North American Network Operators Group

Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical

Re: Verizon is easily fooled by spamming zombies

  • From: Valdis.Kletnieks
  • Date: Wed Jun 01 14:12:56 2005

On Wed, 01 Jun 2005 20:51:17 +0400, Gadi Evron said:

> > If the ISP wants to use SMTP AUTH or other mechanisms to lower abuse, 
> > that's fine.  But to say "only allow from addresses - but  allow
> > them from anywhere on the 'Net" is kinda ... silly.
> No, it makes perfect sense but that is the one thing I fear we'll have
> to agree to disagree on.

Nope, Patrick is right on this one.  The ruleset that appears to be in effect

"Anything from anywhere, even if it's from a hijacked box in Korea, can forward
through our server as long as it has a '[email protected]' From: on it,
but if one of our own customers tries to send through the server with a From:
that says '[email protected]' they can't even if they pass an SMTP AUTH
check and prove they're's customer..."

And that's borked and wrong.

> > The solution presented here is not only not a solution, it is also a 
> > problem.
> Okay, then I suppose I don't understand the problem. How exactly do you
> mean?

See above - would you consider forwarding mail from outside space
without an SMTP AUTH check just because it claims to be 'From'?

Attachment: pgp00001.pgp
Description: PGP signature