Re: Anti-Spam ideas for usenet/list harvested email addresses

To: debian-user@lists.debian.org
Subject: Re: Anti-Spam ideas for usenet/list harvested email addresses
From: "Jacob Anawalt" <jacob@cachevalley.com>
Date: Tue, 23 Sep 2003 16:46:28 -0600 (MDT)
Message-id: <[🔎] 4446.192.168.1.4.1064357188.squirrel@scsi-burn.office>
In-reply-to: <[🔎] 20030923202350.GA20524@mpcnet.com.br>
References: <[🔎] 1141.192.168.1.4.1064344598.squirrel@scsi-burn.office> <[🔎] 20030923194300.GA15566@mpcnet.com.br> <[🔎] 2760.192.168.1.4.1064347936.squirrel@scsi-burn.office> <[🔎] 20030923202350.GA20524@mpcnet.com.br>

Jeronimo Pellegrini said:
[snip]
>> > Make the list server PGP-sign the messages, maybe? You install the
>> list
>> > server key once, and never worry about it again?
>>
>> If some small PGP/GPG data could be sent as part of a new EHLO syntax
>> command then OK, otherwise I'm in the DATA section again. It would have
>> to
>> be a standard before I'd use that.
>
> You want to reject the mail before it's queued. I like the idea, but
> that's
> more difficult to implement...
>
> I wonder how many MTAs would let you do this:
>
> - set up a mail for lists only
> - set up terribly-aggressive blocking with DNSBLs and other things (like
>   requiring the reverse DNS), *only for that address*. Other addresses
>   would not go through such restrictive tests.
>

I hope postfix does. I'm pretty sure it will, since it supports external
mapping programs. I don't know how complicated it will be, but I'm hoping
it's like this:

RECPT TO: user
User has entries in ~/.safe-list-only?
Does the data from MAIL FROM or HELO match an entry in the list?
Does the reverse DNS and forward DNS for the HELO match the list?
250 OK
else
550 Error message.

>> The latest churn on debian-user about Spam hasn't been UCE spam. It's
>> been
>> worm spam. I don't know anyone personally who likes to recieve
>> WORM/Virus
>> code in their inbox but it persists. I don't see a near-term solution
>> for
>> convincing the individuals who write this code.
>
> Right, I forgot about that.
>
> Anyway... Blocking servers wouldn't help in the case of viruses, I think.
> Ordinary people get viruses, and the mail is sent through their (probably
> correctly configured) smarthost. Maybe something like Postfix
> header_checks? But that would also require some work :-(
>

My normal email address that was in my windoze using friend's outlook
express address book would still be vulnerable to email from the virus
running on his computer.

My list-only email address would be sitting pretty costing the mail server
very little by rejecting all email including ones generated by a friend or
some other mailing list subscriber. The only virus mail it should get is
the stuff that makes it through the mailing list server, and Debian's
servers do a very good job at filtering this. Since this address is the
one spread across usenet and many subscriber's address books, I think it
is the more important one to be restrictive with.

-- 
Jacob
Trying out SquirrelMail

Reply to:

References:
- Anti-Spam ideas for usenet/list harvested email addresses
  - From: "Jacob Anawalt" <jacob@cachevalley.com>
- Re: Anti-Spam ideas for usenet/list harvested email addresses
  - From: pellegrini@mpcnet.com.br (Jeronimo Pellegrini)
- Re: Anti-Spam ideas for usenet/list harvested email addresses
  - From: "Jacob Anawalt" <jacob@cachevalley.com>
- Re: Anti-Spam ideas for usenet/list harvested email addresses
  - From: pellegrini@mpcnet.com.br (Jeronimo Pellegrini)

Prev by Date: amavisd-new mime_decode failed error
Next by Date: Re: MS mail bombs
Previous by thread: Re: Anti-Spam ideas for usenet/list harvested email addresses
Next by thread: Re: Anti-Spam ideas for usenet/list harvested email addresses
Index(es):
- Date
- Thread