IP address reputation, BorderWare

Ken A ka at pacific.net
Fri Mar 23 16:50:59 CET 2007



Peter Peters wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> 
> Kevin Miller wrote on 23-3-2007 0:04:
>> Scott Silva wrote:
>>> Yes ... like SPF but without all the people who have ~all in their
>>> records! 
>> I've never understood that.  Mine are all hard fails.  Soft fails are
>> for people that are soft in the head, me thinks.
> 
> Some organizations allow their user to use the e-mail addresses outside
> to organization. And spammers start to use SPF too. They control the
> sending hosts. The control the nameservers. Why not control the SPF too?

Exactly. How many DoS vectors do you want to give to ANYONE who connects 
to your mailserver. SAV is just one more fish in that kettle. It should 
be implemented VERY carefully.
Ken A.
Pacific.Net

> - --
> Peter Peters, senior beheerder (Security)
> Dienst Informatietechnologie, Bibliotheek en Educatie (ITBE)
> Universiteit Twente,  Postbus 217,  7500 AE  Enschede
> telefoon: 053 - 489 2301, fax: 053 - 489 2383, http://www.utwente.nl/itbe
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.2.2 (MingW32)
> Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
> 
> iD8DBQFGA5ahelLo80lrIdIRAgEbAKCI7mDV4YqZQAOKzpt7AYp0p/fYrwCfVFy2
> MHY8cfbRdzLmnQ6FDbdgfoA=
> =Uh4K
> -----END PGP SIGNATURE-----
> 


More information about the MailScanner mailing list