[81747] in North American Network Operators' Group
Re: ISP phishing
daemon@ATHENA.MIT.EDU (Robert Boyle)
Tue Jun 28 22:46:01 2005
Date: Tue, 28 Jun 2005 22:45:07 -0400
To: Paul Wouters <paul@xtdnet.nl>,
Brad Knowles <brad@stop.mail-abuse.org>
From: Robert Boyle <robert@tellurian.com>
Cc: Mark Tombaugh <mtombaugh@alliedcc.com>, nanog@merit.edu
In-Reply-To: <Pine.LNX.4.63.0506290130460.23579@newpack.xtdnet.nl>
Errors-To: owner-nanog@merit.edu
At 10:30 PM 6/28/2005, Paul Wouters wrote:
>> I applaud his move, and wish more groups did the same.
>
>It would have been better if he had just installed SPF, and published DNS
>records for his own domain, and rejected them based on that. Then other
>people receiving forged emails with his domain would also be able to just
>drop those emails.
Of course we already do this! Dig before you speak. :) However, we do not
filter our customer's email unless they turn on filtering. We tag
everything including SPF failures and customers can turn on rejection based
solely on SPF failures if they want, but that still doesn't help our users
who haven't turned on filtering. Our "admin|root|support|etc" filter
previously mentioned in this thread does. We do not have any ethical
problem filtering those messages since they are impersonating us. We
wouldn't presume that any other mail should be filtered unless a customer
requested for us to do so.
-Robert
Tellurian Networks - The Ultimate Internet Connection
http://www.tellurian.com | 888-TELLURIAN | 973-300-9211
"Well done is better than well said." - Benjamin Franklin
