Re: Unusual spam recently - hummm - postprocess

To: Debian Security <debian-security@lists.debian.org>
Subject: Re: Unusual spam recently - hummm - postprocess
From: Michael Stone <mstone@debian.org>
Date: Fri, 4 Jun 2004 18:52:47 -0400
Message-id: <[🔎] 20040604225247.GX15598@mathom.us>
Mail-followup-to: Debian Security <debian-security@lists.debian.org>
In-reply-to: <[🔎] 20040604224755.GP12051@linuxmafia.com>
References: <[🔎] 20040603232509.GP15598@mathom.us> <[🔎] 20040603233444.GE12051@linuxmafia.com> <[🔎] 20040604002244.GQ15598@mathom.us> <[🔎] 20040604003217.GG12051@linuxmafia.com> <[🔎] 20040604005618.GU15598@mathom.us> <[🔎] 20040604011157.GK12051@linuxmafia.com> <[🔎] 20040604024654.GB16032@zionlth.org> <[🔎] 20040604185009.GM12051@linuxmafia.com> <[🔎] 20040604222546.GV15598@mathom.us> <[🔎] 20040604224755.GP12051@linuxmafia.com>

On Fri, Jun 04, 2004 at 03:47:55PM -0700, Rick Moen wrote:

The utility of SPF lies in its ability to eliminate joe-jobbing,
providing a means to validate MXes -- and, as I'm reasonably sure you'll
have observed, forged mail's envelopes strongly tend to forge the
domains of major (very large) mail-handling sites.  Those sites happen
to have been among the earliest adopters of SPF RRs in their DNS,
largely because they are particularly motivated to protect their
trademarks and their names.


yeah, aol's pleased as punch about it. they also don't have much
interest in customers sending email with @aol from off their own system
unless they use an obnoxious webmail client. same goes for hotmail.
anyone with users who isn't aol and whose users don't particularly want
a webmail client needs to give things more thought.

So, adding handling for SPF RRs in one's MTA yields significant
advantages today, despite the technology being new, because _all_ of theforgemail claiming to be from aol.com, msn.com, hotmail.com, pobox.com,
etc. can be detected all in one step.


Well, I guess the spammers will have to use different addresses. That
shouldn't take long.

Mike Stone

Reply to:

Follow-Ups:
- Re: Unusual spam recently - hummm - postprocess
  - From: Rick Moen <rick@linuxmafia.com>
- Re: Unusual spam recently - hummm - postprocess
  - From: Russell Coker <russell@coker.com.au>

References:
- Re: Unusual spam recently - hummm - postprocess
  - From: Michael Stone <mstone@debian.org>
- Re: Unusual spam recently - hummm - postprocess
  - From: Rick Moen <rick@linuxmafia.com>
- Re: Unusual spam recently - hummm - postprocess
  - From: Michael Stone <mstone@debian.org>
- Re: Unusual spam recently - hummm - postprocess
  - From: Rick Moen <rick@linuxmafia.com>
- Re: Unusual spam recently - hummm - postprocess
  - From: Michael Stone <mstone@debian.org>
- Re: Unusual spam recently - hummm - postprocess
  - From: Rick Moen <rick@linuxmafia.com>
- Re: Unusual spam recently - hummm - postprocess
  - From: Phillip Hofmeister <plhofmei@zionlth.org>
- Re: Unusual spam recently - hummm - postprocess
  - From: Rick Moen <rick@linuxmafia.com>
- Re: Unusual spam recently - hummm - postprocess
  - From: Michael Stone <mstone@debian.org>
- Re: Unusual spam recently - hummm - postprocess
  - From: Rick Moen <rick@linuxmafia.com>

Prev by Date: Re: Unusual spam recently - hummm - postprocess
Next by Date: Re: Unusual spam recently - hummm - postprocess
Previous by thread: Re: Unusual spam recently - hummm - postprocess
Next by thread: Re: Unusual spam recently - hummm - postprocess
Index(es):
- Date
- Thread