No DNS consistency checks in Debian spam filter?

To: debian-user@lists.debian.org
Subject: No DNS consistency checks in Debian spam filter?
From: Mike Bird <mgb@yosemite.net>
Date: Tue, 8 Jan 2008 09:20:15 -0800
Message-id: <[🔎] 200801080920.15282.mgb@yosemite.net>

The single most powerful and most efficient spam filter test is to
verify DNS consistency.  Judging by the spam now swamping
these lists, Debian does not employ such a test.

In Postfix, including reject_unknown_client_hostname at an
appropriate spot in smtpd_client_restrictions does the trick.

Alternatively, us old PERL bashers iterate over all PTR records
for the IP address, and for each of those PTR records we iterate
over all the A records, and we only accept the connection if at
least one of those A records contains the connecting IP.

Unfortunately, once Debian has accepted this garbage and
forwarded it to a million victims, its much harder to block.

--Mike Bird

Reply to:

Follow-Ups:
- Re: No DNS consistency checks in Debian spam filter?
  - From: John Hasler <jhasler@debian.org>

Prev by Date: Time clock software
Next by Date: Re: What's your tools for C++ dev?
Previous by thread: Re: Time clock software
Next by thread: Re: No DNS consistency checks in Debian spam filter?
Index(es):
- Date
- Thread