Daniel wrote:
>Peter Bowyer wrote:
>> Some people here have discussed an alternative solution which drops a
>> cryptographically-derived cookie in the return-path of all outgoing
>> mail, and on the incoming side you reject null-sender mail which
>> arrives to the 'bare' address, and verify the cookie otherwise.
>
>Well, all these setups have one basic problem. If legitim mail is not
>sent out via your servers, bounce mails are rejectet/dropped allthought
>they should be delivered.
>
Yes, absolutely. Which is why you make this a per user option and
also make very sure that your users are quite aware of this fact.
Like all tools, it can be used to create the desired effect or a
bloody mess.
Regards,
Christian Balzer
--
Christian Balzer Network/Systems Engineer NOC
chibi@??? Global OnLine Japan/Fusion Network Services
http://www.gol.com/
