Will milter-greylist solve my directory harvest attacks?
Matt Kettler
mkettler at EVI-INC.COM
Thu Dec 15 23:16:29 GMT 2005
[ The following text is in the "ISO-8859-1" character set. ]
[ Your display is set for the "US-ASCII" character set. ]
[ Some characters may be displayed incorrectly. ]
shuttlebox wrote:
> On 12/15/05, *Matt Kettler* <mkettler at evi-inc.com
> <mailto:mkettler at evi-inc.com>> wrote:
>
> Further follow-up.. milter-sender is the exact opposite of what
> we're talking
> about here. That validates the sender, not the recipient.
>
> Perhaps milter-ahead could be used here, but not milter-sender.
>
>
> I don't use any of them but obviously milter-ahead sounds like a better
> fit. I still don't see how you can invalidate recipients on a relay
> without it though. Sendmail uses its mailertable file to see if it can
> deliver to, for example, an Exchange server further in, it can not
> validate the left side of the mail address and will send everything to
> Exchange.
Blind-forwarding mailservers, like yours, are a pretty major problem.
Particularly since some spammers are abusing them as mail relays through what is
calleda "Reverse NDR" attack.
You really should consider doing something about that ASAP. milter-ahead seems
the easiest way for you.
------------------------ MailScanner list ------------------------
To unsubscribe, email jiscmail at jiscmail.ac.uk with the words:
'leave mailscanner' in the body of the email.
Before posting, read the Wiki (http://wiki.mailscanner.info/) and
the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html).
Support MailScanner development - buy the book off the website!
More information about the MailScanner
mailing list