Re: [exim] Sender callout verification on BATV signed addres…

Top Page
Delete this message
Reply to this message
Author: Hill Ruyter
Date:  
To: 'exim users'
Subject: Re: [exim] Sender callout verification on BATV signed addresses
Excellent
So I misapprehended the potential for me to need to do lots of clever stuff


If all that is required is for me to have a legit IP and have the forward
and reverse lookup match
Then in what scenario do you guys envisage the need for the "trick DNS"
stuff mentioned earlier?

As Bill said in a previous post if someone small can't get their ISP to help
them with a PTR then they should use smart host.
I get the impression things are a little more difficult. Why can't I just
block people or at least spam-tag emails that come from servers that do not
have matching records?

On a slightly different note ...

I do recall one problem I had in the past
Where my ISP had decommissioned a load of dial-up kit and re-allocated the
addresses to ADSL customers with static IPs
So although tey set the PTR for me and all was legit the pool of addresses
from which my address came was registered with some block lists.
They refused to acknowledge my request for re-assessment of the address
space and I was rather stuck.

I think this reflects on some mail servers' blind reliance on possibly out
of date lists and the attempts by some list admins to try and rid the world
of spam through guerilla tactics.


Hill

-----Original Message-----
From: exim-users-bounces@??? [mailto:exim-users-bounces@exim.org] On
Behalf Of Edgar Lovecraft
Sent: 15 May 2009 17:05
To: 'exim users'
Subject: Re: [exim] Sender callout verification on BATV signed addresses

On Fri, 15 May 2009 16:15:44 +0100 "Hill Ruyter" <hill@???> Wrote:

>>snip snip<<


> I run my own email server at home on an Ubuntu box
> I have done many things to adhere to commonly accepted standards I have
> a static IP
> My ISP has set my PTR for me


This is all that is necessary to be a legit mail server. What most
people do however, is setup their "personal" email server at home and
do not do any of the above; then complain about others not trusting them

If your ISP is co-operating with you on DNS PTR records then you must not
be violating the service agreement. Most ISP's however do not allow
"home" users to run any server of any kind without violating the service
agreement.

Also, a BIG note here is that you have a static IP address, not a
dynamic IP address.

> I just set up SPF records following advice here.
> I have taken care not to have my server as an open relay
> I have secured my box
> But I do not have the ability, time or, the desire to pay for;
> (specialist requirements) which will come with; (specialist prices)


You don't need to, you already are with your ISP.


>
> Does this mean I am not respectable?
> Why should I penalised?


I don't think you are penalised. However, if someone won't accept your
email, that is their choice.


> Is this geek elitism and techno snobbery?


Not at all. This is just a request that people who run servers follow
the RFC guidelines ;)

As a last note, I stated LONG* ago that we could clean up most problems
just by having the big 3 or 4 mail services (Google, Hotmail, Yahoo, etc.)
only accept connections and messages from servers who match the SMTP HELO,
DNS A, and DNS PTR data (or valid IP Literal in SMTP HELO), as well as
enforce
actual message standards, at the very least, for the message headers, such
as forcing the DATE and "SENT FROM" headers that all messages are required
to
have. That would force all of the knuckle heads who refuse to do this on
their own to comply, and allow the rest of us to reject at those who do not
comply and not have to hear about "well my mail works every where else...

Cheers!

* Posts on such things...
http://www.gossamer-threads.com/lists/exim/users/25212?#25212
and from a rather long/heated discussion from the past :P
http://www.gossamer-threads.com/lists/exim/users/28052?#28052


--

--EAL--

--




--
## List details at http://lists.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wiki.exim.org/