On 09/04/2018 20:40, Sebastian Arcus wrote:

This might not really answer your question, but I've had really good results leaving all this to the MTA (Exim in my case). I actually go for the whole hog full callout verification - checking with the MX that the sender really exists. I know that some people are against this and say that you get blacklisted - but I've been doing this for about 8 months on 4 sites and it has worked very well. I have a local full callout verification whitelist - to skip callout verification mainly for Microsoft operated domains - which will blacklist you at the drop of the hat.
Hello Sebastian,

I'm curious about this approach. I never tried it, but, assuming that you check the MX of the envelope from domain, how do you deal with poorly-configured-but-legit VPS that use, in example, www-d...@hostname.of.the.server ? I have live examples of wordpress and vbulletin installations that have not existent envelope from mailboxes or VPS hostnames without MX records. There are also other services that actively send email in the form of "nore...@domain.com". If I understood correctly, your approach would heavily penalize these senders.

I know that in the ideal world everyone should configure their systems neatly, but unfortunately we are far from ideal conditions in real life :/

I'm happy to discuss this technique but I can't really afford the administrative overhead I would have with users complaining about rejected emails..

Daniele Duca

Reply via email to