Re: [exim-dev] [Bug 2188] Moving recipient check last to mit…

Top Page
Delete this message
Reply to this message
Author: Jasen Betts
Date:  
To: exim-dev
Subject: Re: [exim-dev] [Bug 2188] Moving recipient check last to mitigate brute-force address scan
On 2017-11-06, admin@??? <admin@???> wrote:
> https://bugs.exim.org/show_bug.cgi?id=2188
>
> --- Comment #3 from Jeremy Harris <jgh146exb@???> ---
> Shrug. It's still a 5xx permanent reject that they see.
> It's up to you what human-readable text you put out to them with the
> reject code ("message" acl modifier) versus what gets logged ("log_message").
>
> If you move the local-only check later, you might end up with greater
> processing and comms costs.


perhaps but if they hit an 'RBL' or 'SPF' rejection message right off the bat they'd be
more likely to go hassle someone else.

Also having useful text in those rejection messages helps legitimate
correspondants get their problems sorted out,

Not that some of the big players don't tell outright lies in their
error messages.

--                       
This email has not been checked by half-arsed antivirus software