IETF Logo Mail Archive

Re: [Asrg] Some data on the validity of MAIL FROM addresses

Vernon Schryver <vjs@calcite.rhyolite.com> Wed, 21 May 2003 05:14 UTC

Received: from www1.ietf.org (ietf.org [132.151.1.19] (may be forged)) by ietf.org (8.9.1a/8.9.1a) with ESMTP id BAA12395 for <asrg-archive@odin.ietf.org>; Wed, 21 May 2003 01:14:15 -0400 (EDT)
Received: (from mailnull@localhost) by www1.ietf.org (8.11.6/8.11.6) id h4L4eqP02973 for asrg-archive@odin.ietf.org; Wed, 21 May 2003 00:40:52 -0400
Received: from ietf.org (odin.ietf.org [132.151.1.176]) by www1.ietf.org (8.11.6/8.11.6) with ESMTP id h4L4eqB02970 for <asrg-web-archive@optimus.ietf.org>; Wed, 21 May 2003 00:40:52 -0400
Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id BAA12389; Wed, 21 May 2003 01:13:44 -0400 (EDT)
Received: from ietf-mx ([132.151.6.1]) by ietf-mx with esmtp (Exim 4.12) id 19ILtn-000374-00; Wed, 21 May 2003 01:12:23 -0400
Received: from ietf.org ([132.151.1.19] helo=www1.ietf.org) by ietf-mx with esmtp (Exim 4.12) id 19ILtm-000371-00; Wed, 21 May 2003 01:12:22 -0400
Received: from www1.ietf.org (localhost.localdomain [127.0.0.1]) by www1.ietf.org (8.11.6/8.11.6) with ESMTP id h4L4ZAB01929; Wed, 21 May 2003 00:35:10 -0400
Received: from ietf.org (odin.ietf.org [132.151.1.176]) by www1.ietf.org (8.11.6/8.11.6) with ESMTP id h4L4YxB01905 for <asrg@optimus.ietf.org>; Wed, 21 May 2003 00:34:59 -0400
Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id BAA12328 for <asrg@ietf.org>; Wed, 21 May 2003 01:07:52 -0400 (EDT)
Received: from ietf-mx ([132.151.6.1]) by ietf-mx with esmtp (Exim 4.12) id 19ILo6-00035l-00 for asrg@ietf.org; Wed, 21 May 2003 01:06:30 -0400
Received: from calcite.rhyolite.com ([192.188.61.3]) by ietf-mx with esmtp (Exim 4.12) id 19ILo5-00035i-00 for asrg@ietf.org; Wed, 21 May 2003 01:06:30 -0400
Received: (from vjs@localhost) by calcite.rhyolite.com (8.12.9/8.12.9) id h4L57j9Y025592 for asrg@ietf.org env-from <vjs>; Tue, 20 May 2003 23:07:45 -0600 (MDT)
From: Vernon Schryver <vjs@calcite.rhyolite.com>
Message-Id: <200305210507.h4L57j9Y025592@calcite.rhyolite.com>
To: asrg@ietf.org
Subject: Re: [Asrg] Some data on the validity of MAIL FROM addresses
References: <p06001315baf07dafd8d6@[192.168.1.104]>
Sender: asrg-admin@ietf.org
Errors-To: asrg-admin@ietf.org
X-BeenThere: asrg@ietf.org
X-Mailman-Version: 2.0.12
Precedence: bulk
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/asrg>, <mailto:asrg-request@ietf.org?subject=unsubscribe>
List-Id: Anti-Spam Research Group - IRTF <asrg.ietf.org>
List-Post: <mailto:asrg@ietf.org>
List-Help: <mailto:asrg-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/asrg>, <mailto:asrg-request@ietf.org?subject=subscribe>
List-Archive: <https://www1.ietf.org/pipermail/asrg/>
Date: Tue, 20 May 2003 23:07:45 -0600

> From: Kee Hinckley <nazgul@somewhere.com>

> We've been through this before.

Really?  I must have been asleep, because I don't remember.

> Spam is in the eye of the beholder.
> Therefore some spam filtering rules need to be per-user.
> Milter's (and many other systems) don't give you enough information 
> to determine who the final recipient is--not to mention that their 
> may be more than one, with different standards.
> Therefore it is not always possible to reject things at the SMTP level.
> But yes, everyone agrees that you should if you can.
> Therefore--encourage it, but don't depend on it.
> Can we move on?

You can move whenever and wherever you wish.  I prefer to move with
an accurate map instead of capricious prejudice.

In fact the sendmail milter interface generally gives sufficient
information for per-user rules during the SMTP transaction.  That's
how the DCC sendmail-milter interface, dccm, is able to support per-user
white/blacklists.  The DCC source even includes a CGI interface for
user point-and-click fiddling with per-user white/blacklists based on
per-user directories of suspect messages.  That no DCC users like it
even enough to say it needs improvement suggests I'm an exceptionally
bad GUI designer.

I don't know but assume that the SpamAssassin milter interfaces (I
think there are two) use the same information for per-user rules and
scoring; it certainly could.  I don't know but suspect the milter
mechanism does not handle .forward files, but I don't think that's a
significant problem.  The milter mechanism handles alias files and at
least some other things that cause sendmail to forward the message
elsewhere in the sense of telling the milter filter program as much.

The biggest practical problems I can think of for per-user filters
using the milter mechanism are that sendmail wants to do things
with the UID "daemon" or equivalent and that the SMTP protocol
doesn't let the SMTP server answer the DATA command with "250-ok
for Rcpt #1, 550-spam for Rcpt #2, and 450-try-later for Rcpt #3."

Moreover, whether some or all current MTAs do or don't give you enough
information to determine the final recipient is an implementation
choice that is irrelevant here.  The BCP and long standing recommendation
and practice that an MTA should figure out the validity of each Rcpt_To
value as it is presented implies that an MTA designer ought to have
the final recipient figured out before saying "250 OK" or "550 Bad".


Vernon Schryver    vjs@rhyolite.com
_______________________________________________
Asrg mailing list
Asrg@ietf.org
https://www1.ietf.org/mailman/listinfo/asrg

v2.30.2 | Report a Bug | By Email | System Status