Incidents
Massive SPAM Increase Oct 06 2006 11:02PM
Alex (incidents alex gotdns org) (2 replies)
Re: Massive SPAM Increase Oct 09 2006 05:01AM
jim barchuk (jb jbarchuk com) (1 replies)
Re: Massive SPAM Increase Oct 09 2006 11:00PM
Graeme Fowler (G E Fowler lboro ac uk)
Re: Massive SPAM Increase Oct 08 2006 09:30PM
Kurt Seifried (bt seifried org) (1 replies)
Re: Massive SPAM Increase {-2.6} Oct 09 2006 01:15AM
Vini Engel (vini fugspbr org) (1 replies)
Re: Massive SPAM Increase {-2.6} Oct 09 2006 04:06AM
Kurt Seifried (bt seifried org) (1 replies)
Re: Massive SPAM Increase {-2.6} {-2.6} Oct 09 2006 05:06AM
Vini Engel (vini fugspbr org) (1 replies)
Re: Massive SPAM Increase {-2.6} {-2.6} Oct 09 2006 06:33PM
Paul Schmehl (pauls utdallas edu) (3 replies)
Re: Massive SPAM Increase {-2.6} {-2.6} Oct 14 2006 02:46AM
Valdis Kletnieks vt edu (1 replies)
Re: ***SPAM*** Re: Massive SPAM Increase {-2.6} {-2.6} Oct 14 2006 03:52AM
Paul Schmehl (pauls utdallas edu) (3 replies)
Re: ***SPAM*** Re: Massive SPAM Increase {-2.6} {-2.6} Oct 17 2006 01:20AM
Jamie Riden (jamesr europe com)
On 14/10/06, Paul Schmehl <pauls (at) utdallas (dot) edu [email concealed]> wrote:
> --On October 13, 2006 10:46:34 PM -0400 Valdis.Kletnieks (at) vt (dot) edu [email concealed] wrote:
>
> > On Mon, 09 Oct 2006 13:33:12 CDT, Paul Schmehl said:
> >
> > (Digging out from a long week of other stuff, sorry for the late
> > response)
> >
> >> Its purpose is to reject *all* mail from bogus MTAs - dialups,
> >> misconifigured servers, MTAs that aren't registered in the domains' DNS
> >> as a "legal" MX, MTAs that don't reverse properly, etc., etc. If the
> >> email is
> >
> > "mta that aren't registered in the DNS as a "legal" MX" - tell me Paul,
> > how does that work with any site that's big enough that they run split
> > inbound MX and outbound servers?
> >
> Send me an email at geek (at) stovebolt (dot) com [email concealed], and I'll tell you.
>
> I'm not sure what you mean by "split inbound and outbound", but any
> outbound MX host *should* be listed in DNS. You only list one -
> smtp.vt.edu. 192.82.162.213 is reversible, so it would get points for
> being honest about its IP/hostname, but it would lose points for not being
> listed in DNS as an MX. The overall score would determine if the mail was
> rejected, but I doubt that it would be.

Hi Paul,

For example, my old uni used to send outgoing mail from
its-mail1.massey.ac.nz, but MXs are mu-relay{1,2}.massey.ac.nz. The
only place that its-mail1 gets mentioned in the DNS is in the SPF
record, not MX. Presumably that's what you meant by 'outbound MX
host'?

cheers,
Jamie
--
Jamie Riden, CISSP / jamesr (at) europe (dot) com [email concealed] / jamie.riden (at) gmail (dot) com [email concealed]
NZ Honeynet project - http://www.nz-honeynet.org/

------------------------------------------------------------------------
------
This List Sponsored by: Black Hat

Attend the Black Hat Briefings & Training USA, July 29-August 3 in Las Vegas.
World renowned security experts reveal tomorrow's threats today. Free of
vendor pitches, the Briefings are designed to be pragmatic regardless of your
security environment. Featuring 36 hands-on training courses and 10 conference
tracks, networking opportunities with over 2,500 delegates from 40+ nations.

http://www.blackhat.com
------------------------------------------------------------------------
------

[ reply ]
Re: ***SPAM*** Re: Massive SPAM Increase {-2.6} {-2.6} Oct 16 2006 05:04PM
benfell raven cybernude org (2 replies)
Re: ***SPAM*** Re: Massive SPAM Increase {-2.6} {-2.6} Oct 16 2006 05:38PM
Paul Schmehl (pauls utdallas edu) (1 replies)
Re: ***SPAM*** Re: Massive SPAM Increase {-2.6} {-2.6} Oct 17 2006 01:44AM
gabriel rosenkoetter (gr eclipsed net)
Re: ***SPAM*** Re: Massive SPAM Increase {-2.6} {-2.6} Oct 16 2006 05:29PM
Valdis Kletnieks vt edu
Re: ***SPAM*** Re: Massive SPAM Increase {-2.6} {-2.6} Oct 14 2006 05:44AM
Valdis Kletnieks vt edu (1 replies)
Re: ***SPAM*** Re: ***SPAM*** Re: Massive SPAM Increase {-2.6} {-2.6} Oct 14 2006 05:17PM
Paul Schmehl (pauls utdallas edu) (2 replies)
Re: ***SPAM*** Re: ***SPAM*** Re: Massive SPAM Increase {-2.6} {-2.6} Oct 17 2006 01:59AM
Dude VanWinkle (dudevanwinkle gmail com)
Re: Massive SPAM Increase Oct 16 2006 03:57PM
gabriel rosenkoetter (gr eclipsed net) (1 replies)
Re: Massive SPAM Increase Oct 17 2006 01:33AM
Jamie Riden (jamesr europe com)
Re: Massive SPAM Increase {-2.6} {-2.6} Oct 09 2006 11:09PM
Graeme Fowler (G E Fowler lboro ac uk) (1 replies)
Re: Re: Massive SPAM Increase {-2.6} {-2.6} Oct 09 2006 11:43PM
Luke Burton (luke burton echidna id au) (1 replies)
Re: Massive SPAM Increase Oct 10 2006 07:44PM
Tillmann Werner (tillmann werner gmx de)
Re: Massive SPAM Increase {-2.6} {-2.6} Oct 09 2006 09:29PM
Tim (tim-forensics sentinelchicken org) (2 replies)
Re: Massive SPAM Increase {-2.6} {-2.6} Oct 09 2006 10:33PM
Paul Schmehl (pauls utdallas edu) (2 replies)
Re: Massive SPAM Increase {-2.6} {-2.6} Oct 09 2006 11:48PM
Tim (tim-forensics sentinelchicken org)
Re: Massive SPAM Increase {-2.6} {-2.6} Oct 09 2006 10:47PM
Nathaniel Hall (nathaniel d hall gmail com)
Re: Massive SPAM Increase {-2.6} {-2.6} Oct 09 2006 10:28PM
Brent Kearney (brent kearneys ca) (1 replies)
Re: Massive SPAM Increase {-2.6} {-2.6} Oct 09 2006 10:38PM
Paul Schmehl (pauls utdallas edu)


 

Privacy Statement
Copyright 2010, SecurityFocus