[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: OT: sorbs blacklisting scam

On Sun, 2006-04-30 at 08:06, Juha-Matti Tapio wrote:
> On Sun, Apr 30, 2006 at 10:57:28AM -0300, Henrique de Moraes Holschuh wrote:
> > On Sun, 30 Apr 2006, Juha-Matti Tapio wrote:
> > > There is no valid reason whatsoever to send bounces for spam. If you have a
> > What should happen when someone sends mail from a spam trap [yes, forged],
> > to a valid address, WITHOUT any spam content (or content not filtered as
> > spam, it is the same), and that valid address bounces because its inbox is
> > full?
> 
> I have always solved this by not connecting mailbox fullness directly to
> cutting mail flow. If the mailbox goes over the quota, I would only then put
> delivery to hold so that temporary error can be returned during SMTP
> transactions. Once the incoming message has been accepted, it is already
> taking disk space on the server and it might just as well be delivered even
> if the box overflows.
> 
> Usually quota is placed to either protect the system from sudden disk space
> starvation and/or due to business reason. In both cases it is not necessary
> to prevent a small overrun in disk usage in the short time between the
> mailbox becoming full and before the inbound SMTP servers know about it.
> 
> If I were dependent on a mailbox with quota, I would really appreciate it if
> the admins gave me some slack so that I would have a bit time to clean up
> before incoming mail was cut off.

I think you're following the logic already followed by many ISPs.
The next step is to consider what should happen after the message
has been in the recipient's ISP's mail queue for a few days.
Perhaps the recipient is on vacation.  The only sensible course
is to bounce the message (hoping that the sender was not forged)
so that legit senders know that the message has not been
received.  Otherwise, you might as well forget reliable SMTP
delivery and just send an instant message hoping the recipient
is watching.

Bounces should be minimized.  In many circumstances, they cannot
be avoided.

SORBS is the only well-known RBL which lists IPs for backscatter
as a result of SORBS' own honeypot addresses being compromised.

SORBS is the only well-known RBL which demands a delisting fee.

SORBS is just not worth the hassle when there are so many good
RBLs.

--Mike Bird
Reply to: