[100154] in RedHat Linux List
Re: SPAM headers.
daemon@ATHENA.MIT.EDU (Simon J Mudd)
Wed Nov 18 17:15:14 1998
To: redhat-list@redhat.com
From: Simon J Mudd <sjmudd@bitmailer.net>
Date: 18 Nov 1998 21:16:03 +0100
In-Reply-To: Ramon Gandia's message of 18 Nov 1998 18:03:52 +0100
Resent-From: redhat-list@redhat.com
Reply-To: redhat-list@redhat.com
Hi Ramon,
Ramon Gandia <rfg@nook.net> writes:
> In the Mail Headers I see the difference:
>
> --------------------------------------------
> Delivered-To: rfg@nook.net
> To: makemoneyfromhome@everywhere.com
>
> --------------------------------------------
>
> Please note that this spam and header info are VERY typical.
> In fact, over the last 6 months or so, of all the SPAM that
> I got, exactly 100% of it shared this characteristic:
>
> The To: has some bogus name, which is the one that shows,
> whereas in the header the Delivered-To: header has my real
> email address.
>
> Conversely, I have never received a LEGITIMATE email that
> had a bogus To: address.
Depends what you define bogus: if you define bogus as Delivered-To:
<> To: then you are going to have lots of potential problems.
I have more than one account and using a .forward file to send mail
to my main account. Thus the To: line has no relationship to the
Delivered-To: line. You'd have to have a long list of
- mail lists
- your other aliases
to let all valid mail in, and if you send the rest to /dev/null you may
miss stuff you want to see.
> Now it seems to me that it would be dead easy to do one of
> several things to Zap a lot SPAM right off the bat. Either
> system-wide (within Nook Net), or at least personally to me.
If you do it domain-wide then you need control of the MTA and can setup the
complications you like. Sendmail can be setup quite strict, and one often
good thing is to use the RBL options which work quite well. Sendmail can
be very anti-spam, but it is difficult to configure well.
At the personal level procmail is probably the best thing to use, but you've
already accepted the mail anyway. If your account is with a provider,
perhaps you should be bugging them to make their MTA less spam-friendly,
but at the same time hoping they won't produce false-positives (rejecting
mail which isn't spam). This can be (very) difficult.
> Now, my question to Red Hatters is this. What tool is available
> to do this? Surely there has to be one. Most of you run
> Sendmail,
> Alas, I run Qmail here, but I think that one solution that works
> with one will be adaptable to the other.
You should be hearing of this soon, but try Postfix, an alpha mailer
I've been testing for the last few months, previously known as vmailer.
It's written by the author of tcp_wrappers, and is both fast, secure
and easy to configure. When postfix betas become officially announced
I think it's almost certain you'll find rpms on contrib.redhat.com,
and hopefully you shouldn't have to wait very long. Postfix is
pretty sendmail compatible as far as applications using the "binary"
are concerned, but the configuration files are different but easy
to understand, and flexible. ( There are only 2 ).
[ See http://www.porcupine.org for more info ]
> I would also like some input from Red Hatters if my premise
> that a Delivered-To: header that has no relationship to the
> To: header = SPAM. I am sure I am right, and I am sure there
If you avoid mailing list deliveries, and alias deliveries, then MOST
of the time this may be true. But not all of the time.
Simon
--
Simon J Mudd, Madrid SPAIN Tel: +34-91-559 2854 email: sjmudd@bitmailer.net
[short messages - from radio hams only] ----> ea4els@ea4els.ampr.org
--
PLEASE read the Red Hat FAQ, Tips, Errata and the MAILING LIST ARCHIVES!
http://www.redhat.com http://archive.redhat.com
To unsubscribe: mail redhat-list-request@redhat.com with
"unsubscribe" as the Subject.
