****Re: [OT] HELP!!! mail attack
John Summerfield
debian at herakles.homelinux.org
Fri Mar 28 03:45:53 UTC 2008
Craig White wrote:
>
>
> You are correct of course, that nowhere does it state that sender MUST attempt to re-deliver. I do wonder if you would find an SMTP server that by default didn't attempt re-delivery on temporary failures to be acceptable. It MUST be configurable - that's it.
Okay, so Tim wasn't sure, but now we agree retrying, while it might be
good practice isn't essential.
I've just done a "host -t mx" for several companies. Most have four mail
exchangers, one had a dozen. While those are for incoming email, it's
likely that they generally have a similar number for outgoing email.
Without information, I assume that to be so. In many cases they will be
the same machine.
I don't know what their retrying policies are, but I can imagine that
retrying might involve an attempt by each of several machines, each
getting a 4XY response.
It might be a lengthy delay, it might result in email getting returned
to sender.
Tim is right in his belief that greylisting can cause delivery problems.
You don't have to think it's as big a problem as he does, but I don't
criticise him for seeing it as a risk he doesn't want to take.
Here is one list of recommended delays between retries:
http://www.mailenable.com/Help/Files/smtpdelivery.htm
The use of fake mx records suggested here looks enticing:
http://wiki.apache.org/spamassassin/OtherTricks
I discontinued using a second mx because it seemed only to receive spam,
and senders _should_ retry if I'm not listening.
--
Cheers
John
-- spambait
1aaaaaaa at coco.merseine.nu Z1aaaaaaa at coco.merseine.nu
-- Advice
http://webfoot.com/advice/email.top.php
http://www.catb.org/~esr/faqs/smart-questions.html
http://support.microsoft.com/kb/555375
You cannot reply off-list:-)
More information about the fedora-list
mailing list