IETF Logo Mail Archive

RE: [Asrg] Some data on the validity of MAIL FROM addresses

"Eric Dean" <eric@purespeed.com> Tue, 20 May 2003 15:06 UTC

Received: from www1.ietf.org (ietf.org [132.151.1.19] (may be forged)) by ietf.org (8.9.1a/8.9.1a) with ESMTP id LAA16974 for <asrg-archive@odin.ietf.org>; Tue, 20 May 2003 11:06:53 -0400 (EDT)
Received: (from mailnull@localhost) by www1.ietf.org (8.11.6/8.11.6) id h4KEaM306635 for asrg-archive@odin.ietf.org; Tue, 20 May 2003 10:36:22 -0400
Received: from ietf.org (odin.ietf.org [132.151.1.176]) by www1.ietf.org (8.11.6/8.11.6) with ESMTP id h4KEaMB06632 for <asrg-web-archive@optimus.ietf.org>; Tue, 20 May 2003 10:36:22 -0400
Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id LAA16969; Tue, 20 May 2003 11:06:22 -0400 (EDT)
Received: from ietf-mx ([132.151.6.1]) by ietf-mx with esmtp (Exim 4.12) id 19I8ip-0005vH-00; Tue, 20 May 2003 11:08:11 -0400
Received: from ietf.org ([132.151.1.19] helo=www1.ietf.org) by ietf-mx with esmtp (Exim 4.12) id 19I8io-0005vE-00; Tue, 20 May 2003 11:08:10 -0400
Received: from www1.ietf.org (localhost.localdomain [127.0.0.1]) by www1.ietf.org (8.11.6/8.11.6) with ESMTP id h4KENWB05859; Tue, 20 May 2003 10:23:32 -0400
Received: from ietf.org (odin.ietf.org [132.151.1.176]) by www1.ietf.org (8.11.6/8.11.6) with ESMTP id h4KEMAB05757 for <asrg@optimus.ietf.org>; Tue, 20 May 2003 10:22:10 -0400
Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id KAA16423 for <asrg@ietf.org>; Tue, 20 May 2003 10:52:11 -0400 (EDT)
Received: from ietf-mx ([132.151.6.1]) by ietf-mx with esmtp (Exim 4.12) id 19I8V5-0005nk-00 for asrg@ietf.org; Tue, 20 May 2003 10:53:59 -0400
Received: from ns2.tidalwave.net ([66.77.68.8] helo=mailgate.purespeed.com) by ietf-mx with esmtp (Exim 4.12) id 19I8V4-0005nV-00 for asrg@ietf.org; Tue, 20 May 2003 10:53:59 -0400
Received: from purespeed.com (mail.purespeed.com [66.77.69.8]) by mailgate.purespeed.com (Postfix Relay Hub) with ESMTP id 51F7D13B2A; Tue, 20 May 2003 10:57:04 -0400 (EDT)
Received: from HOMEY [68.100.19.195] by purespeed.com (SMTPD32-7.13) id A186D4A500B0; Tue, 20 May 2003 10:53:58 -0400
From: Eric Dean <eric@purespeed.com>
To: Jon Kyme <jrk@merseymail.com>, Dave Crocker <dcrocker@brandenburg.com>
Cc: ASRG <asrg@ietf.org>
Subject: RE: [Asrg] Some data on the validity of MAIL FROM addresses
Message-ID: <MBEKIIAKLDHKMLNFJODBGEAEFEAA.eric@purespeed.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
X-Priority: 3 (Normal)
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0)
In-Reply-To: <E19I6KM-0004Ck-00@argon.connect.org.uk>
X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400
Importance: Normal
Content-Transfer-Encoding: 7bit
Sender: asrg-admin@ietf.org
Errors-To: asrg-admin@ietf.org
X-BeenThere: asrg@ietf.org
X-Mailman-Version: 2.0.12
Precedence: bulk
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/asrg>, <mailto:asrg-request@ietf.org?subject=unsubscribe>
List-Id: Anti-Spam Research Group - IRTF <asrg.ietf.org>
List-Post: <mailto:asrg@ietf.org>
List-Help: <mailto:asrg-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/asrg>, <mailto:asrg-request@ietf.org?subject=subscribe>
List-Archive: <https://www1.ietf.org/pipermail/asrg/>
Date: Tue, 20 May 2003 10:56:23 -0400
Content-Transfer-Encoding: 7bit
Content-Transfer-Encoding: 7bit

Lemme tell you, I would love to perform SMTP rejects instead of bounces.
The problem is that anyone with any non-trivial amount of email has to run a
multi-level SMTP architecture.

Often, you have an MX server that accepts email and performs some rejects
due to various RFC criteria...however, once you accept that message..you are
obligated to handle it now.  If you then forward to a spam-filter server,
then strictly speaking you should bounce the message rather than silently
discard..but to each his own.

If you are running Exchange or Notes, it's a non-trivial interface to the
namespace to determine if a user is local...those who use a database can
often have the MX server and Email Application Server (POP/SMTP/HTTP) share
the same tables and therefore reject dictionary attacks rather than bounce
to non-existant email address (and watch the queue grow).  Sure, you can run
an LDAP interface to an Email server but often the dictionary attack is less
load.

> -----Original Message-----
> From: asrg-admin@ietf.org [mailto:asrg-admin@ietf.org]On Behalf Of Jon
> Kyme
> Sent: Tuesday, May 20, 2003 8:35 AM
> To: Dave Crocker
> Cc: ASRG
> Subject: Re: [Asrg] Some data on the validity of MAIL FROM addresses
>
>
> >Folks, the email operations world has increasingly moved away from
> >real-time processing of SMTP data.
> >
>
> A colleague has just drawn my attention to the relevant part of rfc2505
> (BCP 30) - for completeness here it is:
>
> <quote>
> 1.5. Where to block spam, in SMTP, in RFC822 or in the UA
>
>    Our basic assumption is that refuse/accept is handled at the SMTP
>    layer and that an MTA that decides to refuse a message should do so
>    while still in the SMTP dialogue. First, this means that we do not
>    have to store a copy of a message we later decide to refuse and
>    second, our responsibility for that message is low or none - since we
>    have not yet read it in, we leave it to the sender to handle the
>    error.
>
> </quote>
>
> I apologise for not thinking to reference this in my initial reply to the
> point you raised.
>
>
>
>
>
>
>
>
>
>
> --
> _______________________________________________
> Asrg mailing list
> Asrg@ietf.org
> https://www1.ietf.org/mailman/listinfo/asrg
>

_______________________________________________
Asrg mailing list
Asrg@ietf.org
https://www1.ietf.org/mailman/listinfo/asrg

v2.30.2 | Report a Bug | By Email | System Status