From owner-freebsd-questions@FreeBSD.ORG Mon Mar 21 10:18:41 2005 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E2F1316A4CE; Mon, 21 Mar 2005 10:18:41 +0000 (GMT) Received: from mindfields.energyhq.es.eu.org (73.Red-213-97-200.pooles.rima-tde.net [213.97.200.73]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1C2CF43D31; Mon, 21 Mar 2005 10:18:40 +0000 (GMT) (envelope-from flynn@energyhq.es.eu.org) Received: from scienide.energyhq.es.eu.org (scienide.energyhq.es.eu.org [IPv6:2001:470:1f01:198:210:4bff:fe3d:e256]) by mindfields.energyhq.es.eu.org (Postfix) with SMTP id 35CB1355EB; Mon, 21 Mar 2005 11:18:37 +0100 (CET) Date: Mon, 21 Mar 2005 11:18:23 +0100 From: Miguel Mendez To: Greg 'groggy' Lehey Message-Id: <20050321111823.2154e565.flynn@energyhq.es.eu.org> In-Reply-To: <20050321035946.GH79501@wantadilla.lemis.com> References: <20050321001225.GA30997@xor.obsecurity.org> <01a701c52dae$bed8dd10$1200a8c0@gsicomp.on.ca> <20050321025018.GA99877@xor.obsecurity.org> <20050321035946.GH79501@wantadilla.lemis.com> X-Mailer: Sylpheed version 1.9.5 (GTK+ 2.6.4; i386-portbld-freebsd5.4) Mime-Version: 1.0 Content-Type: multipart/signed; protocol="application/pgp-signature"; micalg="PGP-SHA1"; boundary="Signature=_Mon__21_Mar_2005_11_18_23_+0100_Zg168VLnyFMUog+6" cc: apeiron+usenet@coitusmentis.info cc: freebsd-questions@freebsd.org cc: kris@obsecurity.org Subject: Re: Ebay Phishing X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 21 Mar 2005 10:18:42 -0000 --Signature=_Mon__21_Mar_2005_11_18_23_+0100_Zg168VLnyFMUog+6 Content-Type: text/plain; charset=US-ASCII Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Mon, 21 Mar 2005 14:29:46 +1030 Greg 'groggy' Lehey wrote: > Indeed. I do, and it blocks an amazing amount of spam. That's the wrong way to deal with spam, Greg. Greylisting and SPF checks are a much better solution. =20 > I do have the courtesy to say "please use your ISP's mail server" in > the error reply. Well, as pointed out before, that's not always possible. My ISP doesn't allow any mail with a from !=3D terra.es to pass through their mail servers. Not only that, but they will silently drop e-mail without telling you. Their POP3 server is also broken half of the time, that's why I gave up on using their mail (and dns as well) service years ago. Modulo that, the service is good enough and I've had less than a few hours of outage in 5 years, so I don't have any plans of moving to another ISP. When people reject my mail (which comes from a static IP, gpg-signed and from a host that publishes SPF records) I simply add them to my / etc/postfix/access file, so I don't waste time reading and replying to mail that won't reach its destinantion. It's that simple :) I've tried several setups to stop spam. I get about 150/day or so. I discovered that 99% of them were coming from Windows boxes. So, if you have PF you can do tricks like this: rdr on $ext_if proto tcp from any os "Windows" to any port smtp -> 127.0.0.1 port 8025 And have all those mails end up in spamd's tarpit. However, this might send legit mail there, so I stopped using that too. I just let spamassassin do its job. Cheers, --=20 Miguel Mendez http://www.energyhq.es.eu.org PGP Key: 0xDC8514F1 --Signature=_Mon__21_Mar_2005_11_18_23_+0100_Zg168VLnyFMUog+6 Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.0 (FreeBSD) iD8DBQFCPp9xnLctrNyFFPERAoifAJ9D01ylFEuVXb533tnMMfALXsd2IgCfcrSE zvyHyvQLjIdqV9BYYerSjEE= =9XPz -----END PGP SIGNATURE----- --Signature=_Mon__21_Mar_2005_11_18_23_+0100_Zg168VLnyFMUog+6--