[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: seeking input on rbls and anti-spam measures

On Sun, Mar 02, 2003 at 01:46:47PM +0100, Emile van Bergen wrote:
> 
> I use a program that does that to complement qmail's standard measures,
>...
> The attached perl script is intended to be used in a .qmail delivery
>...
> #!/usr/bin/perl -w
> #
> # RCVCHK (C) 2002 Emile van Bergen. Redistribution of this file is permitted
> # under the conditions detailed in the GNU General Public License (GPL).
> #
> # This script is intended for use in .qmail files. It scans a message's
> # Received: headers for IP addresses and checks each IP address that is not in
> # an explicit permitted prefix list, against a configurable number of realtime
> # DNS blacklists. The headers are scanned using 822field from djb's mess822
> # package; the DNS lookups are done using dnstxt from djbdns.
>...

   I agree with your idea here, but aren't the Received: headers mostly
forged? I was recently "attacked" because some spammer used my domain
name as the return address for his spam and i got 10's of thousands of
bounced messages! Brought down my MTA! In case anybody on this list
hasn't already been convinced that spam costs real money, wait until
your domain name is forged.

   Maybe i missed it, but i didn't see code for checking the truth of
the Received: IPs?
Reply to: