"Friends Only"

James Gray james at grayonline.id.au
Tue Oct 3 07:16:18 IST 2006


On 03/10/2006, at 10:11 AM, Dan Hollis wrote:

> On Mon, 2 Oct 2006, Matt Kettler wrote:
>> Dan Hollis wrote:
>>> On Mon, 2 Oct 2006, Martin Hepworth wrote:
>>>> Besides milter-sender there's also milter-ahead which checks the  
>>>> 'to'
>>>> address existing on your system (if you're not using sendmail  
>>>> see the
>>>> mailScanner wiki for your MTA on how to do this). Again using this
>>>> technique you can drop over 66% of inbound traffic...
>>> Is there any milter which checks the SOA of URLs in the message  
>>> body and
>>> drops them if the SOA is in china (or pakistan, or wherever)?
>> Not that I know of.
>> That and you'd probably have a lot more false positives here than  
>> you expect.
>>
>> With the amount of "farming out" of basic web-presence services,  
>> where the
>> website's DNS hosting lives really has very little to do with  
>> where the company
>> that owns it is.
>> I mean, if I get re-routed to India when I call a US-based company  
>> for tech
>> support, why should I expect to have a US-based DNS server for  
>> their website?
>
> Why shouldn't I be able to blacklist individual known spam SOAs?

Why not use the URIBL lists like "OutBlaze" and friends.  Not exactly  
what you're after but I've found them extremely effective in  
combating URLs etc that link to known spammers' domains.

Cheers,

James


-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 2440 bytes
Desc: not available
Url : http://lists.mailscanner.info/pipermail/mailscanner/attachments/20061003/4c6310b5/smime.bin


More information about the MailScanner mailing list