From owner-freebsd-chat  Tue Feb 26 14:18:11 2002
Delivered-To: freebsd-chat@freebsd.org
Received: from picard.skynet.be (picard.skynet.be [195.238.3.131])
	by hub.freebsd.org (Postfix) with ESMTP
	id 9BFBE37B417; Tue, 26 Feb 2002 14:17:59 -0800 (PST)
Received: from [10.0.1.18] (ip-27.shub-internet.org [194.78.144.27] (may be forged))
	by picard.skynet.be (8.11.6/8.11.6/Skynet-OUT-2.16) with ESMTP id g1QMHn828090;
	Tue, 26 Feb 2002 23:17:49 +0100 (MET)
	(envelope-from <brad.knowles@skynet.be>)
Mime-Version: 1.0
X-Sender: bs663385@pop.skynet.be
Message-Id: <p05101412b8a1b7f575cb@[10.0.1.18]>
In-Reply-To: <3C7B5076.435E3B8@mindspring.com>
References: 
 <Pine.LNX.4.43.0202251413410.25937-100000@pilchuck.reedmedia.net>
 <3C7AC400.B8F3E9FC@mindspring.com>
 <20020225174520.L47910@over-yonder.net>
 <3C7AEC08.223E422C@mindspring.com>
 <20020225224754.G52727@blossom.cjclark.org>
 <3C7B5076.435E3B8@mindspring.com>
X-Grok: +++ath
X-WebTV-Stationery: Standard; BGColor=black; TextColor=black
Reply-By: Wed,  1 Jan 1984 12:34:56 +0100
X-Message-Flag: Outlook : A program to spread viri via e-mail.  Try Eudora (http://www.eudora.com/), mutt (http://www.mutt.org/), or pine (http://www.washington.edu/pine/).  But please, get something other than Outlook.
Date: Tue, 26 Feb 2002 23:17:48 +0100
To: Terry Lambert <tlambert2@mindspring.com>,
	"Crist J. Clark" <cjc@FreeBSD.ORG>
From: Brad Knowles <brad.knowles@skynet.be>
Subject: Re: blocked mail
Cc: "Matthew D. Fuller" <fullermd@over-yonder.net>,
	"Jeremy C. Reed" <reed@reedmedia.net>,
	FreeBSD Chat <chat@FreeBSD.ORG>
Content-Type: text/plain; charset="us-ascii" ; format="flowed"
Sender: owner-freebsd-chat@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-chat.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-chat>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-chat>
X-Loop: FreeBSD.org

At 1:08 AM -0800 2002/02/26, Terry Lambert wrote:

>  I can't remember the "README" and M4 source code right now,
>  but there is an option to permit a MAIL FROM check to make
>  sure that the EHLO host (peername) is an MX for the from
>  domain.

	Looking at the macros for sendmail 8.12.2, the only ones I find are:

		FallbackMXhost
		TryNullMXList
			# if we are the best MX host for a site, try it
			# directly instead of config err
		_RELAY_MX_SERVED_
			# do "we" ($=w) act as backup MX server for the
			# destination domain?
		_BESTMX_IS_LOCAL_


>  Basically, if it can be checked, you should assume that
>  someone is checking it.

	I don't see anything anywhere of the sort that you are talking 
about.  Certainly, you can write your own rules to do this sort of 
thing, as I have done in the past.  But I don't see anything here to 
make this automatic, or even make the life easier of the admin who is 
creating the config.

>  Weird-ass DNS setups that break the ability to check are
>  expected to break, even if they are called out as legal
>  in a proposed standard.

	In this modern world of spam, this statement is certainly true. 
Doing something like this would certainly slow down the accepting of 
mail from remote sites, but it would help you avoid effluent from a 
certain category of sources.

-- 
Brad Knowles, <brad.knowles@skynet.be>

Do you hate Microsoft?  Do you hate Outlook?  Then visit the Anti-Outlook
page at <http://www.rodos.net/outlook/> and see how much fun you can have.

"They that can give up essential liberty to obtain a little temporary
safety deserve neither liberty nor safety."
     -Benjamin Franklin, Historical Review of Pennsylvania.

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-chat" in the body of the message