I then looked into what "callback verification via RCPT TO" was all about. Apparently it is some way of verifying the person who sent the email has a valid email account on the host their email address indicates. It is also appears to be somewhat controversial as well:
emty file /var/qmail/control/badmailfrom
-- Eero
