Re: comments on refuse
Michael Haardt <michael@freenet-ag.de> Fri, 05 August 2005 18:19 UTC
Received: from above.proper.com (localhost.vpnc.org [127.0.0.1]) by above.proper.com (8.12.11/8.12.9) with ESMTP id j75IJflc060920; Fri, 5 Aug 2005 11:19:41 -0700 (PDT) (envelope-from owner-ietf-mta-filters@mail.imc.org)
Received: (from majordom@localhost) by above.proper.com (8.12.11/8.12.9/Submit) id j75IJfJX060919; Fri, 5 Aug 2005 11:19:41 -0700 (PDT)
X-Authentication-Warning: above.proper.com: majordom set sender to owner-ietf-mta-filters@mail.imc.org using -f
Received: from mout2.freenet.de (mout2.freenet.de [194.97.50.155]) by above.proper.com (8.12.11/8.12.9) with ESMTP id j75IJerW060912 for <ietf-mta-filters@imc.org>; Fri, 5 Aug 2005 11:19:40 -0700 (PDT) (envelope-from michael@freenet-ag.de)
Received: from [194.97.55.190] (helo=mx6.freenet.de) by mout2.freenet.de with esmtpa (Exim 4.52) id 1E16nD-0008AW-7A for ietf-mta-filters@imc.org; Fri, 05 Aug 2005 20:19:39 +0200
Received: from nostromo.freenet-ag.de ([194.97.7.6]) by mx6.freenet.de with esmtps (TLSv1:AES256-SHA:256) (Exim 4.52 #5) id 1E16nD-0007lC-5b for ietf-mta-filters@imc.org; Fri, 05 Aug 2005 20:19:39 +0200
Received: from michael by nostromo.freenet-ag.de with local (ID michael) (Exim 4.52 #11) id 1E16n9-0002D3-No for ietf-mta-filters@imc.org; Fri, 05 Aug 2005 20:19:35 +0200
Date: Fri, 05 Aug 2005 20:19:35 +0200
From: Michael Haardt <michael@freenet-ag.de>
To: ietf-mta-filters@imc.org
Subject: Re: comments on refuse
Message-ID: <20050805181935.GB8460@nostromo.freenet-ag.de>
References: <200508041245.j74Cj4Ri008008@lab.smi.sendmail.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <200508041245.j74Cj4Ri008008@lab.smi.sendmail.com>
User-Agent: Mutt/1.5.6i
Sender: owner-ietf-mta-filters@mail.imc.org
Precedence: bulk
List-Archive: <http://www.imc.org/ietf-mta-filters/mail-archive/>
List-ID: <ietf-mta-filters.imc.org>
List-Unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe>
On Thu, Aug 04, 2005 at 05:45:04AM -0700, Philip Guenther wrote:
> draft-ietf-sieve-refuse-reject-00 justifies the 'refuse' extension
> based on a claimed ability to reduce the amount and/or likelihood
> of joe-job spam. By my reading, there is only a reduction in amount
> by replacing one or more MDNs (one per recipient using 'reject')
> with one DSN and no reduction in likelihood. While a message that
> is refused by all recipients can indeed be refused at the SMTP-level
> at the final dot, a DSN will still be generated unless the message
> was received directly from the submitting software by the SMTP-based
> sieve implementation. That doesn't apply when open relays ("open
> proxies" in the draft) are involved or if the sieve implementation
> is behind any MTAs that don't synchronously pass-through messages.
You are correct, but as a matter of fact, I do receive quite a bunch
of spam right from the sending host (spam companies or compromised (?)
dial-up systems) to a single recipient. I have no numbers, though.
IMHO, messages should be refused at the earliest possible point. I do not
like that refuse is not defined that way, leaving open where that point
is for a specific system. I would prefer an action like "refuse at the
earliest point, and if that means bouncing, then bounce it". As it is,
we have reject, which always bounces, and refuse, which always refuses.
I have to remember which system offers what for avoiding bounces where
possible.
> - shouldn't "open proxies" be "open relays"? This is a reference
> to MTAs that relay without limits, right?
Open proxies may be correct. For one, there is a bunch SOCKS proxies.
For another, there are many MTAs that do not count syntax errors
or enforce SMTP synchronisation points, thus being vulnerable to HTTP
proxies being used to CONNECT to port 25. Sending spam through open
relays has become a little old-fashioned.
Michael
- comments on refuse Philip Guenther
- Re: comments on refuse Michael Haardt
- Re: comments on refuse Matthew Elvey
- Re: comments on refuse Alexey Melnikov