Hi !!
> Ironically, my best numbers are from HELO checks (like checks for a
> HELO of just IPs, forged IPs, etc, i.e., not DNS checks on the HELO
> data), which netted 2 million rejects yesterday, and again with no
> more than one or two false positives over the course of months.
we reject about 1m messages a day, about 64% of them are addressed
to inexistant users (that includes virus dictionary attacks, stupid
virus/spam warnings and other kind of bounces). Helo checks reject
are responsible for about 33% of rejections.
> Which makes me conclude that I'll worry more about spammers being
> clever enough to deploy SPF records and undermining its effectiveness
> *after* they get smart enough to use legit-looking HELO data ;)
use legit-looking helo data is more complicated than having a spf
record, mainly because in most configurations it's not easy for
a infected computer to know the internet public ip address its router
is using.
--
Best regards ...
----------------------------------------------------------------
David Saez Padros http://www.ols.es
On-Line Services 2000 S.L. e-mail david@???
Pintor Vayreda 1 telf +34 902 50 29 75
08184 Palau-Solita i Plegamans movil +34 670 35 27 53
----------------------------------------------------------------
