On 7 Dec 2006 [EMAIL PROTECTED] wrote: > >> > >> On Wed, 6 Dec 2006, Kelly Jones wrote: > >> > >> > Recently, someone connected our server, call it mx.xyz.com, and said > >> > "HELO mx.xyz.com". Spamassassin didn't ding it for doing this. > >> > >> IMHO this is worthy of a 500 reject at the MTA level. There is NO > >> legitimate reason for J. Random User out on the internet to claim his > >> MTA is yours. > >> > >> I've posted milter-regex examples that do this here before. > >> > >> -- > > if you have outside users sending through your mta, you need to > allow them almost any garbage in the helo string. So the helo > check should be run at mail or rcpt time - users are authenticated > then
In my case that doesn't apply. The first think I do in my milter-regex set is skip the rest of the file for locally-originated messages. Extending that to include skipping messages from authenticated senders would be logical. -- John Hardin KA7OHZ http://www.impsec.org/~jhardin/ [EMAIL PROTECTED] FALaholic #11174 pgpk -a [EMAIL PROTECTED] key: 0xB8732E79 -- 2D8C 34F4 6411 F507 136C AF76 D822 E6E6 B873 2E79 ----------------------------------------------------------------------- The fetters imposed on liberty at home have ever been forged out of the weapons provided for defense against real, pretended, or imaginary dangers from abroad. -- James Madison, 1799 ----------------------------------------------------------------------- 8 days until Bill of Rights day
