Date: Mon, 2 May 2011 10:41:59 +0400 From: cronfy <cronfy@gmail.com> To: freebsd-security@freebsd.org, gosand1982@yahoo.com Subject: Re: limiting pop access to gmail servers ? Message-ID: <BANLkTikEoddderju8un4jRouVWDBvPPZ8g@mail.gmail.com> In-Reply-To: <3FF47F45-A59F-4542-A65E-6069300D9224@patpro.net> References: <349555.87646.qm@web120019.mail.ne1.yahoo.com> <3FF47F45-A59F-4542-A65E-6069300D9224@patpro.net>
next in thread | previous in thread | raw e-mail | index | archive | help
Hi, > BUT, I suspect there are a LOT of possible IPs that google will use to po= p > mail > > from us ... > > You are right about that. According to my pop logs, my servers have > encounter about 1000 different IPs from google (920 actually). > Domain names are always like mail-[a-z][a-z][0-9]-[a-z][0-9][0-9]*. > google.com > By the way, I'm in europe, I'm not sure USA, Australia or Japan would see > the same gmail POP clients. > You can make active checks for incoming connections. If reverse DNS record is valid (ip -> resolves to name -> resolves to same ip) and it matches '.* google.com$' regexp, then it is Google. --=20 =D0=9E=D0=BB=D0=B5=D0=B3 =D0=9F=D0=B5=D1=82=D1=80=D0=B0=D1=87=D0=B5=D0=B2
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?BANLkTikEoddderju8un4jRouVWDBvPPZ8g>