[11648] in North American Network Operators' Group
Re: Implementing anti-abuse techniques on ISP networks....
daemon@ATHENA.MIT.EDU (Andy Pitts)
Thu Aug 7 03:19:12 1997
Date: Thu, 7 Aug 1997 03:06:04 -0400 (EDT)
From: Andy Pitts <andy@rbdc.rbdc.com>
To: andy@rbdc.rbdc.com, jlewis@inorganic5.fdt.net
Cc: nanog@merit.edu
> From owner-nanog@merit.edu Wed Aug 6 19:10 EDT 1997
> Date: Wed, 6 Aug 1997 19:09:15 -0400 (EDT)
> From: Jon Lewis <jlewis@inorganic5.fdt.net>
> To: Andy Pitts <andy@rbdc.rbdc.com>
> cc: nanog@merit.edu
> Subject: Re: Implementing anti-abuse techniques on ISP networks....
> MIME-Version: 1.0
>
> On Wed, 6 Aug 1997, Andy Pitts wrote:
>
> > I too, am a small Internet Service Provider, and I too, don't want
> > to block sites that my users may want to access. But there seems
> > to be a few domains that do nothing but generate spam. Am I not
> > providing a service to my users if I prevent them from being
> > smothered with spam from those sites?
>
> The issue is that there are ISPs that have filters such that their dialup
> customers cannot talk to port 25/tcp of systems elsewhere on the net.
> Customers have to use the provider's SMTP servers. The question is, is
> this a good thing? I don't think anyone would argue against UUNet and PSI
> doing this with the *.ms.uu.net dialups or the *.pub-isp.psi.net...but
> would you do this on your own network?
>
> I've blocked 4 ms.uu.net /16's and 12 pub-isp.psi.net /24's from talking
> directly to FDT's mail servers. Unfortunately, most of the junk from PSI
> is relayed through other sites anyway.
I'm not blocking anyone from port 25, *but* I have installed the ruleset
in out sendmail to make it reject any mail that does not originale or
terminate in our domain. This put a halt to the rash or relaying problems
we had some months ago, but down not affect our users in any way.
--
Andy Pitts : "Knowledge is a deadly friend
andy@rbdc.rbdc.com : When no one sets the rules."
http://www.rbdc.com : --King Crimson--
