Re: fighting spam || avoiding spam

To: debian-devel@lists.debian.org
Subject: Re: fighting spam || avoiding spam
From: Josip Rodin <joy@srce.hr>
Date: Tue, 8 Jun 2004 10:38:47 +0200
Message-id: <[🔎] 20040608083847.GA32191@keid.carnet.hr>
In-reply-to: <[🔎] 20040607224045.GA24823@moregruel.net>
References: <[🔎] 20040605204458.GA32199@riva.ucam.org> <[🔎] Pine.LNX.4.44.0406052325110.1404-100000@guadiana.unex.es> <[🔎] 20040606082118.GA4622@wonderland.linux.it> <[🔎] m38yezvoe0.fsf@wotan.attique.in> <[🔎] Pine.LNX.4.58.0406071707270.27070@cantor.unex.es> <[🔎] 20040607203515.GA24225@moregruel.net> <[🔎] 20040607211329.GB2823@keid.carnet.hr> <[🔎] 20040607224045.GA24823@moregruel.net>

On Mon, Jun 07, 2004 at 05:40:45PM -0500, Steve Greenland wrote:
> > > That said, I would be interested in knowing why we don't reject such
> > > messages. There's absolutely no reason to be running an open relay.
> > 
> > That's not being "open relay", that's just not using the RBLs.
> 
> No, I meant that blocking based on the *source* being an open relay or
> open proxy is acceptable, since there's no excuse for having such a
> system. 

Oh, sorry, I see now that I parsed that paragraph wrongly.

> > In any event, I figure the main reason is that we always wanted all
> > the users to be able to send mail to us to report problems.
> 
> Which I agree makes a lot of the spam reductions options (subscription
> required, or some of the extremist options like DUL blocking)
> unacceptable. The xbl.spamhaus.org appears to be based on fairly
> legitimate criteria, though: your site has to be a source of spam that
> is somehow magically fingerprinted as coming from an open proxy or open
> relay. That seems unlikely to affect someone struggling to get their
> Debian mailserver working, since the configuration scripts of both exim
> and postfix make it fairly difficult to set up such a system.

I figure that we wanted to also allow random people connecting from random
dialup IPs to be able to send mail to the BTS, too. For example, addresses
can be listed in a blacklist because a previously connected user had a virus
that allowed spammers to relay over them. Depends on the blacklisting
software/criteria, too.

> And since it would presumably bounce back to the correct person (rather
> than being dropped later), at least they would *know* they weren't getting
> through, and could be directed to fix it.

Yeah, SMTP time rejections likely remove the need to worry about most of
that. We could even have the rejection message point to a web page that
answers questions about it. But again this is non-trivial to get because
I have yet to see any debian-admin members very anxious to change the
exim3 configuration or convert to exim4 to get such features...

-- 
     2. That which causes joy or happiness.

Reply to:

References:
- Re: fighting spam || avoiding spam
  - From: Colin Watson <cjwatson@debian.org>
- Re: fighting spam || avoiding spam
  - From: Santiago Vila <sanvila@unex.es>
- Re: fighting spam || avoiding spam
  - From: Marco d'Itri <md@Linux.IT>
- Re: fighting spam || avoiding spam
  - From: Mathieu Roy <yeupou@coleumes.org>
- Re: fighting spam || avoiding spam
  - From: Santiago Vila <sanvila@unex.es>
- Re: fighting spam || avoiding spam
  - From: Steve Greenland <steveg@moregruel.net>
- Re: fighting spam || avoiding spam
  - From: Josip Rodin <joy@srce.hr>
- Re: fighting spam || avoiding spam
  - From: Steve Greenland <steveg@moregruel.net>

Prev by Date: [no subject]
Next by Date: Re: multiple job instances with cron (was: New virtual package: cron-daemon)
Previous by thread: Re: fighting spam || avoiding spam
Next by thread: Re: fighting spam || avoiding spam
Index(es):
- Date
- Thread