On Thu, May 03, 2007 at 11:51:36AM -0400, Rob McEwen wrote: > K. asked: > >A while ago I implemented graylisting, which works quite well. But since 2 > >days ago I'm seeing loads of mails which are passing by the greylisting > >(so they are being sent again by a "real" mailserver). > > > >Anybody knows if there is a new windows virus on the loose that retries to > >deliver mails? The mails are coming from all kinds of hosts, all kinds of > >countries but mostly from dialup or adsl accounts (so, not > >hijacked corporate mailservers). > > I've noticed a recent jump in the number of Nigeria/419 & lottery scams. > These are often sent via mailservers which will easily bypass graylisting > due to retries. > > Also, in general, these are also among the most difficult types of spams > to catch. > > Rob McEwen > PowerView Systems > [EMAIL PROTECTED]
I suppose many regard this as effective as peeing in the ocean to raise the water level, but any spam I have to touch, I turn on full headers, and report it back to abuse address for the top-most untrusted client in the Received lines. If he has a legit mail server, then he should trace back to the client that sent to his server, and ultimately shut the blighter down. I do that for mailing list postings I have to moderate on a list server I don't control, and mail sent to postmaster at my domain. Am I not correct in not filtering mail to postmaster? Sorry, I think I digressed a bit, there. Cheers, -- Bob McClure, Jr. Bobcat Open Systems, Inc. [EMAIL PROTECTED] http://www.bobcatos.com "I am the Alpha and the Omega," says the Lord God, "who is, and who was, and who is to come, the Almighty." Revelation 1:8 (NIV)
