[BUGS] trapping spam from headers

jonathan michaels jlm at caamora.com.au
Wed Mar 5 18:53:01 EST 2008 

On Wed, Mar 05, 2008 at 08:47:24AM +1100, Andrew Reilly wrote:
> Hi Jonathan,
> 
> I think that you're barking up the wrong tree, here.  login.access  

me think that be teh case, but i was hoping that i wasn't, that
i'd overlooked some loophole.

> has nothing to do with the contents of SMTP headers: you third  
> parties don't have to log in to send you e-mail (although these days  
> it might be the case that *you* have to log in (with SMTP AUTH) to  
> send e-mail.)

it was a hair-brained idea that would have beeen nice to pull
off so to speak. but...

> The mechanisms for keeping mail "out of the system" generally rely on  
> IP-address black-lists, which the SMTP server consults before  
> accepting the connection.  These don't look at the headers at all.

just as an aside, does teh looked up address have to be
'legitimate' ?? what if i put a whole lot of ip-ad-re-ss
harvested from years off (repetative) spam, most of which (if
not whole off) comes from stuff generated by mail comming/going
to freebsd mailing lists -- to reiterate most of teh smap
coming here is pretty repetative as per teh "from " "from:" etc
headers right down to teh revieved headers.

i am thinking if i put those details it shoul put a dent in teh
spam traffic, well that and the spam trap as explained in rfc
2083 (sorry not exactly sure if that is the correct rfc ##

it describes a way of stuttering/slowing the hello (envelope)
phase/handshake out to several minutes this convonces teh
sending host that teh recieving machine is too slow/not really
there/something else and its not worth persuing teh connection,
it gives up teh attamp and goes away not to return till some
new spam needs sending .. claims to reduce spam upto 90
something percent.

this sounds better to me that changing teh address plan and
waiting for it to build up again ... mind you i had thought of
doing that, matt, but gave up as it was too much trouble/
effort/ something like that.

given how hard it would be to get another /24, well for
somebody like read impossible and an ipv6 address while not
technically impossible finding a ipv6 address source
here/locally well its been a long day. thanks matt/andrew, much
appreciated. 

much kind regards .. sincere

jonathan

-- 
================================================================
powered by ..
QNX, OS9 and freeBSD  --  http://caamora com au/operating system
==== === appropriate solution in an inappropriate world === ====

More information about the BUGS mailing list