, there are 10,000-1,000,000 compromised desktops emitting spam. Dynamic allocation is a strong sign of low accountability.
I run several personal domains off a pair of small servers from home via ADSL. I have very little mail blocked because:
- I pay extra for static IP addresses
- My address block is SWIPped back to me (i.e. ARIN lists my name next to the IP allocation)
- I have matching rDNS on my mail servers (the /29 is delegated back to me so the PTRs are under my control)
The first costs a little extra money ($5-15/month) and the latter two depend on the whim and competence of your provider. The last one requires a bit of research but you don't need to be a DNS guru to figure it out.
> The fact that virusses abuse PCs behind ADSL lines does not mean that > they are all bad!
If you intend to run a mail server, you need to realize that your server will be held to higher standards of accountability than a desktop used for web-browsing. Connection type and speed don't enter into it. If you operate your MTA from a permanent (static) address and have your DNS under control (meaning rDNS exists and matches fDNS), then your MTA gets to talk to my MTA; if you want to do that over an OC3, an ADSL line, or a 300-baud modem, I don't care.
Conversely, if your provider won't maintain proper DNS for you or won't sell you static IP addresses, or won't do so at a price you're willing to pay, I suggest switching providers or making friends with someone who does have proper DNS and static IPs. You can do most of what you want with smarthosting and fetchmail.
The upshot is that unless you differentiate your servers from the vast multitude of zero-accountability broadband users, you will have an extremely difficult time delivering mail to much of the internet.
-- Bob
Patrick J. Shoaf, IT Manager [EMAIL PROTECTED]
Model Cleaners, Uniforms, & Apparel 100 Third Street Charleroi, PA 15022 <http://www.model-uniforms.com/>http://www.model-uniforms.com Phone: 724-489-9553 ext. 105 or 800-99 MODEL Fax: 724-489-4386
