I believe we've discussed this some in the past, but I thought I'd ask
if anyone is actually doing something similar to the following?
The free webmail providers such as Yahoo and Hotmail are havens for
spammers because there is no accountability. True identities are not
verified, so in minutes one can obtain an anonymous account to abuse.
As soon as the offending account is closed, another is opened.
Spammers use these for at least the following two purposes:
1. Send spam with a forged address @yahoo.com or @hotmail.com, etc.
2. Some spammers use the webmail account to spam, and then confirm my
TMDA challenges. Out of all the times this has happened, it's
either been due to a bounce, or a spammer behind a free webmail
account.
The result is that I receive dozens of spam from these types of
providers on a daily basis, and very few legitimate messages. The
signal to noise ratio is very low.
I'm considering bouncing (at the MTA level, not TMDA) all mail from
these free webmail providers that isn't whitelisted. The bounce
message will ask the sender to use a different address to request that
the webmail address be whitelisted. Once whitelisted, he can use the
webmail address freely.
I'm not aware of any free webmail providers that verify identity, but
I'd also include a pointer to such a service in the bounce message.
By far, the worst offender is yahoo.co*, but other culprits include
hotmail.com, excite.com, lycos.com, netscape.net, and netzero.com.
_____________________________________________
tmda-users mailing list ([EMAIL PROTECTED])
http://tmda.net/lists/listinfo/tmda-users
