On Samstag, 22. Oktober 2005 18:01 Andy Smith wrote: > Masses of legitimate email comes from hosts with no reverse DNS, > incorrect HELO and other borderline or actual RFC violations.
It pretty much depends on the mail server and it's users. Our server used to receive most e-mail from Austria, some from Europe, few from the world. By then, I used static IP filters, e.g. I filtered all IPs with 200.0.0.0/8, which are brasilian. Nowadays, we have many more domains, receiving HAM e-mail from all around the world (customers of our customers), so the static filters needed to be dropped, leaving "only" SA and RBL lists. That's why I can understand that for Chris his type of filters may work. As for RFC violations: Occasionally, people have problems sending us e-mail, e.g. a company in Portugal has dynamic IP, often one that is in RBL lists. We have strict rules here, so we force them to get a static IP, explaining them the advantages. Until now, that worked pretty good. mfg zmi -- // Michael Monnerie, Ing.BSc --- it-management Michael Monnerie // http://zmi.at Tel: 0660/4156531 Linux 2.6.11 // PGP Key: "lynx -source http://zmi.at/zmi2.asc | gpg --import" // Fingerprint: EB93 ED8A 1DCD BB6C F952 F7F4 3911 B933 7054 5879 // Keyserver: www.keyserver.net Key-ID: 0x70545879
pgp0rPtqqDmzo.pgp
Description: PGP signature
