Re: Last Call: Anti-Spam Requirements on an SMTP MTA to BCP
"Marcus Leech" <Marcus.Leech.mleech@nt.com> Wed, 04 March 1998 16:50 UTC
Delivery-Date: Wed, 04 Mar 1998 11:54:05 -0500
Return-Path: owner-ietf-outbound.10
Received: (from adm@localhost) by ns.ietf.org (8.8.7/8.8.7a) id LAA10593 for ietf-outbound.10@ietf.org; Wed, 4 Mar 1998 11:50:02 -0500 (EST)
Received: from mailgate.nortel.ca (mailgate.nortel.ca [192.58.194.74]) by ns.ietf.org (8.8.7/8.8.7a) with ESMTP id LAA10352 for <ietf@ns.ietf.org>; Wed, 4 Mar 1998 11:42:36 -0500 (EST)
Received: from bcarsfba.ca.nortel.com by mailgate.nortel.ca; Wed, 4 Mar 1998 11:39:45 -0500
Received: from bmery1f6.bnr.ca (actually bmery1f6.ca.nortel.com) by bcarsfba.ca.nortel.com; Wed, 4 Mar 1998 11:38:33 -0500
Received: from bftzh114.ca.nortel.com by bmery1f6.bnr.ca with SMTP (Microsoft Exchange Internet Mail Service Version 5.0.1458.49) id GJGYYHS4; Wed, 4 Mar 1998 11:39:11 -0500
Sender: Marcus Leech <Marcus.Leech.mleech@nt.com>
Message-ID: <34FD8387.D8FD0503@nt.com>
Date: Wed, 04 Mar 1998 11:38:31 -0500
From: Marcus Leech <Marcus.Leech.mleech@nt.com>
Organization: Nortel Technology, Messaging and Security Infrastructure
X-Mailer: Mozilla 4.04 [en] (X11; U; HP-UX A.09.05 9000/712)
MIME-Version: 1.0
To: perry@piermont.com, ietf@ns.ietf.org
Subject: Re: Last Call: Anti-Spam Requirements on an SMTP MTA to BCP
References: <199803041600.LAA08470@jekyll.piermont.com>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Perry E. Metzger wrote: > > Jacob Palme writes: > > We started implementing anti-spam features which check the > > correctness of the domains of senders of incoming messages a few > > weeks ago. This did reduce the amount of spamming temporarily, but it > > is growing again, obviously the spammers have found ways to work > > around such measures. > > True enough, but this has a very salutory effect. > > It means that anyone spamming now has to steal someone's domain name > -- that is, to commit a kind of fraud. That generally means there is > someone who can sue them for damages, which is happening more and more > often (and which usually succeeds). We're starting to implement inbound spam filtering based on content "signature", rather than just headers. Even filtering on headers will reduce our inbound spam by about 70%. Each of the spam packages has a distinct "fingerprint". The fingerprints corresponding to the "STEALTH" e-mail spam software constitute about 50% or more of our inbound spam. -- ---------------------------------------------------------------------- Marcus Leech Mail: Dept 8M86, MS 012, FITZ Systems Security Architect Phone: (ESN) 393-9145 +1 613 763 9145 Messaging and Security Infrastructure Fax: (ESN) 395-1407 +1 613 765 1407 Nortel Technology mleech@nortel.ca -----------------Expressed opinions are my own, not my employer's------
- Re: Last Call: Anti-Spam Requirements on an SMTP … Marcus Leech