[77725] in North American Network Operators' Group
Re: Time to check the rate limits on your mail servers
daemon@ATHENA.MIT.EDU (up@3.am)
Thu Feb 3 12:20:57 2005
Date: Thu, 3 Feb 2005 12:18:22 -0500 (EST)
From: up@3.am
To: nanog@merit.edu
In-Reply-To: <Pine.LNX.4.61.0502031604530.11593@mailbox.prolocation.net>
Errors-To: owner-nanog-outgoing@merit.edu
On Thu, 3 Feb 2005, Raymond Dijkxhoorn wrote:
> >> One additional thing that I think wasnt mentioned in the article -
> >> Make sure your MXs (inbound servers) are separate from your outbound
> >> machines, and that the MX servers dont relay email for your dynamic IP
> >> netblock. Some other trojans do stuff like getting the ppp domain name
>
> > That, on the other hand, gets you into trouble with rather stupid Spam
> > filters, that only accept mails from a server, if that server is also
> > MX for the senders domain.
> >
> > Yes, this is stupid, but that does not change the fact, that these
> > setups are out there.
>
> Start using authenticated SMTP for this.
Until the next bot implemented co-opts the pop3 client, or simply hacks
the password from the pop3 client (how strong is that encryption?).
James Smallacombe PlantageNet, Inc. CEO and Janitor
up@3.am http://3.am
=========================================================================
