North American Network Operators Group

Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical

RE: Anti-spam System Idea

  • From: Timothy R. McKee
  • Date: Mon Feb 16 16:21:19 2004

Personally I don't see where ingress filters that only allow registered 
SMTP servers to initiate TCP connections on port 25 is irresponsible.

Any user sophisticated enough to legitimately require a running SMTP server 
should also have the sophistication to create a dns entry and register it
his upstream in whatever manner is required.
There will never be a painless or easy solution to this problem, only a 
choice where we select the lesser of all evils.


-----Original Message-----
From: Petri Helenius [mailto:[email protected]] 
Sent: Monday, February 16, 2004 16:06
To: Timothy R. McKee
Cc: 'J Bacher'; [email protected]
Subject: Re: Anti-spam System Idea

Timothy R. McKee wrote:

>There will *never* be a concerted action by all service providers to 
>filter ingress/egress on abused ports unless there is a legal 
>requirement to do so.  Think 'level playing field'...
Haven�t it been stated enough times previously that blindly blocking ports
is irresponsible?

There are ways to similar, if not more accurate results without resorting to
shooting everything that moves.