[conspire] (forw) [sorbs.net #212641] [Webform] SORBS registration systems sends RFC-ignorant mail
Ruben Safir
ruben at mrbrklyn.com
Sun Oct 26 11:48:21 PDT 2008
Rick Moen wrote:
> I've been aware for a long time that being an anti-spam person can lead
> one eventually to be a trigger-happy nut: Regardless of whether Sullivan
> is correct about proper uses of the null sender "<>", he is not correct
> about (quoted) mail originating at "From: devnull at sorbs.net", a
> non-deliverable sender -- and _that_ is the main, characteristic sin of
> CGI script developers whose scripts generate outgoing mail.
>
> You'll note Sullivan's statement that SORBS also considers MTA Q}callbacks /
> callouts an "abusing DDoS tool" regardless and how implemented (e.g., my
> system that caches and reuses callout test results), and blocklists the
> hosts that use it. Oh well, so be it: Can't make everyone happy.
>
> (linuxmafia.com is not currently blocklisted by anyone. I was just
> trying to sign up at the SORBS Web site so I could check SORBS
> reporting.)
>
>
Your mail server automatically is checking to see if the sender is a
legit user?
Ruben
More information about the conspire
mailing list