Re: [Asrg] 0. General
Richard Rognlie <rrognlie@gamerz.net> Wed, 22 October 2003 04:10 UTC
Received: from optimus.ietf.org (ietf.org [132.151.1.19] (may be forged)) by ietf.org (8.9.1a/8.9.1a) with ESMTP id AAA26769 for <asrg-archive@odin.ietf.org>; Wed, 22 Oct 2003 00:10:32 -0400 (EDT)
Received: from localhost.localdomain ([127.0.0.1] helo=www1.ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 1ACAK3-0002E1-E5 for asrg-archive@odin.ietf.org; Wed, 22 Oct 2003 00:10:13 -0400
Received: (from exim@localhost) by www1.ietf.org (8.12.8/8.12.8/Submit) id h9M4ABfE008543 for asrg-archive@odin.ietf.org; Wed, 22 Oct 2003 00:10:11 -0400
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 1ACAK3-0002Di-99 for asrg-web-archive@optimus.ietf.org; Wed, 22 Oct 2003 00:10:11 -0400
Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id AAA26763 for <asrg-web-archive@ietf.org>; Wed, 22 Oct 2003 00:09:59 -0400 (EDT)
Received: from ietf-mx ([132.151.6.1]) by ietf-mx with esmtp (Exim 4.12) id 1ACAK0-0007YN-00 for asrg-web-archive@ietf.org; Wed, 22 Oct 2003 00:10:08 -0400
Received: from ietf.org ([132.151.1.19] helo=optimus.ietf.org) by ietf-mx with esmtp (Exim 4.12) id 1ACAK0-0007YK-00 for asrg-web-archive@ietf.org; Wed, 22 Oct 2003 00:10:08 -0400
Received: from localhost.localdomain ([127.0.0.1] helo=www1.ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 1ACAJt-00028b-GF; Wed, 22 Oct 2003 00:10:01 -0400
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 1ACAJe-00024S-P2 for asrg@optimus.ietf.org; Wed, 22 Oct 2003 00:09:46 -0400
Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id AAA26740 for <asrg@ietf.org>; Wed, 22 Oct 2003 00:09:35 -0400 (EDT)
Received: from ietf-mx ([132.151.6.1]) by ietf-mx with esmtp (Exim 4.12) id 1ACAJc-0007Y7-00 for asrg@ietf.org; Wed, 22 Oct 2003 00:09:44 -0400
Received: from www.gamerz.net ([66.92.144.25] helo=play.gamerz.net) by ietf-mx with esmtp (Exim 4.12) id 1ACAJb-0007Y4-00 for asrg@ietf.org; Wed, 22 Oct 2003 00:09:43 -0400
Received: from play.gamerz.net (localhost [127.0.0.1]) by play.gamerz.net (Switch-3.1.2/Switch-3.1.0) with ESMTP id h9M49hG0028905 (using TLSv1/SSLv3 with cipher EDH-RSA-DES-CBC3-SHA (168 bits) verified NO); Wed, 22 Oct 2003 00:09:43 -0400
Received: (from rrognlie@localhost) by play.gamerz.net (Switch-3.1.2/Switch-3.1.0/Submit) id h9M49hMA028904; Wed, 22 Oct 2003 00:09:43 -0400
From: Richard Rognlie <rrognlie@gamerz.net>
To: Markus Stumpf <maex-lists-spam-ietf-asrg@Space.Net>
Cc: asrg@ietf.org
Subject: Re: [Asrg] 0. General
Message-ID: <20031022040943.GL11687@gamerz.net>
References: <6.0.0.22.0.20031021115547.01c87838@mail.uniwares.com> <000001c39802$d4f553f0$19602241@viper1> <20031022035117.GF74735@Space.Net>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <20031022035117.GF74735@Space.Net>
User-Agent: Mutt/1.4i
Sender: asrg-admin@ietf.org
Errors-To: asrg-admin@ietf.org
X-BeenThere: asrg@ietf.org
X-Mailman-Version: 2.0.12
Precedence: bulk
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/asrg>, <mailto:asrg-request@ietf.org?subject=unsubscribe>
List-Id: Anti-Spam Research Group - IRTF <asrg.ietf.org>
List-Post: <mailto:asrg@ietf.org>
List-Help: <mailto:asrg-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/asrg>, <mailto:asrg-request@ietf.org?subject=subscribe>
List-Archive: <https://www1.ietf.org/mail-archive/working-groups/asrg/>
Date: Wed, 22 Oct 2003 00:09:43 -0400
On Wed, Oct 22, 2003 at 05:51:17AM +0200, Markus Stumpf wrote: > On Tue, Oct 21, 2003 at 02:40:41PM -0400, Denny Figuerres wrote: > > Well I am thinking of a few things... I just got a reply that mentioned > > "RMX" which sounds close to what I am thinking. > > http://www.ietf.org/internet-drafts/draft-danisch-dns-rr-smtp-02.txt > http://www.ietf.org/internet-drafts/draft-fecyk-dsprotocol-04.txt > http://www.ietf.org/internet-drafts/draft-brand-drip-02.txt > http://www.irtf.org/asrg/draft-vixie-repudiating-mail-from.txt > http://spf.pobox.com/draft-mengwong-spf-01.txt > http://nospam.couchpotato.net/ > > Choose one. They all break all sorts of existing Internet mail structure > like oversized DNS packets or totally breaking forwards. As one of the authors of DRIP, I protest. it does not break anything. it simply allows a site to check the validity of a connection coming from IP x.y.z.t and claiming to be mail.gamerz.net on the EHLO line It's not much of an anti-spam widget, but it is very useful for the malware virii that are wreaking such havoc on the net these days. e.g. as the owner of gamerz.net, I can specify in simple DNS A records that play.gamerz.net MUST be coming from 66.92.144.25 *.ipv4.relays._email_.play.gamerz.net. IN A 0.0.0.0 66_92_144_25.ipv4.relays._email_.play.gamerz.net. IN A 66.92.144.25 in addition, I can prevent any other use of anything ending in gamerz.net with the setting up of *.ipv4.relays._email_.gamerz.net. IN A 0.0.0.0 So now, a site using an MTA that is DRIP aware, gets HELO command claiming to be play.gamerz.net... if the IP is NOT 66.92.144.25, you can reject the msg (or use that info as part of your scoring or whatever). If you get a connection from foobar.gamerz.net, you'll lookup x_y_z_t.ipv4.relays._email_.foobar.gamerz.net and get NXDOMAIN one thing the draft recommends is that you strip the leading domain part and try again (in an effort to see if the domain supports DRIP at all) This time you'd look for x_y_z_t.ipv4.relays._email_.gamerz.net and get back 0.0.0.0. This tells you that gamerz.net support DRIP and that the HELO argument as stated is bogus. And remember, I'm not specifying that mail from rrognlie@gamerz.net has to come from "the" gamerz.net RMX... just taht the HELO line claiming to be play.gamerz.net (my MTA) must be the specified IP (or one of the specified IPs). So, we don't break forwarding at all. And I've been having quite good luck with blocking all kinds of mail directed at my domain claiming a HELO line of my domain (when the IPs in question have absolutely nothing to do with me). The miltered version of DRIP is available at ftp://ftp.gamerz.net/pub/dripmilter.pl -- / \__ | Richard Rognlie / Oracle Prophet / Gamerz.NET Lackey \__/ \ | http://www.gamerz.net/rrognlie/ <rrognlie@gamerz.net> / \__/ | \__/ | CAUTION: may contain Mature material......but I doubt it. _______________________________________________ Asrg mailing list Asrg@ietf.org https://www1.ietf.org/mailman/listinfo/asrg
- [Asrg] 0. General denny
- Re: [Asrg] 0. General Yakov Shafranovich
- Re: [Asrg] 0. General Andreas Saurwein
- FW: [Asrg] 0. General Denny Figuerres
- RE: [Asrg] 0. General Denny Figuerres
- Re: [Asrg] 0. General Walter Dnes
- Re: [Asrg] 0. General Markus Stumpf
- Re: [Asrg] 0. General Richard Rognlie
- Re: [Asrg] 0. General Kee Hinckley
- Re: [Asrg] 0. General Markus Stumpf
- Re: FW: [Asrg] 0. General Brad Knowles
- Re: [Asrg] 0. General Brad Knowles
- Re: [Asrg] 0. General Brad Knowles
- Re: FW: [Asrg] 0. General denny
- Re: [Asrg] 0. General Markus Stumpf
- Re: FW: [Asrg] 0. General Justin Mason
- Re: FW: [Asrg] 0. General David Maxwell
- Re: [Asrg] 0. General David Maxwell
- Re: FW: [Asrg] 0. General Justin Mason
- Re: [Asrg] 0. General Kee Hinckley
- Re: FW: [Asrg] 0. General David Maxwell
- Re: FW: [Asrg] 0. General David Maxwell
- Re: FW: [Asrg] 0. General Justin Mason
- Re: [Asrg] 0. General David Maxwell
- Re: [Asrg] 0. General Alan DeKok
- Re: FW: [Asrg] 0. General Markus Stumpf
- Re: [Asrg] 0. General Kee Hinckley
- Re: FW: [Asrg] 0. General David Maxwell
- Re: FW: [Asrg] 0. General Markus Stumpf
- Re: FW: [Asrg] 0. General Jon Kyme
- Re: FW: [Asrg] 0. General Mark E. Mallett
- Re: FW: [Asrg] 0. General David Maxwell
- 3. Requirements - Anonymity (was Re: FW: [Asrg] 0… Yakov Shafranovich
- [Asrg] 0. General - Recent Discussion Yakov Shafranovich
- 3. Requirements - Anonimity (was Re: FW: [Asrg] 0… Yakov Shafranovich
- 2a. Analysis - Source - Open Relays and Proxies (… Yakov Shafranovich
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… Alan DeKok
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… Yakov Shafranovich
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… Brian Adams
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… Alan DeKok
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… Florian Kunkel
- Re: FW: [Asrg] 0. General Brad Knowles
- 3. Requirements - Anomity (was Re: FW: [Asrg] 0. … Yakov Shafranovich
- Re: 3. Requirements - Anonymity (was Re: FW: [Asr… Yakov Shafranovich
- Re: 3. Requirements - Anonymity (was Re: FW: [Asr… Alan DeKok
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… Alan DeKok
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… Jon Kyme
- RE: 3. Requirements - Anonimity (was Re: FW: [Asr… Tom Thomson
- RE: 3. Requirements - Anonimity (was Re: FW: [Asr… Jonathan A. Zdziarski
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… Alan DeKok
- RE: 3. Requirements - Anonymity (was Re: FW: [Asr… Eric Dean
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… Jon Kyme
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… Jonathan A. Zdziarski
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… Alan DeKok
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… David Maxwell
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… Jonathan A. Zdziarski
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… Jonathan A. Zdziarski
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… David Maxwell
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… Jonathan A. Zdziarski
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… David Maxwell
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… Yakov Shafranovich
- Re: 3. Requirements - Anonymity (was Re: FW: [Asr… Yakov Shafranovich
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… Jonathan A. Zdziarski
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… Jonathan A. Zdziarski
- Re: 3. Requirements - Anonymity (was Re: FW: [Asr… Jonathan A. Zdziarski
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… Yakov Shafranovich
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… Jonathan A. Zdziarski
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… David Maxwell
- 4d. Consent Framework - Need (was Re: 3. Requirem… Yakov Shafranovich
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… Brad Knowles
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… Jonathan A. Zdziarski
- Re: 4d. Consent Framework - Need (was Re: 3. Requ… Jonathan A. Zdziarski
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… Alan DeKok
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… Dennis Gearon
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… Jonathan A. Zdziarski
- Re: [Asrg] 0. General David Maxwell
- Re: FW: [Asrg] 0. General David Maxwell
- [Asrg] Re: 2a. Analysis - Source - Open Relays an… Markus Stumpf
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… Jon Kyme
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… Markus Stumpf
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… Jon Kyme
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… Jonathan A. Zdziarski
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… Dennis Gearon
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… Dennis Gearon
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… Dennis Gearon
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… Brian Adams
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… Dennis Gearon
- Re: 3. Requirements - Anonymity (was Re: FW: [Asr… David Maxwell
- Re: 3. Requirements - Anonymity (was Re: FW: [Asr… Alan DeKok
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… David Maxwell
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… Andreas Saurwein
- RE: 3. Requirements - Anonimity (was Re: FW: [Asr… Tom Thomson
- Re: [Asrg] 0. General Brad Knowles
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… David Maxwell
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… Brad Knowles
- Re: FW: [Asrg] 0. General Brad Knowles
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… Brad Knowles
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… Alan DeKok
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… Brad Knowles
- Re: [Asrg] 0. General David Maxwell
- Re: [Asrg] 0. General Brad Knowles
- Re: FW: [Asrg] 0. General Brad Knowles
- Re: [Asrg] 0. General Brad Knowles
- Re: FW: [Asrg] 0. General Brad Knowles
- Re: [Asrg] 0. General Brad Knowles
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… Brad Knowles
- Re: FW: [Asrg] 0. General Brad Knowles
- Re: 3. Requirements - Anonimity (was Re: FW: [Asr… Brad Knowles
- Re: FW: [Asrg] 0. General Brad Knowles