From owner-freebsd-hackers Sat May 3 00:55:54 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id AAA18035 for hackers-outgoing; Sat, 3 May 1997 00:55:54 -0700 (PDT) Received: from mixcom.mixcom.com (mixcom.mixcom.com [198.137.186.100]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id AAA18030 for ; Sat, 3 May 1997 00:55:52 -0700 (PDT) Received: by mixcom.mixcom.com (8.6.12/2.2) id CAA07911; Sat, 3 May 1997 02:58:23 -0500 Received: from p75.mixcom.com(198.137.186.25) by mixcom.mixcom.com via smap (V1.3) id sma007824; Sat May 3 02:57:56 1997 Message-Id: <3.0.32.19970503025730.00b0b99c@mixcom.com> X-Sender: sysop@mixcom.com X-Mailer: Windows Eudora Pro Version 3.0 (32) Date: Sat, 03 May 1997 02:57:31 -0500 To: "Daniel O'Callaghan" From: "Jeffrey J. Mountin" Subject: Re: SPAM target Cc: FreeBSD-Hackers@FreeBSD.ORG Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-hackers@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk At 03:48 PM 5/3/97 +1000, Daniel O'Callaghan wrote: >Only until the rats learn the new maze - all they have to do there is to >give a real domain with a fake user. e.g. nobody@lon3.melbourne.telstra.net. They do this already. >So then you teach sendmail to attempt to verify the user in the From: > >MAIL FROM: >{hang on a tick, connect hilink.com.au, HELO, MAIL FROM: , >RCPT TO: , 250 RCPT OK, QUIT} >Now, what were you saying... > >So then they take the first bunny in the list of spam addresses and make >him the apparent sender. :-( If you allow vrfy that is. Also need to block receipts too. Hmmm.... have to look, such a check could be built in to our proxy. >The only real solution is the removal of SMTP and a new MTP which >requires everyone in the world to have a signing certificate from a >recognised CA. Yes this would be good... don't know a whole lot about IPv6, but isn't this problem addressed? Along with "proper" setup of services. ------------------------------------------- Jeff Mountin - System/Network Administrator jeff@mixcom.net MIX Communications Serving the Internet since 1990