Fake MX records
am.lists
am.lists at gmail.com
Wed Jul 25 05:12:53 IST 2007
On 7/25/07, Jeff Mills <Jeff.Mills at versacold.com.au> wrote:
>
>
> > -----Original Message-----
> > From: mailscanner-bounces at lists.mailscanner.info
> > [mailto:mailscanner-bounces at lists.mailscanner.info] On Behalf
> > Of am.lists
> > Sent: Wednesday, 25 July 2007 1:39 PM
> > To: MailScanner discussion
> > Subject: Re: Fake MX records
>
> >
> > reality: we see incoming spam connections coming in on
> > mail.hogswaggle.net although this is neither posted publicly,
> > nor has it ever been posted in any mx record.
>
> Inbound port 25 should be firewalled for the real mail server.
> The only way in should be via mailscanner and ideally, the mail server
> itself should not accept connections from anything other than your
> mailscanner server(s). Let the spammers randomly try addresses!
Agreed 1000% -- but several users already have the mail.domain.tld:25
configured in their Outlook/other mail clients that they use for
authorized outbound sending. Problem is that some (OL2K users
particularly) have problems on ports !=25. So we're sorta stuck at the
moment. I'd love to just flip the switch. Trust me.
Angelo
More information about the MailScanner
mailing list