Auteur: Todd Lyons Date: À: Always Learning CC: Exim, Lena Sujet: Re: [exim] Sending limit per day for Authenticated (LOGIN AUTH)
users
On Sat, Nov 17, 2012 at 8:21 AM, Always Learning <exim@???> wrote: >
>> Simple ratelimits are better than nothing but constrain honest users
>> while still allowing spam to trickle through,
>> your relays still end up in blacklists.
>> Each relay needs automatic detection and blocking of compromised accounts
>> (stolen passwords). I implemented Andrew Hearn's idea
>> to check not rate of messages or all recipients, but
>> rate of attempts to send to nonexistent recipient email addresses.
>
> Brilliant. Very useful.
I concur. I do a lot of work to detect and block compromised
accounts, but this is one signal that I had ignored. I'm going to
incorporate this (concept and implementation in large part) into my
systems. The goal is that sender reputation can only go up :-) Thank
you very much Lena.
...Todd
--
The total budget at all receivers for solving senders' problems is $0.
If you want them to accept your mail and manage it the way you want,
send it the way the spec says to. --John Levine